Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/eVDKx-waXJEfn-9dJnyiz-_1kbU.roa
File: eVDKx-waXJEfn-9dJnyiz-_1kbU.roa (raw, json)
Hash identifier: Cnjv1/pdi5B82pagXhY941DhsIB6QNcJ5gqZ85TwLZs=
Subject key identifier: 79:50:CA:C7:EC:1A:5C:91:1F:9F:EF:5D:26:7C:A2:CF:EF:F5:91:B5
Certificate issuer: /CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Certificate serial: 019E40BA6001E412B8C157788EE68E9C670A
Authority key identifier: 37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/eVDKx-waXJEfn-9dJnyiz-_1kbU.roa
Signing time: Tue 19 May 2026 14:53:36 +0000
ROA not before: Tue 19 May 2026 14:53:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201746
IP address blocks: 37.26.252.0/22 maxlen: 22
37.26.252.0/23 maxlen: 23
37.26.252.0/24 maxlen: 24
37.26.253.0/24 maxlen: 24
37.26.254.0/23 maxlen: 23
37.26.254.0/24 maxlen: 24
37.26.255.0/24 maxlen: 24
185.6.32.0/22 maxlen: 22
185.6.32.0/23 maxlen: 23
185.6.32.0/24 maxlen: 24
185.6.33.0/24 maxlen: 24
185.6.34.0/23 maxlen: 23
185.6.34.0/24 maxlen: 24
185.6.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:ba:60:01:e4:12:b8:c1:57:78:8e:e6:8e:9c:67:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Validity
Not Before: May 19 14:53:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7950cac7ec1a5c911f9fef5d267ca2cfeff591b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7d:b2:5e:31:e0:a5:2d:10:ee:25:77:b7:36:
a2:39:a6:32:83:1b:16:9c:35:be:f8:03:0c:4c:f8:
32:f8:32:e6:59:30:5c:96:74:ee:02:27:7f:c4:a4:
8e:6f:fd:49:88:f6:22:b8:e2:5f:85:33:07:87:f4:
87:9f:de:8d:09:aa:7f:c5:9a:3d:69:40:a5:31:df:
3c:1f:4c:ba:9f:34:91:b6:26:ec:00:fa:04:73:c4:
32:4b:b7:c2:7d:5a:d0:2f:5f:91:b1:55:89:8e:ef:
45:68:45:16:46:61:ae:5c:c3:8e:d2:ab:99:76:86:
71:b0:d9:6e:59:c9:07:f8:34:4e:9e:d8:13:5c:d6:
4d:9e:de:04:18:2f:55:f9:7f:e9:ff:0d:55:0c:0a:
b4:3e:97:7e:65:98:fb:f1:2a:1e:a1:79:c3:2a:3c:
fe:8c:c4:f1:80:b3:2b:23:cb:d9:f9:7a:5f:86:71:
45:09:81:d5:93:0a:a2:e3:33:e6:4a:08:c1:93:58:
26:69:91:9c:c3:30:c9:92:19:90:d4:e5:c3:84:c6:
52:5b:95:75:63:5a:80:37:4e:be:dc:f7:91:54:e1:
8e:cb:9a:fa:27:25:c3:56:aa:32:ad:c5:b4:f9:5f:
15:06:55:b0:e3:d3:06:03:f1:d1:02:71:ca:7c:88:
5f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:50:CA:C7:EC:1A:5C:91:1F:9F:EF:5D:26:7C:A2:CF:EF:F5:91:B5
X509v3 Authority Key Identifier:
keyid:37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/eVDKx-waXJEfn-9dJnyiz-_1kbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.252.0/22
185.6.32.0/22
Signature Algorithm: sha256WithRSAEncryption
67:54:50:48:13:d8:f9:e4:c8:f5:78:67:a1:3a:47:23:ec:76:
45:a7:ae:cb:fe:9e:1d:2a:40:49:d3:a7:0e:77:c7:7d:1d:fa:
39:75:75:83:89:5f:db:68:66:c4:45:a5:f8:49:1f:df:88:65:
26:81:82:89:a0:c0:ed:50:69:bd:a2:83:96:ef:50:d1:19:40:
3b:51:02:9b:cb:1f:1f:f8:6b:c6:85:1f:05:b3:c7:54:23:7b:
45:75:58:6e:a1:a5:8b:38:d3:97:f2:68:2b:9f:21:b4:b3:33:
3f:ea:92:6b:02:88:5a:a3:ae:a3:f9:be:a2:8d:9f:de:05:3d:
18:51:d3:2e:be:75:d9:2d:6f:80:51:3d:5a:dc:80:81:64:5d:
d3:f6:ea:b1:94:fe:90:6c:3c:7a:6b:d3:53:5d:4b:bf:6d:47:
4a:93:53:4b:8f:08:ce:cf:de:de:ef:b5:7a:ae:da:76:78:e5:
f0:8e:b4:6b:57:e1:c6:37:09:1b:9b:27:7c:0b:12:9e:54:69:
c5:79:57:f1:c0:8c:86:9a:7f:71:33:75:c2:72:f2:34:88:f4:
ee:aa:99:24:fb:fb:d1:a5:df:23:c7:e9:d6:ad:28:49:81:79:
3d:d6:05:71:5d:7e:96:6a:cd:7c:16:5c:63:2b:27:7f:c4:00:
21:b4:fc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:02:00 2026 by rpki-client