Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_iuBuMsq7yKObafobWx6DLlgSPQ.roa
File: _iuBuMsq7yKObafobWx6DLlgSPQ.roa (raw, json)
Hash identifier: HW4vnBgeAkC5WzclcOH9gy4icGS5PgdxuXShtLr8i+s=
Subject key identifier: FE:2B:81:B8:CB:2A:EF:22:8E:6D:A7:E8:6D:6C:7A:0C:B9:60:48:F4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019D87CB14E15B0D9D8E0D6D09C83C1937D3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_iuBuMsq7yKObafobWx6DLlgSPQ.roa
Signing time: Mon 13 Apr 2026 17:02:06 +0000
ROA not before: Mon 13 Apr 2026 17:02:06 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9123
IP address blocks: 93.190.244.0/24 maxlen: 24
2a0e:15c6::/32 maxlen: 32
2a0e:f206::/32 maxlen: 32
2a0f:e1c3::/32 maxlen: 32
2a0f:e6c7::/32 maxlen: 32
2a0f:e7c1::/32 maxlen: 32
2a0f:e840::/32 maxlen: 32
2a0f:ea40::/32 maxlen: 32
2a10:68c5::/32 maxlen: 32
2a13:9287::/32 maxlen: 32
2a13:e103::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:87:cb:14:e1:5b:0d:9d:8e:0d:6d:09:c8:3c:19:37:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 13 17:02:06 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fe2b81b8cb2aef228e6da7e86d6c7a0cb96048f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:13:fe:38:6c:0d:e0:14:a6:73:d9:9b:f7:
51:78:f1:a3:48:a8:f7:ed:d9:30:71:42:78:f1:18:
1a:3f:08:af:6c:3c:f0:1f:39:eb:f5:c7:e1:5d:22:
52:89:d5:e1:86:9f:e5:8f:a1:93:ec:c1:61:08:0b:
38:cd:a3:ba:3c:47:65:c7:38:51:d1:27:bc:a9:f9:
fe:f0:93:94:89:84:c3:ba:44:f5:01:83:ff:39:f2:
73:59:f5:e9:9f:eb:3f:2c:b8:00:02:eb:ef:d5:77:
ec:4c:3f:6f:fc:ee:84:21:25:7b:58:d2:68:c1:14:
bb:5e:b5:af:44:bd:4b:78:dd:39:a6:84:8b:26:fc:
65:cc:eb:29:ba:de:fe:fe:14:bf:bd:7d:ca:69:6a:
d3:6f:52:47:9f:2a:30:36:88:be:92:5e:9c:6c:f3:
56:80:ca:31:b5:6b:71:7c:65:fd:2e:c7:6b:37:b1:
d3:ba:6b:7d:a7:6d:5b:f1:c9:55:f4:88:06:54:3f:
bf:72:c3:5e:e7:f8:a8:34:bc:e1:10:9d:f1:19:ed:
f3:8b:be:81:f3:84:03:be:53:2d:2d:99:0c:9d:d6:
5e:48:fd:b7:6c:bd:cd:3b:29:d4:d1:0a:b5:c1:b9:
2b:e0:68:df:11:23:cd:f3:56:cd:a5:f7:d3:5b:ab:
c7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2B:81:B8:CB:2A:EF:22:8E:6D:A7:E8:6D:6C:7A:0C:B9:60:48:F4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_iuBuMsq7yKObafobWx6DLlgSPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.244.0/24
IPv6:
2a0e:15c6::/32
2a0e:f206::/32
2a0f:e1c3::/32
2a0f:e6c7::/32
2a0f:e7c1::/32
2a0f:e840::/32
2a0f:ea40::/32
2a10:68c5::/32
2a13:9287::/32
2a13:e103::/32
Signature Algorithm: sha256WithRSAEncryption
08:81:29:31:8a:0c:28:3c:44:03:e3:3d:4b:7b:db:00:c3:e1:
57:45:81:b9:08:2e:dc:73:a1:44:d3:fc:3e:6d:2f:83:97:02:
0b:1b:81:99:21:03:04:3c:6b:66:bb:93:78:ef:6a:fc:91:0b:
85:e5:be:83:b6:4d:4f:19:ac:7b:f1:4b:56:de:46:3b:c7:b3:
ab:4b:ca:ba:2b:16:cb:a2:33:e7:83:c4:c0:7b:dd:74:8d:35:
3a:17:1f:af:5a:6d:54:18:fc:3c:2d:09:9d:6e:6e:14:ba:bb:
65:37:68:64:87:2e:a7:c2:01:3a:73:54:62:57:ad:a6:14:0c:
b7:0e:2e:9d:c8:ff:7c:bb:08:ee:da:9a:bd:3d:98:82:a6:df:
ce:34:59:91:44:8b:88:59:bb:f2:20:6f:01:08:52:7a:40:c3:
9e:94:9a:98:11:ec:71:01:61:aa:4c:83:f5:83:48:f1:35:5e:
76:d3:2f:33:29:2f:1a:af:5d:b8:8b:31:8a:01:f2:df:ae:ff:
b3:1f:c9:6a:c9:a5:7a:0e:e6:e5:3f:95:bc:0c:9f:49:96:de:
77:9d:49:98:f0:cc:3f:91:0c:ca:30:3e:ae:39:72:28:e8:25:
bc:c6:38:47:3d:0b:c0:e4:09:7a:cd:3e:a0:dc:6a:80:a3:6e:
75:2f:25:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:51:33 2026 by rpki-client