Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/eqWOG9zATDE6vua6nCdpCj8d9tU.roa
File: eqWOG9zATDE6vua6nCdpCj8d9tU.roa (raw, json)
Hash identifier: c/ceJ8EEg4SDQlrPP9l4Ag70f5QrPY73Z9EWNEH2NF8=
Subject key identifier: 7A:A5:8E:1B:DC:C0:4C:31:3A:BE:E6:BA:9C:27:69:0A:3F:1D:F6:D5
Certificate issuer: /CN=ef5f1c4152c4a46055f72cbe866a88d500df983f
Certificate serial: 019E409796417555693BEF1A9D82ECCC7BE9
Authority key identifier: EF:5F:1C:41:52:C4:A4:60:55:F7:2C:BE:86:6A:88:D5:00:DF:98:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/718cQVLEpGBV9yy-hmqI1QDfmD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/eqWOG9zATDE6vua6nCdpCj8d9tU.roa
Signing time: Tue 19 May 2026 14:15:36 +0000
ROA not before: Tue 19 May 2026 14:15:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8687
IP address blocks: 192.54.44.0/24 maxlen: 24
193.141.101.0/24 maxlen: 24
194.45.126.0/24 maxlen: 24
212.18.64.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/718cQVLEpGBV9yy-hmqI1QDfmD8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/718cQVLEpGBV9yy-hmqI1QDfmD8.mft
rsync://rpki.ripe.net/repository/DEFAULT/718cQVLEpGBV9yy-hmqI1QDfmD8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:97:96:41:75:55:69:3b:ef:1a:9d:82:ec:cc:7b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef5f1c4152c4a46055f72cbe866a88d500df983f
Validity
Not Before: May 19 14:15:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7aa58e1bdcc04c313abee6ba9c27690a3f1df6d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:44:05:90:83:24:2f:9b:c3:3f:35:cc:66:52:
88:84:90:09:68:a5:05:cb:65:6f:7f:d3:54:a8:c7:
6d:55:2e:63:38:2e:1c:a8:7a:58:3e:9b:2d:0a:85:
12:c4:23:17:ed:28:82:f4:bc:47:60:07:d2:1c:e8:
00:f9:eb:9a:e2:19:47:ba:89:7a:1d:a2:f4:05:8f:
e4:23:d5:b6:8f:97:6c:de:2b:3b:63:9a:3a:5f:99:
a1:9c:a5:99:67:52:0a:f6:d8:0e:85:41:64:6e:e4:
ba:51:5f:93:8f:ed:eb:ea:fa:b4:39:b6:3f:56:d2:
0a:c8:df:75:e1:93:49:12:1a:9f:24:1b:c9:00:0c:
5a:ff:81:73:0a:7e:cb:a9:73:c4:e7:0b:f4:b2:53:
03:e8:b6:c1:e5:32:24:f6:35:56:a8:1b:93:8b:9c:
b8:e1:76:0e:df:18:73:ba:8f:f9:04:a9:0d:5a:2c:
52:1c:6b:8d:38:26:5b:7e:5f:f8:7b:21:ea:ee:43:
a2:d8:bd:c6:2b:ae:b2:4b:50:49:8b:ca:32:d0:23:
1d:93:ee:0e:50:bc:d7:90:44:64:5a:35:04:b0:4a:
23:6f:7e:68:90:6e:b5:2b:c8:45:66:a4:ab:69:33:
5b:11:19:70:7d:94:ec:ba:1e:7a:c1:11:b6:dc:30:
ba:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A5:8E:1B:DC:C0:4C:31:3A:BE:E6:BA:9C:27:69:0A:3F:1D:F6:D5
X509v3 Authority Key Identifier:
keyid:EF:5F:1C:41:52:C4:A4:60:55:F7:2C:BE:86:6A:88:D5:00:DF:98:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/718cQVLEpGBV9yy-hmqI1QDfmD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/eqWOG9zATDE6vua6nCdpCj8d9tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/85cf2e-c9da-4010-a093-e4446f2c12ec/1/718cQVLEpGBV9yy-hmqI1QDfmD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.54.44.0/24
193.141.101.0/24
194.45.126.0/24
212.18.64.0/19
Signature Algorithm: sha256WithRSAEncryption
27:33:29:84:88:e2:15:86:70:af:9c:96:28:d9:77:52:45:01:
1d:94:1c:11:6c:6d:9e:35:60:f6:f6:48:88:50:ab:d9:90:3e:
e5:28:7d:24:bd:82:d4:21:48:42:4f:83:6f:b6:f9:4b:89:bc:
ed:19:33:28:4a:fa:33:74:cb:70:b1:9f:5f:92:dc:97:0a:14:
e5:d6:fb:eb:c9:d8:8b:b6:4c:38:3f:59:6d:e3:65:58:74:9b:
ed:73:27:6a:d7:9a:00:31:6e:ba:cc:03:67:fc:65:82:1a:8e:
26:9d:72:d3:7d:3c:5b:7a:bf:82:59:a4:0e:ff:b3:40:42:94:
ff:9a:16:1f:f6:62:e9:25:8f:05:83:f0:ef:74:5c:9b:84:b5:
b2:85:aa:46:d0:53:7b:5b:e1:d1:86:5f:6a:ca:ef:ad:8b:01:
66:42:af:8e:fe:44:6c:ea:57:d7:47:f2:95:c4:1e:77:63:c7:
97:df:df:71:5f:84:a1:b9:6e:95:14:c1:e0:ff:2e:74:fc:cb:
4c:1b:e5:b6:39:03:5e:5b:3e:c9:8a:47:db:95:44:bc:13:61:
2a:25:c2:f5:a5:68:37:1f:f0:65:a9:6c:c8:ea:7a:70:32:f0:
4e:3c:03:a8:e8:36:25:d9:ab:de:88:95:4d:5c:3f:37:ee:c4:
fd:d2:db:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:04:01 2026 by rpki-client