Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/adTiNXQvdF5OmE0EGnekfXf7V_k.roa
File: adTiNXQvdF5OmE0EGnekfXf7V_k.roa (raw, json)
Hash identifier: r33lad2E7GdBmhB26rIQAmwHxaJpLP1ns5NNJrxG5XQ=
Subject key identifier: 69:D4:E2:35:74:2F:74:5E:4E:98:4D:04:1A:77:A4:7D:77:FB:57:F9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019EA67C674D8FF3DB6DF74E8D47D7B71D9F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/adTiNXQvdF5OmE0EGnekfXf7V_k.roa
Signing time: Mon 08 Jun 2026 09:07:11 +0000
ROA not before: Mon 08 Jun 2026 09:07:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216246
IP address blocks: 45.146.131.0/24 maxlen: 24
45.151.101.0/24 maxlen: 24
45.151.102.0/24 maxlen: 24
45.152.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a6:7c:67:4d:8f:f3:db:6d:f7:4e:8d:47:d7:b7:1d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 8 09:07:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69d4e235742f745e4e984d041a77a47d77fb57f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:eb:d7:03:9d:4c:56:7b:67:12:3b:ec:f3:09:
84:3e:a8:df:27:15:8e:38:71:d7:19:62:f5:46:c9:
cf:38:65:87:53:34:6b:a7:98:69:9d:60:54:e1:c8:
90:d3:7e:0a:99:b7:2c:a7:57:6a:14:18:16:b1:6f:
08:c5:31:87:34:af:98:62:cd:3b:2f:61:cc:30:d4:
bc:f9:04:a9:c8:a0:60:8f:c4:35:a3:75:32:80:a2:
f6:63:05:3b:21:6e:19:2b:89:cf:80:8a:95:72:2f:
81:dd:4a:02:a3:94:a1:75:24:f3:d9:a7:e2:03:f4:
ae:fd:8c:5a:fc:80:a1:6c:8f:a2:20:5a:e1:37:15:
ba:e4:14:dc:b9:d2:a6:4a:f4:68:a5:06:9b:82:26:
58:82:9b:dc:14:5a:cc:2f:4d:66:f0:cc:9d:9a:21:
9e:ed:61:9a:d1:8b:dc:06:10:0c:f6:e2:00:af:7e:
de:6e:e2:c0:37:30:80:a8:d4:72:e7:4f:5f:5c:b7:
14:24:62:76:4b:a6:6c:1a:65:3b:e9:6f:dd:75:93:
d3:64:be:8e:82:65:84:fd:02:6b:c9:72:40:33:b4:
38:35:32:eb:53:f9:d5:a5:94:bd:5c:66:f6:a5:99:
7b:77:04:e3:a9:27:54:5a:81:25:63:54:fd:ab:ec:
f4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D4:E2:35:74:2F:74:5E:4E:98:4D:04:1A:77:A4:7D:77:FB:57:F9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/adTiNXQvdF5OmE0EGnekfXf7V_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.131.0/24
45.151.101.0-45.151.102.255
45.152.198.0/24
Signature Algorithm: sha256WithRSAEncryption
26:7a:43:a5:9e:23:16:9f:59:b5:11:01:98:e5:0e:a5:82:d0:
d4:ba:59:95:ec:c3:a0:53:4d:e6:17:f9:74:51:dc:c5:18:cf:
5b:4a:2d:8c:73:e4:5f:31:c4:62:3c:d1:99:ee:94:16:94:15:
f4:8d:44:6b:86:36:73:16:c5:1a:0a:42:3a:56:84:64:76:69:
39:fb:b0:23:e1:21:e4:36:ca:63:66:2a:21:15:9e:9a:10:6b:
96:66:64:3e:85:a6:bc:11:4b:9a:e1:90:fa:30:ec:6f:5e:0a:
bc:a3:6c:c4:6b:d7:59:a9:68:71:de:8b:2e:36:e1:62:c1:7f:
24:39:b8:b9:a1:51:cb:05:2d:58:af:e1:72:76:ff:fe:07:85:
25:e3:d4:c3:26:8f:23:b1:b1:f8:7b:4a:d7:32:db:fb:8e:aa:
d7:e0:5e:c1:c7:3a:7b:cb:88:99:10:66:c7:17:75:05:ab:66:
db:10:9e:29:ef:05:10:1e:b4:27:32:64:e4:39:53:ea:1f:71:
8e:62:0d:67:31:3f:98:b8:e9:a8:22:23:1d:41:16:b8:13:58:
55:63:83:7e:b3:90:34:ad:c4:58:4c:a2:8a:94:78:8c:11:2b:
ec:79:ff:95:05:0a:24:df:6c:9d:71:fb:3b:1c:a6:44:3a:79:
d6:f0:a7:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:23:18 2026 by rpki-client