Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/L66cmmlC06Wcdn7XL6i2OjeyJz8.roa
File: L66cmmlC06Wcdn7XL6i2OjeyJz8.roa (raw, json)
Hash identifier: 98r7JlYeRTjaXUzjuxu020n7woB7ZmKJCIQsHxK3ViA=
Subject key identifier: 2F:AE:9C:9A:69:42:D3:A5:9C:76:7E:D7:2F:A8:B6:3A:37:B2:27:3F
Certificate issuer: /CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Certificate serial: 019D6DFBEE34406E2281CC94F5C5B1738C0B
Authority key identifier: CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/L66cmmlC06Wcdn7XL6i2OjeyJz8.roa
Signing time: Wed 08 Apr 2026 16:45:20 +0000
ROA not before: Wed 08 Apr 2026 16:45:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20473
IP address blocks: 185.130.46.0/24 maxlen: 24
2a07:e02:1001::/48 maxlen: 48
2a07:e02:1010::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6d:fb:ee:34:40:6e:22:81:cc:94:f5:c5:b1:73:8c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Validity
Not Before: Apr 8 16:45:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2fae9c9a6942d3a59c767ed72fa8b63a37b2273f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:70:df:c3:e0:90:b2:ec:ae:7b:f0:a6:11:96:
d3:91:8b:6d:8f:ac:f9:f3:5d:c9:11:f3:f0:cd:e3:
27:c6:28:19:c5:db:f2:03:ec:ca:bb:d7:36:ec:a6:
59:ab:ae:f1:d2:82:51:a4:07:86:2f:20:16:f7:4e:
25:67:f9:43:33:08:e6:56:d7:ff:1c:3e:fe:06:9c:
fd:0f:b2:8b:51:c2:fa:4e:2f:af:97:5b:3e:56:2a:
19:6a:64:0e:db:b0:6c:36:5f:e1:76:cf:7e:d5:cc:
d8:7a:ab:37:d2:d1:43:45:a6:2d:47:08:99:7d:5d:
91:29:72:1d:52:23:96:ee:9f:85:d4:5c:df:46:86:
73:12:8e:99:31:f3:5d:da:ac:6a:9b:b2:8d:a9:57:
e5:2b:18:88:46:f9:4d:de:6d:08:e0:66:a7:b4:66:
7f:92:f4:1b:f0:18:6c:c1:97:8e:c6:a3:f0:16:ff:
a3:ad:f4:d1:ea:00:30:c7:34:63:96:3b:25:b4:89:
0a:ca:a6:2d:fe:a2:61:4b:62:ee:fe:fc:cd:92:1d:
20:3b:6d:27:86:6b:5b:89:df:93:c4:f7:73:24:c7:
c5:91:6d:15:a5:4a:1c:90:19:50:ed:0e:44:22:b1:
82:82:b5:5b:a6:ea:77:b5:1a:a5:5e:aa:d3:05:64:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AE:9C:9A:69:42:D3:A5:9C:76:7E:D7:2F:A8:B6:3A:37:B2:27:3F
X509v3 Authority Key Identifier:
keyid:CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/L66cmmlC06Wcdn7XL6i2OjeyJz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.46.0/24
IPv6:
2a07:e02:1001::/48
2a07:e02:1010::/44
Signature Algorithm: sha256WithRSAEncryption
3f:30:bb:27:f8:4f:3c:34:87:c8:f6:b9:82:17:e7:d1:01:bf:
17:5b:a2:70:fc:d5:01:09:82:41:58:25:ca:18:f7:7a:28:c9:
6b:c3:cb:3a:66:d4:5b:af:11:0a:9c:0f:da:30:a5:2c:03:0c:
6c:91:26:be:25:8c:bd:d5:67:7e:47:f5:5b:ef:2b:d8:82:cd:
7c:9b:3a:c7:41:2d:ea:36:a5:5f:8d:78:d2:54:be:56:79:65:
d0:d9:18:46:dd:05:fd:0b:6f:35:88:e0:fe:99:1c:77:4f:f3:
ae:0e:d5:79:c5:a9:5b:29:cf:02:60:1e:d1:10:21:95:60:5c:
b1:c9:04:80:82:7c:81:e2:dd:b6:60:09:5c:12:c4:eb:94:b8:
38:ec:6d:fe:68:ff:d0:ea:39:7e:7f:d8:6b:85:cc:70:e2:9c:
f3:f9:43:79:32:47:0d:6d:d6:f2:78:0c:d5:4b:5c:a2:03:d7:
48:90:2c:be:82:99:c1:32:a7:18:d1:79:5e:f7:d4:b3:99:cc:
a5:49:9f:85:ed:e9:aa:7f:cb:93:dd:6c:1a:a0:5c:a8:b7:e8:
ec:86:bb:d8:25:b4:a2:40:7c:71:ed:0e:60:33:95:6c:dc:e6:
20:36:7f:00:7a:e9:17:71:92:c3:d2:39:85:41:be:37:50:73:
dd:23:20:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:37:25 2026 by rpki-client