Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/EjelrFGAqaDDsQ53Q_DBGg1N-4c.roa
File: EjelrFGAqaDDsQ53Q_DBGg1N-4c.roa (raw, json)
Hash identifier: gJviYE3tvppz/ZKrMzdy8neV607RXFhOXU+Pt2VUBDo=
Subject key identifier: 12:37:A5:AC:51:80:A9:A0:C3:B1:0E:77:43:F0:C1:1A:0D:4D:FB:87
Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8
Certificate serial: 019E877932CD07A81FE47096B44CB5C89335
Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/EjelrFGAqaDDsQ53Q_DBGg1N-4c.roa
Signing time: Tue 02 Jun 2026 08:35:27 +0000
ROA not before: Tue 02 Jun 2026 08:35:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 16509
IP address blocks: 87.58.128.0/24 maxlen: 24
2a14:ae00:d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:87:79:32:cd:07:a8:1f:e4:70:96:b4:4c:b5:c8:93:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8
Validity
Not Before: Jun 2 08:35:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1237a5ac5180a9a0c3b10e7743f0c11a0d4dfb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:41:7d:74:68:b6:3d:84:e2:08:e5:69:28:cc:
9a:9e:d1:f7:72:bd:94:48:2a:1f:84:18:52:a3:66:
30:d9:3a:97:18:8b:33:64:8d:66:05:c4:a2:9b:b9:
43:e3:e4:a9:e4:0e:f9:79:3e:62:8a:d5:ab:6e:7a:
7a:12:e3:33:b3:8e:f0:1d:58:12:61:19:69:a3:95:
2f:4e:30:85:8a:5a:84:7a:e2:64:68:a5:5c:e5:0d:
3e:29:37:aa:0d:11:6e:c8:6d:f0:5c:c4:09:51:f9:
a3:25:a4:22:28:01:0d:28:a5:d9:8a:06:c9:15:f8:
cd:a6:6b:87:ec:d3:75:d3:c7:e1:26:58:52:e7:6b:
43:9c:32:1f:4d:9b:a2:9f:64:63:76:73:04:d7:7b:
6a:77:14:46:e6:29:14:2e:17:b9:30:37:50:3a:66:
c6:09:57:9c:87:e4:88:b3:f7:48:9a:92:55:e7:9b:
c5:c3:f8:c1:9b:3f:6e:e1:f0:88:40:38:6f:6e:b1:
56:d3:16:8d:0f:20:e1:f4:e8:8c:74:23:db:ac:bb:
65:81:2d:db:51:e4:bd:e6:94:a7:27:8e:82:3e:b9:
9d:1b:38:17:38:8d:7b:05:35:74:98:a5:8a:f4:62:
9f:e4:3e:01:7a:90:5d:06:64:f6:02:5b:54:bf:54:
d0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:37:A5:AC:51:80:A9:A0:C3:B1:0E:77:43:F0:C1:1A:0D:4D:FB:87
X509v3 Authority Key Identifier:
keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/EjelrFGAqaDDsQ53Q_DBGg1N-4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.58.128.0/24
IPv6:
2a14:ae00:d::/48
Signature Algorithm: sha256WithRSAEncryption
83:c7:b7:e3:1b:18:3c:f9:1f:c3:7d:6f:c8:ad:60:3e:8b:c0:
22:11:d1:6c:98:85:e0:50:28:2c:d0:50:98:d5:98:c0:b5:ad:
15:06:50:c1:1f:d4:5b:f9:16:c0:a9:df:1d:ea:f3:21:c9:04:
92:99:a1:f5:62:b7:9b:44:dd:bc:bd:b0:61:14:68:78:f3:5e:
77:29:99:b5:0a:79:14:9f:2b:66:97:8e:80:d4:59:9a:dd:96:
7f:16:ce:b7:ad:0c:6b:bf:02:ca:43:61:ac:81:c0:23:f1:24:
11:d8:3d:3e:70:83:6c:8a:11:b7:a3:cf:1d:d1:a0:62:37:fe:
e1:2e:39:16:33:1d:d3:7a:63:1b:fe:24:f9:a2:53:0c:67:4a:
4b:78:d2:f6:f8:ea:ef:8c:23:b0:f6:85:e2:20:c5:3f:65:e2:
30:dd:ab:c6:8a:35:dd:2c:04:f9:c6:b0:dc:b3:d6:50:49:fc:
a6:14:9f:04:02:59:d9:38:42:d7:3d:5d:90:16:b2:ab:97:3b:
52:2e:5f:45:ac:62:bb:28:ec:1d:f5:2a:55:32:11:72:7b:03:
35:28:87:34:85:8b:79:7e:b0:1b:4b:a8:70:48:b1:3f:89:26:
d3:b2:f4:57:ac:97:a7:b8:0c:af:cd:d1:db:ce:0f:ce:ee:fd:
95:93:f7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:52:29 2026 by rpki-client