Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rIOFbfC4RQwGF7_RTaLYUn7LSec.roa
File: rIOFbfC4RQwGF7_RTaLYUn7LSec.roa (raw, json)
Hash identifier: ivXUT/wHAcEiKk90Fe9/eWDGt0Z7oYnTbMNo1ft4Z4c=
Subject key identifier: AC:83:85:6D:F0:B8:45:0C:06:17:BF:D1:4D:A2:D8:52:7E:CB:49:E7
Certificate issuer: /CN=e15136feff3574ef9b2262de59b06a21908fab3e
Certificate serial: 019EA9334B98016F8425E8D2E193E105851F
Authority key identifier: E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rIOFbfC4RQwGF7_RTaLYUn7LSec.roa
Signing time: Mon 08 Jun 2026 21:46:11 +0000
ROA not before: Mon 08 Jun 2026 21:46:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41227
IP address blocks: 78.111.5.0/24 maxlen: 24
78.111.6.0/24 maxlen: 24
87.247.168.0/21 maxlen: 21
87.247.168.0/23 maxlen: 23
87.247.170.0/23 maxlen: 24
87.247.172.0/24 maxlen: 24
87.247.173.0/24 maxlen: 24
87.247.174.0/23 maxlen: 23
87.247.178.0/24 maxlen: 24
87.247.184.0/21 maxlen: 24
185.166.105.0/24 maxlen: 24
185.166.107.0/24 maxlen: 24
185.248.32.0/24 maxlen: 24
194.34.160.0/24 maxlen: 24
194.34.161.0/24 maxlen: 24
194.34.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a9:33:4b:98:01:6f:84:25:e8:d2:e1:93:e1:05:85:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15136feff3574ef9b2262de59b06a21908fab3e
Validity
Not Before: Jun 8 21:46:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ac83856df0b8450c0617bfd14da2d8527ecb49e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ce:32:d1:03:6a:3c:84:45:52:7b:19:ec:b0:
84:54:f5:ac:83:de:9e:27:c8:ee:76:94:fa:f8:ef:
bc:fb:fe:c1:10:45:d6:65:7b:13:cb:00:e7:ed:eb:
0b:09:7f:6e:3a:55:f6:e4:3e:5c:ea:25:f5:03:e9:
8d:de:3f:3e:ea:76:63:78:a2:fb:08:c2:36:5c:8e:
27:51:34:24:a5:d3:2e:50:9e:9e:a6:9e:e5:1d:a0:
12:9e:4b:ca:0d:bc:7d:35:43:29:8a:58:83:b8:85:
30:9a:7f:4e:63:69:92:a1:b1:4e:87:e3:8a:78:fb:
d6:a4:bc:30:7f:d6:5c:47:13:ec:16:9d:5e:0f:8a:
d2:af:b7:5e:ed:8f:33:30:d7:88:0d:55:ae:9f:a4:
8f:49:93:a2:37:70:a6:f4:43:c4:e7:bb:6a:cb:31:
80:d9:66:16:ce:c0:c5:81:12:d4:d5:ba:ea:5e:0e:
0c:ae:c4:37:07:b5:4f:1b:d1:12:14:dc:e9:aa:37:
6b:8f:5e:fd:8b:b0:94:0a:48:dd:ab:f2:b8:20:05:
1e:c7:a8:76:e3:39:73:83:1a:18:28:13:09:d9:13:
a7:75:9f:cc:4e:92:8a:58:b2:d7:4c:a9:02:3f:d6:
31:8d:61:3b:01:40:46:2b:fd:59:05:ec:4f:f2:2c:
7f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:83:85:6D:F0:B8:45:0C:06:17:BF:D1:4D:A2:D8:52:7E:CB:49:E7
X509v3 Authority Key Identifier:
keyid:E1:51:36:FE:FF:35:74:EF:9B:22:62:DE:59:B0:6A:21:90:8F:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VE2_v81dO-bImLeWbBqIZCPqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/rIOFbfC4RQwGF7_RTaLYUn7LSec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1e09a6-695b-402e-9bfc-041312242ff3/1/4VE2_v81dO-bImLeWbBqIZCPqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.111.5.0-78.111.6.255
87.247.168.0/21
87.247.178.0/24
87.247.184.0/21
185.166.105.0/24
185.166.107.0/24
185.248.32.0/24
194.34.160.0-194.34.162.255
Signature Algorithm: sha256WithRSAEncryption
8c:1d:9c:6d:dc:0b:82:20:49:46:06:9a:42:88:2e:20:7b:11:
ea:ab:51:f4:79:94:ab:34:64:6f:12:f5:7b:43:b2:fd:50:99:
d1:8d:e0:83:41:90:b3:10:f4:75:1e:d9:70:c3:0b:7b:79:92:
33:e7:de:a0:8a:f1:5e:50:31:68:a7:0a:4c:80:6e:ad:1f:34:
d1:fd:b9:90:56:67:5c:89:ad:3c:5c:c6:b3:ab:64:be:7a:3f:
eb:47:9e:6c:86:09:7c:5b:b8:4b:9f:d5:94:da:d5:4d:ae:28:
40:5d:95:12:ec:52:5b:bb:d7:12:63:e3:c8:bc:15:b6:7b:cb:
2a:cd:8d:2d:63:c4:5f:99:2c:f3:76:d9:93:e6:48:80:c7:14:
81:94:8e:d4:2d:d1:15:a2:03:8a:2a:e6:9a:2f:78:7f:8f:7d:
e8:f9:da:ed:53:9a:ed:de:08:9d:b5:09:1d:12:9a:e4:d5:85:
88:4f:51:39:af:ab:11:0e:0f:67:5b:03:d3:a1:bd:2a:c7:30:
95:08:61:94:d2:3f:78:e6:65:ab:53:d6:7e:47:10:51:ea:88:
b5:ed:9b:fc:1a:83:3e:09:f9:0b:4c:99:3c:4d:6c:c8:27:ea:
f0:29:bc:54:30:90:0f:6e:c1:e7:65:89:e8:5a:b4:50:15:b5:
e2:0f:b6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:39:12 2026 by rpki-client