Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/EnpjWa6jTZ0f10lP0S0FwRjl81c.roa
File: EnpjWa6jTZ0f10lP0S0FwRjl81c.roa (raw, json)
Hash identifier: Tu6dzLTXka43Bolzh36ID+Pn7QRVhlssaUjQzuUcBh4=
Subject key identifier: 12:7A:63:59:AE:A3:4D:9D:1F:D7:49:4F:D1:2D:05:C1:18:E5:F3:57
Certificate issuer: /CN=de87d35bdcab123affc1a91d1736867969709a23
Certificate serial: 019B7C11BE2128A18935B8268057D33C232D
Authority key identifier: DE:87:D3:5B:DC:AB:12:3A:FF:C1:A9:1D:17:36:86:79:69:70:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/EnpjWa6jTZ0f10lP0S0FwRjl81c.roa
Signing time: Fri 02 Jan 2026 00:18:16 +0000
ROA not before: Fri 02 Jan 2026 00:18:16 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 28712
IP address blocks: 217.14.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:11:be:21:28:a1:89:35:b8:26:80:57:d3:3c:23:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de87d35bdcab123affc1a91d1736867969709a23
Validity
Not Before: Jan 2 00:18:16 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=127a6359aea34d9d1fd7494fd12d05c118e5f357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1f:91:1d:90:8d:89:53:df:55:65:dd:fd:d6:
0e:01:76:40:ef:61:78:59:9a:c7:34:aa:52:1d:ca:
44:77:fc:fa:3b:4b:8a:17:00:2b:8a:6a:83:3a:33:
bd:73:f5:4c:44:fd:2e:5e:25:29:ad:22:fd:6e:69:
bc:c6:7c:21:8a:1c:dd:af:62:47:35:ac:d1:be:92:
62:47:9c:82:ee:56:c7:c9:44:63:68:43:18:14:ac:
8f:dd:7b:75:12:d3:cb:41:f3:b1:1c:50:34:e5:a8:
58:bf:00:dc:54:e4:75:dc:d0:2f:d3:d3:25:02:f2:
e5:e9:67:5e:47:4d:2a:0d:14:e5:ab:30:7f:c7:1c:
f7:fd:10:fc:27:e1:89:ae:73:40:7f:8e:42:4e:4b:
50:e9:b8:06:b6:a3:c7:10:9a:96:85:5f:22:1c:12:
45:13:ae:0a:16:a0:c8:47:f3:17:a1:36:d1:3c:82:
36:7a:83:ee:86:cd:8e:57:97:5d:65:27:31:d5:a5:
c2:c0:c7:6e:32:3a:c7:c4:cc:0f:a5:e0:38:e5:0e:
f8:2f:94:90:a6:20:72:df:65:bd:98:08:bc:d5:34:
6c:83:f6:25:2a:5d:1d:58:56:d2:3a:7c:8d:77:19:
39:2e:78:66:d1:2f:9d:9d:a8:9f:bf:f4:ab:9e:8b:
87:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7A:63:59:AE:A3:4D:9D:1F:D7:49:4F:D1:2D:05:C1:18:E5:F3:57
X509v3 Authority Key Identifier:
keyid:DE:87:D3:5B:DC:AB:12:3A:FF:C1:A9:1D:17:36:86:79:69:70:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/EnpjWa6jTZ0f10lP0S0FwRjl81c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.14.18.0/24
Signature Algorithm: sha256WithRSAEncryption
46:40:61:da:e7:4a:8f:3b:0b:5a:a8:ff:d6:33:48:b5:fb:b6:
87:21:86:ff:e5:ea:77:ae:d4:2a:27:cc:1c:dc:8a:29:ba:77:
14:88:fb:f6:ee:56:08:39:aa:de:7e:93:09:38:b3:8d:9d:d0:
6a:b7:cc:27:2f:2b:59:0b:e2:d3:89:d6:dd:ca:33:94:f9:f3:
04:39:84:29:01:c7:48:5f:2f:9d:46:0a:e1:f5:e8:15:9d:f8:
ef:55:cf:8c:ff:f1:62:6f:07:7f:f1:15:7d:da:de:8e:28:a8:
e5:16:90:6b:f5:8f:d6:fe:89:d0:a3:66:4e:ab:17:81:8b:c3:
5a:74:2e:fd:8f:25:77:20:69:33:57:51:10:3b:79:6c:cb:a4:
1a:f3:b8:de:9d:e0:50:fc:32:f6:a3:e5:9d:12:88:93:58:c6:
dd:08:82:1f:6d:f7:10:56:13:51:d1:c1:6e:5a:5c:dd:2d:b7:
e1:5c:cc:df:94:84:2a:f4:5b:a8:26:c3:35:14:b6:0f:46:b9:
e2:ed:85:44:10:ef:46:03:37:24:8a:0e:2b:cd:bb:75:43:f6:
23:a6:63:58:0f:82:e1:94:a8:25:67:76:2e:d1:e4:0c:6a:e1:
9a:44:5c:a6:2f:b9:60:c0:98:73:39:da:b5:01:13:83:a0:27:
cb:9b:1d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:37:41 2026 by rpki-client