Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/pN7P15iV8nEgY6CkRTOjYBi5JYI.roa
File: pN7P15iV8nEgY6CkRTOjYBi5JYI.roa (raw, json)
Hash identifier: m0BA7v49QeEV2cICIvpB0WyLwH4bv4PWjhsKTQApxH0=
Subject key identifier: A4:DE:CF:D7:98:95:F2:71:20:63:A0:A4:45:33:A3:60:18:B9:25:82
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E6EDBA3624F20057226D88DFA41DB3469
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/pN7P15iV8nEgY6CkRTOjYBi5JYI.roa
Signing time: Thu 28 May 2026 13:52:28 +0000
ROA not before: Thu 28 May 2026 13:52:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 142240
IP address blocks: 151.240.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:35:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6e:db:a3:62:4f:20:05:72:26:d8:8d:fa:41:db:34:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 28 13:52:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a4decfd79895f2712063a0a44533a36018b92582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:78:ec:67:41:8c:72:7e:2f:e4:41:2f:59:
07:2c:c0:bd:3f:a6:19:3b:f6:e5:16:5b:83:38:a4:
29:a9:ab:3e:35:d2:75:1f:88:50:9b:ff:15:7b:8b:
c1:d8:8c:7b:1c:d3:fd:e4:e0:70:d6:6b:67:43:e1:
20:97:f8:11:5a:08:53:5f:01:d0:e3:d9:85:5a:e1:
db:bd:02:55:f3:d1:1b:a4:33:3f:6e:dd:1f:14:d8:
0c:9e:bd:74:ed:39:3c:b4:ac:6b:c3:d9:bd:77:f8:
6d:42:eb:2e:b7:37:8d:a9:12:13:31:b1:6f:f3:d9:
2a:0c:9e:db:08:87:e6:d4:65:2e:59:54:53:85:b7:
ae:f3:1c:24:7c:0b:13:ab:88:f3:10:7d:17:3a:ba:
8c:83:77:4f:15:56:8a:f2:b1:6c:e7:97:62:ab:9f:
0d:02:f6:c2:6c:d9:d7:07:27:c2:be:d5:80:92:0f:
f8:64:c3:ef:a2:65:85:a9:33:90:2d:f9:16:60:19:
12:a2:3c:89:57:8d:d4:72:3c:84:a6:fc:c2:6a:89:
5e:94:e1:9d:da:22:1b:a6:14:8b:7c:b4:ea:24:63:
65:6d:80:1a:7e:94:e2:e0:24:8c:30:20:98:b2:c0:
fd:ee:d0:64:29:5b:3e:3d:08:89:10:53:02:46:b7:
1a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DE:CF:D7:98:95:F2:71:20:63:A0:A4:45:33:A3:60:18:B9:25:82
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/pN7P15iV8nEgY6CkRTOjYBi5JYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.26.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f5:72:90:d1:9b:5f:3d:e0:a8:0d:27:6a:89:ca:04:36:82:
ee:bf:5e:53:88:37:dd:b9:e2:e5:31:6b:67:b0:21:2b:ae:29:
fd:b1:99:97:b9:84:47:a2:3c:37:10:24:61:bf:b1:e9:56:ff:
91:50:aa:ec:da:c5:49:c7:75:24:97:c4:37:6a:13:22:9d:4d:
fc:4b:70:48:7d:7d:e6:b1:5e:6f:f0:94:b6:35:99:87:ac:ee:
a7:f4:2f:92:f5:b8:d6:48:24:7e:2f:49:be:27:43:20:7a:b8:
33:3b:45:06:90:00:cc:95:24:03:6f:72:45:ef:f6:f5:8c:82:
08:5f:fe:49:94:b0:da:37:6a:ee:1f:d7:6a:a5:55:90:dc:75:
00:c1:e2:89:82:59:75:de:c6:fd:eb:14:90:95:f5:e5:bd:49:
cc:88:41:48:7b:a7:3d:0b:c6:af:f1:3d:4a:1f:d6:fb:46:30:
45:57:d2:74:9a:18:24:af:be:25:8d:c4:f9:ba:b7:1f:39:76:
e7:90:5b:09:50:f5:cd:3b:d3:f2:cc:40:26:3f:d6:2e:34:ae:
82:10:aa:4f:b2:46:12:bf:d3:7e:60:9a:3b:75:cd:74:9e:fe:
94:b4:cc:65:33:83:2a:51:8f:c5:32:4b:e4:df:9a:70:98:de:
ce:3f:69:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:19:32 2026 by rpki-client