Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/0OOhZQIpq6dXwSrbl0KaN4bQBwk.roa
File: 0OOhZQIpq6dXwSrbl0KaN4bQBwk.roa (raw, json)
Hash identifier: z5lcUbMXKGaRM5S0Zeu6WP6amOKl5X2nXO5t7H9TCbI=
Subject key identifier: D0:E3:A1:65:02:29:AB:A7:57:C1:2A:DB:97:42:9A:37:86:D0:07:09
Certificate issuer: /CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Certificate serial: 019EBB56D953BDDED774B47E81F467DA480F
Authority key identifier: 61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/0OOhZQIpq6dXwSrbl0KaN4bQBwk.roa
Signing time: Fri 12 Jun 2026 10:18:11 +0000
ROA not before: Fri 12 Jun 2026 10:18:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212253
IP address blocks: 45.81.50.0/23 maxlen: 24
185.222.22.0/24 maxlen: 24
2a12:e5c0::/46 maxlen: 48
2a12:e5c0:10::/46 maxlen: 48
2a12:e5c0:20::/46 maxlen: 48
2a12:e5c0:30::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/YdOddLF-aR3RsFIhxgmMr17pOjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/YdOddLF-aR3RsFIhxgmMr17pOjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:56:d9:53:bd:de:d7:74:b4:7e:81:f4:67:da:48:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d39d74b17e691dd1b05221c6098caf5ee93a36
Validity
Not Before: Jun 12 10:18:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d0e3a1650229aba757c12adb97429a3786d00709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:21:34:cf:73:e7:dd:5e:e0:7f:2b:95:33:45:
00:75:02:ec:b7:51:e8:1e:cf:02:e6:3e:e9:e3:ab:
7e:c1:b4:7b:94:dc:0e:10:c7:80:04:62:f0:4b:2f:
f9:bb:5b:44:60:96:87:a3:9a:5e:59:d4:13:7e:ba:
18:86:36:e4:05:f4:e9:ca:3e:36:a4:92:2e:ef:04:
21:ed:5a:6c:ff:e7:c4:7c:8f:49:03:67:d4:eb:e4:
2e:a1:fa:d3:54:45:1d:00:a2:eb:78:b3:f5:c9:ef:
66:f9:b4:1f:34:f5:f0:1c:40:69:81:20:21:cc:9b:
87:17:75:d8:02:62:04:62:f9:ee:0a:68:2d:eb:92:
3d:c7:c5:c4:10:62:a8:56:2d:d5:b8:34:63:f0:c4:
56:bd:e9:ed:90:f3:71:e0:b4:08:52:0b:25:c0:2c:
76:56:6e:66:6f:51:73:77:f8:cd:7f:f0:dc:8e:1d:
59:9b:ed:23:a8:b5:24:d6:41:e2:dc:09:e2:50:1c:
6c:b3:23:df:b4:04:ed:b3:b3:a4:9d:1b:be:11:0a:
4f:7e:d3:c9:6b:26:ae:cf:57:2b:a5:5d:9f:74:b5:
01:1a:bb:18:19:5a:4a:56:e4:17:dd:05:93:86:27:
89:ee:e9:45:36:6d:8c:39:29:1f:0c:41:35:60:ed:
57:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E3:A1:65:02:29:AB:A7:57:C1:2A:DB:97:42:9A:37:86:D0:07:09
X509v3 Authority Key Identifier:
keyid:61:D3:9D:74:B1:7E:69:1D:D1:B0:52:21:C6:09:8C:AF:5E:E9:3A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOddLF-aR3RsFIhxgmMr17pOjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/0OOhZQIpq6dXwSrbl0KaN4bQBwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7ca2f2-bf13-4d18-a8dd-980511dc05ae/1/YdOddLF-aR3RsFIhxgmMr17pOjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.50.0/23
185.222.22.0/24
IPv6:
2a12:e5c0::/46
2a12:e5c0:10::/46
2a12:e5c0:20::/46
2a12:e5c0:30::/48
Signature Algorithm: sha256WithRSAEncryption
31:17:78:1d:df:ab:6e:f9:e6:08:27:dc:ab:ed:1b:28:27:ac:
dd:e8:89:a1:e9:c9:d5:08:b2:3a:c5:91:2a:5f:14:04:86:04:
4f:17:82:00:03:5a:e9:f3:45:18:04:42:91:e6:c1:9e:55:42:
28:c1:92:01:56:d8:16:5a:e3:e3:92:f7:02:7b:43:9b:4f:55:
0d:9b:19:0c:79:a5:71:56:d2:85:f4:cc:28:f5:e4:a2:df:fa:
89:c1:8a:a8:a7:21:e2:63:72:68:5a:37:2b:e9:0c:f7:0c:83:
25:be:55:5c:b1:f4:59:f6:a6:57:23:f9:3c:21:63:59:14:b9:
57:73:a9:99:6f:4b:04:ff:e3:ee:d9:68:2d:be:31:9b:b7:ef:
a6:8c:4c:83:2d:c2:01:6c:8b:9d:ec:38:dd:27:b2:83:61:2a:
8c:7b:bb:e8:93:28:90:71:17:5a:1d:f4:1e:f8:bb:51:97:14:
d3:ea:90:00:4d:4d:27:f3:56:0f:e0:7f:17:8c:08:63:82:33:
9c:2f:f7:34:b7:4c:7a:45:e3:fb:0d:f6:7d:79:96:2b:76:97:
01:a0:3c:68:de:4d:74:ab:87:4e:f5:3d:9d:fc:07:3e:33:c3:
fb:94:a4:75:ac:e8:a2:56:ee:a2:ae:f3:df:db:62:bf:32:6a:
df:f0:08:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:04:44 2026 by rpki-client