Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/0ZZBNy_4ZfeDGv0GZ4Y6WyBitiY.roa
File: 0ZZBNy_4ZfeDGv0GZ4Y6WyBitiY.roa (raw, json)
Hash identifier: xrSAqsjvVj4VTaGXTAjpYZq+szPFsolHKq89Y8sv2SY=
Subject key identifier: D1:96:41:37:2F:F8:65:F7:83:1A:FD:06:67:86:3A:5B:20:62:B6:26
Certificate issuer: /CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Certificate serial: 019E6AF69C0E08E2F42D0B310278DEF2BCB8
Authority key identifier: 0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/0ZZBNy_4ZfeDGv0GZ4Y6WyBitiY.roa
Signing time: Wed 27 May 2026 19:43:26 +0000
ROA not before: Wed 27 May 2026 19:43:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 50359
IP address blocks: 82.146.15.0/24 maxlen: 24
212.72.206.0/24 maxlen: 24
2a14:e100:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6a:f6:9c:0e:08:e2:f4:2d:0b:31:02:78:de:f2:bc:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Validity
Not Before: May 27 19:43:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d19641372ff865f7831afd0667863a5b2062b626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:59:19:08:1b:fa:8e:de:5d:3b:47:70:67:
5d:f8:ad:d1:fe:ff:3b:8e:91:84:38:81:9d:e6:0b:
59:25:85:58:c6:19:6c:9f:ea:7c:0f:06:69:a7:28:
a5:45:89:96:df:15:ea:82:c0:e2:40:ea:21:7a:1c:
7c:7f:d2:e2:06:36:e0:55:14:68:7e:1f:25:93:18:
ea:ee:06:56:ca:d3:20:1f:95:32:e8:b9:e5:cf:57:
9d:4c:02:25:6f:fe:2d:30:a6:36:51:46:67:e4:91:
cc:19:23:c4:01:5a:0d:2f:ac:6c:9e:eb:b6:23:01:
9c:f8:46:e6:1b:42:fe:89:ef:81:27:12:67:ba:2a:
35:2f:81:f9:9a:df:6a:3b:d6:84:fe:cc:28:02:ae:
59:a5:a9:12:3d:05:f2:60:3f:e6:89:de:c9:6d:a0:
b1:30:ea:33:92:4d:e5:d6:d8:0a:b7:5a:24:d4:26:
15:39:1d:a5:2d:64:61:9c:71:13:e9:41:c7:30:0a:
24:64:44:fe:25:99:94:b1:ea:e7:a1:a3:a4:e5:b2:
5c:88:5b:0c:d3:51:aa:5c:4b:82:81:dd:ce:35:f2:
ba:91:81:24:47:1d:38:35:ff:b8:fc:86:4b:9e:4c:
3a:f3:1b:4a:72:e9:a2:00:18:2c:9a:27:c6:cf:2a:
02:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:96:41:37:2F:F8:65:F7:83:1A:FD:06:67:86:3A:5B:20:62:B6:26
X509v3 Authority Key Identifier:
keyid:0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/0ZZBNy_4ZfeDGv0GZ4Y6WyBitiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.15.0/24
212.72.206.0/24
IPv6:
2a14:e100:2::/48
Signature Algorithm: sha256WithRSAEncryption
6f:d4:ca:97:41:65:b9:4c:55:e0:38:c4:91:a2:e8:8e:46:02:
b4:8d:41:fc:82:d2:51:6a:4a:ed:35:ae:df:81:b2:98:8e:cf:
ae:7b:e5:67:12:59:f2:e4:71:14:48:39:d1:e6:b6:35:0d:2a:
55:6f:7b:b9:01:d0:d3:48:27:0b:a4:88:f0:a5:74:f2:7c:44:
e5:2a:f9:d5:63:8c:74:76:2c:63:5f:b4:36:36:30:75:e0:50:
a5:36:19:84:2a:ca:ab:fb:f9:56:c2:78:f5:7a:5f:3f:25:8f:
28:f3:f0:db:40:35:c7:ae:c2:e7:91:34:b1:9a:e0:be:ea:9d:
95:46:b0:91:08:c9:8d:59:d4:2d:49:28:6c:45:95:6a:da:c5:
88:89:3f:bf:e7:a2:b8:b8:9a:e6:03:eb:b5:e2:fb:70:b1:d5:
d1:2a:3b:80:c8:c8:ec:1a:74:ff:e7:5c:4e:2c:8f:16:aa:50:
c0:37:51:ec:5e:32:08:f4:5f:d0:ad:dd:0c:43:e9:4e:d3:b7:
90:d8:96:c4:08:d0:54:55:d5:a3:e4:88:00:cb:fe:7c:37:bf:
46:d9:95:fb:5c:d5:9c:53:8e:77:ad:8b:2f:ca:08:1b:a4:d1:
f8:18:ea:c3:9b:16:1a:33:72:6b:58:75:0e:8f:7f:03:7f:19:
c2:f2:a8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:51:52 2026 by rpki-client