Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/k74BDLFkQaEyMgBj0_QPCwyAzlc.roa
File: k74BDLFkQaEyMgBj0_QPCwyAzlc.roa (raw, json)
Hash identifier: iiBwXpUAvsSJCATNg/4pa+YR5V2BOLH1mYLLHWG9FIc=
Subject key identifier: 93:BE:01:0C:B1:64:41:A1:32:32:00:63:D3:F4:0F:0B:0C:80:CE:57
Certificate issuer: /CN=0837c99b2a4c062d5c20678f9dcf3207aefd5e78
Certificate serial: 019D8AEA8B9A7974EB9CCCD94A6D9ECD04E3
Authority key identifier: 08:37:C9:9B:2A:4C:06:2D:5C:20:67:8F:9D:CF:32:07:AE:FD:5E:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDfJmypMBi1cIGePnc8yB679Xng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/k74BDLFkQaEyMgBj0_QPCwyAzlc.roa
Signing time: Tue 14 Apr 2026 07:35:20 +0000
ROA not before: Tue 14 Apr 2026 07:35:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199186
IP address blocks: 216.236.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/CDfJmypMBi1cIGePnc8yB679Xng.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/CDfJmypMBi1cIGePnc8yB679Xng.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDfJmypMBi1cIGePnc8yB679Xng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8a:ea:8b:9a:79:74:eb:9c:cc:d9:4a:6d:9e:cd:04:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0837c99b2a4c062d5c20678f9dcf3207aefd5e78
Validity
Not Before: Apr 14 07:35:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=93be010cb16441a132320063d3f40f0b0c80ce57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b4:31:f6:f3:2e:91:87:df:b6:2c:0b:5c:b5:
61:6c:2b:83:5b:82:45:e2:83:2d:d6:5b:c8:13:4d:
d1:83:c0:2f:e8:41:76:9b:33:f6:85:38:fe:15:83:
d6:7d:a3:ce:70:ae:83:33:da:16:da:f4:ea:50:a8:
16:39:09:e3:74:45:5e:bd:86:a4:ec:8d:99:07:6c:
8a:5f:1e:d1:ed:a9:69:1f:ec:be:79:dd:59:85:66:
b1:3b:e8:b1:2a:6e:a4:cc:6a:ae:6a:3c:55:00:3b:
ac:52:96:45:f1:12:7c:45:93:4a:3d:66:0a:26:85:
0f:53:ca:6e:78:32:70:15:e8:47:87:71:59:9f:45:
76:82:da:3b:07:9a:62:82:f3:a5:b6:38:f2:fe:89:
8f:b0:07:bb:24:b7:1f:0d:06:dd:de:f2:9e:4c:31:
b7:29:bd:94:9f:2b:35:16:46:ba:99:ed:2c:db:83:
1f:f3:01:b8:31:4c:b2:03:d1:36:f9:67:84:70:0d:
4a:ae:97:f9:14:e2:c4:a1:f7:40:11:b0:e2:c0:84:
8d:08:e0:be:35:ac:9a:bb:3e:02:39:ca:11:0d:15:
88:f8:10:93:78:a3:33:53:bf:c2:15:c7:07:a1:c7:
25:47:ea:78:b2:79:43:90:97:57:bd:7e:69:18:e5:
cf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BE:01:0C:B1:64:41:A1:32:32:00:63:D3:F4:0F:0B:0C:80:CE:57
X509v3 Authority Key Identifier:
keyid:08:37:C9:9B:2A:4C:06:2D:5C:20:67:8F:9D:CF:32:07:AE:FD:5E:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDfJmypMBi1cIGePnc8yB679Xng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/k74BDLFkQaEyMgBj0_QPCwyAzlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0895d2-b778-46c4-a691-f1237f4c5cf6/1/CDfJmypMBi1cIGePnc8yB679Xng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.236.55.0/24
Signature Algorithm: sha256WithRSAEncryption
53:63:01:55:20:e6:a9:03:e6:3b:af:07:c9:a2:9d:98:c2:4b:
2b:7b:51:6e:51:a1:58:31:f5:46:24:26:76:07:3f:c2:a0:68:
61:3f:9a:e2:f9:1b:57:d8:44:cb:48:79:ef:15:a4:eb:66:1d:
0f:92:dc:97:71:8b:48:0f:16:e7:e3:a5:ae:f4:e7:cb:0c:f5:
c6:ad:e7:ee:ce:1d:d6:ff:7a:bb:13:59:8b:9d:34:a0:13:a3:
e7:93:f0:e4:d2:8f:f4:6d:45:80:63:cf:15:3e:19:3a:95:24:
0e:f1:27:8c:7f:04:74:ef:d2:92:95:f0:52:aa:4b:4e:15:1c:
6c:c7:95:f3:25:82:34:6e:18:50:e4:50:56:74:2e:02:d0:56:
09:30:ea:60:82:46:5c:8a:38:0d:91:94:75:33:b8:4c:fd:f3:
94:de:7f:fe:5f:d3:32:d9:7d:66:ba:c5:e4:28:27:07:11:c9:
9d:b4:b6:96:fd:0d:77:34:d0:b3:3c:f7:a2:a9:3a:cb:d7:13:
11:6d:69:5a:22:b7:dc:0c:93:f2:66:da:6c:1f:97:e7:b2:35:
a7:00:d3:f9:0b:9e:8d:17:4e:f7:6b:70:82:b0:81:f7:2b:09:
2b:6e:a0:20:a4:0d:55:b8:3a:7c:3c:38:5f:93:18:51:b0:23:
81:d1:cc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:34:00 2026 by rpki-client