Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/meoPkYFTRHEXia4j8mg2sfDySos.roa
File: meoPkYFTRHEXia4j8mg2sfDySos.roa (raw, json)
Hash identifier: 7T+t5CCpGtO+NTQyj5C6ZCTMr2pQljp5Zq1O7QTfwuE=
Subject key identifier: 99:EA:0F:91:81:53:44:71:17:89:AE:23:F2:68:36:B1:F0:F2:4A:8B
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 019C9796F0A5613AD175312807FF1840134C
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/meoPkYFTRHEXia4j8mg2sfDySos.roa
Signing time: Thu 26 Feb 2026 01:36:17 +0000
ROA not before: Thu 26 Feb 2026 01:36:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 205634
IP address blocks: 2a0a:79c0:f00::/48 maxlen: 48
2a0a:79c0:f01::/48 maxlen: 48
2a0a:79c0:f02::/48 maxlen: 48
2a0a:79c0:f03::/48 maxlen: 48
2a0a:79c0:f04::/48 maxlen: 48
2a0a:79c0:f05::/48 maxlen: 48
2a0a:79c0:f06::/48 maxlen: 48
2a0a:79c0:f07::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:97:96:f0:a5:61:3a:d1:75:31:28:07:ff:18:40:13:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Feb 26 01:36:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=99ea0f91815344711789ae23f26836b1f0f24a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a1:a2:7e:dd:ce:95:d1:8f:b1:e8:14:aa:35:
1f:e2:a7:49:0f:0b:49:5c:96:2b:69:c9:c4:5f:c4:
6b:2c:0f:de:d9:ab:b4:4d:f1:60:51:02:45:de:5b:
67:05:3c:59:f0:a7:b5:62:5b:a2:4d:92:1e:1f:69:
ea:6e:74:fa:ae:e4:c0:52:a8:7b:7a:af:26:ab:f9:
92:2f:2c:9d:17:d6:bb:6e:c8:03:fe:de:55:33:15:
53:7a:16:38:e9:0a:40:81:29:cd:e9:3a:94:b1:0a:
05:35:57:c1:92:41:b5:33:af:b5:1e:3b:ee:fb:e0:
fd:8a:5a:30:8c:c7:13:28:81:9c:cb:c4:d0:cd:be:
f2:3d:dc:4a:cb:22:d4:2c:9d:49:df:a7:1b:41:3c:
b5:86:9d:79:77:ed:38:c2:79:88:2f:74:84:f5:b2:
19:13:1b:87:38:a0:0f:23:76:cf:40:ff:96:42:16:
25:36:ac:01:07:06:2b:75:92:69:29:e8:e0:24:13:
fd:cf:3c:22:43:61:37:d8:08:78:5e:a6:40:ee:3a:
a1:05:30:d5:c5:88:67:bd:5d:fe:10:cc:5e:f1:86:
37:58:d7:bc:ea:e0:2d:fa:d8:83:22:3f:39:ea:d2:
4d:1e:06:74:e8:ec:45:37:23:e9:fa:dd:d6:27:4a:
e2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EA:0F:91:81:53:44:71:17:89:AE:23:F2:68:36:B1:F0:F2:4A:8B
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/meoPkYFTRHEXia4j8mg2sfDySos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:79c0:f00::/45
Signature Algorithm: sha256WithRSAEncryption
26:df:0c:50:f3:ae:87:e6:07:94:4b:c1:7c:ff:9b:c3:e4:53:
46:e7:3e:85:0d:e3:10:8a:40:3a:d9:c8:65:d5:8a:f9:42:04:
fe:1c:a0:ad:e0:2e:76:ab:70:24:8a:2f:e6:fa:80:c0:4b:92:
02:d1:2c:c4:09:1b:a5:fa:4b:fd:07:c5:47:15:52:75:d8:96:
f6:26:89:61:4f:69:36:03:ef:97:e1:2b:63:25:0c:6b:a5:aa:
dd:85:e0:c0:10:f2:53:0f:9d:b9:d6:fc:23:76:d2:c5:38:3c:
e7:18:4d:82:31:9c:15:6f:f8:71:2b:cd:cc:f4:77:3a:43:27:
c7:a2:2d:dd:bb:24:f1:68:85:91:ed:d0:78:ad:65:de:83:18:
7d:f8:ab:4a:97:5d:d3:a8:3a:55:22:70:f7:b3:c8:17:d3:08:
fe:3b:6a:17:a6:b3:e4:10:bf:b4:82:fd:4e:11:d9:d5:ec:1a:
38:09:34:1e:eb:76:99:22:e7:4f:df:31:12:c5:83:1a:93:96:
1d:92:35:aa:bb:69:8f:45:3d:ea:f2:75:5a:51:83:d8:ed:6a:
da:bc:1a:81:22:f3:c9:3e:da:c1:ed:5a:e1:cb:56:74:a9:8d:
af:ab:3e:46:27:28:a1:ca:78:b3:ff:6f:86:6f:d2:e2:c7:2d:
6e:e5:e2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:18:46 2026 by rpki-client