Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/w-eJqf8pDJJqzwEEQkRmGKTY3A0.roa
File: w-eJqf8pDJJqzwEEQkRmGKTY3A0.roa (raw, json)
Hash identifier: DLavvl24qjY3L8xwPWJHHU7Ty7w8TSmp6JbhB1hZDXs=
Subject key identifier: C3:E7:89:A9:FF:29:0C:92:6A:CF:01:04:42:44:66:18:A4:D8:DC:0D
Certificate issuer: /CN=d4b95330734c9aaf66d11bcd2bedd380f410f93f
Certificate serial: 019D86D5EDCE0BB502AAC690BC3FAF822FFA
Authority key identifier: D4:B9:53:30:73:4C:9A:AF:66:D1:1B:CD:2B:ED:D3:80:F4:10:F9:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/w-eJqf8pDJJqzwEEQkRmGKTY3A0.roa
Signing time: Mon 13 Apr 2026 12:34:20 +0000
ROA not before: Mon 13 Apr 2026 12:34:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 26383
IP address blocks: 103.31.76.0/24 maxlen: 24
103.31.77.0/24 maxlen: 24
103.110.65.0/24 maxlen: 24
103.110.66.0/24 maxlen: 24
103.146.119.0/24 maxlen: 24
132.243.192.0/24 maxlen: 24
132.243.193.0/24 maxlen: 24
132.243.208.0/24 maxlen: 24
132.243.209.0/24 maxlen: 24
132.243.210.0/23 maxlen: 23
132.243.216.0/22 maxlen: 22
132.243.246.0/23 maxlen: 23
132.243.248.0/22 maxlen: 22
132.243.252.0/24 maxlen: 24
132.243.253.0/24 maxlen: 24
132.243.254.0/24 maxlen: 24
132.243.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:86:d5:ed:ce:0b:b5:02:aa:c6:90:bc:3f:af:82:2f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b95330734c9aaf66d11bcd2bedd380f410f93f
Validity
Not Before: Apr 13 12:34:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c3e789a9ff290c926acf010442446618a4d8dc0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:cc:fe:90:04:3d:d5:5a:ee:52:54:b1:0c:
00:42:e2:49:4e:e2:36:94:fd:cc:d5:3d:a6:f2:2a:
a1:ce:ea:87:c1:ff:59:1e:2c:a5:bb:9d:8d:49:c7:
fe:ae:b5:21:80:b7:aa:e9:e8:12:aa:f1:62:63:79:
51:81:f5:1f:dc:25:de:db:b0:96:d9:67:d3:91:90:
ef:32:4e:c7:ca:51:ad:ad:8e:5d:de:ed:77:e2:a9:
1c:04:2f:df:e4:79:ec:a7:72:5d:56:6b:1b:60:d6:
04:cb:cf:2b:e6:a7:87:67:64:d5:fb:b2:30:34:ed:
5a:d1:18:c8:c3:cd:0f:96:10:86:a8:e7:5d:62:8f:
87:99:87:32:a9:0f:b0:42:cd:67:32:69:fb:a3:68:
d6:26:51:35:41:48:58:de:33:3f:b7:e5:ce:71:df:
4d:fb:ab:a9:64:46:b0:75:6f:cc:3b:0b:3a:e2:d1:
b9:a5:42:23:28:9c:70:b8:64:3b:b8:aa:32:c4:21:
3b:75:1d:49:6e:59:80:05:bc:0a:24:de:28:32:67:
5c:57:12:ec:57:f1:7b:f4:b2:27:e1:a6:d6:6d:91:
a6:9e:a8:fd:fe:4b:c0:7b:fe:c4:af:d1:7c:fc:ad:
a5:cf:a1:d7:df:67:42:a6:10:43:64:70:26:82:e1:
5e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E7:89:A9:FF:29:0C:92:6A:CF:01:04:42:44:66:18:A4:D8:DC:0D
X509v3 Authority Key Identifier:
keyid:D4:B9:53:30:73:4C:9A:AF:66:D1:1B:CD:2B:ED:D3:80:F4:10:F9:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/w-eJqf8pDJJqzwEEQkRmGKTY3A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.31.76.0/23
103.110.65.0-103.110.66.255
103.146.119.0/24
132.243.192.0/23
132.243.208.0/22
132.243.216.0/22
132.243.246.0-132.243.255.255
Signature Algorithm: sha256WithRSAEncryption
bf:62:74:01:1a:7a:7c:69:9e:a4:d8:03:75:43:e7:c6:b6:d8:
5e:ce:cb:16:83:8f:5e:22:cc:4f:56:2b:42:10:f1:fc:67:92:
44:aa:76:44:30:a7:16:bc:10:b2:a9:d6:26:b6:b5:50:fc:b3:
73:14:9e:47:40:b8:bb:46:b8:99:f0:a4:0e:16:12:e4:d0:e4:
45:fd:58:b6:aa:f9:db:dd:c5:8e:96:02:f6:d5:70:a2:d9:4d:
fb:ee:dd:a0:47:39:1c:19:af:6a:81:cc:9a:d8:92:d5:62:93:
9e:2b:67:44:d2:5d:d3:b3:77:a1:f1:a3:15:17:87:3f:cc:ab:
3e:d0:da:67:45:e7:00:a2:c5:63:1b:d8:3b:1c:d0:7a:d6:e6:
6d:44:2b:4e:7d:69:32:82:0f:2d:9b:0c:71:cc:cf:f2:d0:15:
3e:7c:be:47:0d:74:8a:a2:3a:14:2b:e1:20:1d:17:1f:ca:87:
f9:31:5a:19:b8:d9:d9:71:41:af:0f:ff:ea:ad:d6:2a:a7:16:
29:dc:1d:d9:0f:b4:c8:00:fa:c8:74:c3:d0:22:81:0f:d7:1c:
fb:46:3e:6c:3a:de:7e:55:03:04:da:b2:2b:ec:11:59:0f:c2:
94:eb:3e:67:0c:50:ca:29:86:75:c6:cb:d4:6e:61:ee:9d:d2:
1a:82:e0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:51:55 2026 by rpki-client