Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/S1JnSXKRylQf_Uh5rIFy-LkjUjc.roa
File: S1JnSXKRylQf_Uh5rIFy-LkjUjc.roa (raw, json)
Hash identifier: vNnVXt5NopYDCqipg2PS3dWJG6ySbA9t5QTX1gIkUow=
Subject key identifier: 4B:52:67:49:72:91:CA:54:1F:FD:48:79:AC:81:72:F8:B9:23:52:37
Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Certificate serial: 019C916479C46CF2CAAF42EB87D85206707D
Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/S1JnSXKRylQf_Uh5rIFy-LkjUjc.roa
Signing time: Tue 24 Feb 2026 20:43:27 +0000
ROA not before: Tue 24 Feb 2026 20:43:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42375
IP address blocks: 2a09:3700::/32 maxlen: 32
2a09:3701::/32 maxlen: 32
2a09:3702::/32 maxlen: 32
2a09:6903::/32 maxlen: 32
2a09:da41::/32 maxlen: 32
2a09:da42::/32 maxlen: 32
2a09:da43::/32 maxlen: 32
2a0c:2840::/32 maxlen: 32
2a0c:2841::/32 maxlen: 32
2a0c:2842::/32 maxlen: 32
2a0d:3040::/32 maxlen: 32
2a0d:3041::/32 maxlen: 32
2a0d:3042::/32 maxlen: 32
2a0d:adc0::/32 maxlen: 32
2a0d:adc1::/32 maxlen: 32
2a0d:adc2::/32 maxlen: 32
2a0d:adc3::/32 maxlen: 32
2a0d:b9c3::/32 maxlen: 32
2a0e:f00::/32 maxlen: 32
2a0e:f01::/32 maxlen: 32
2a0e:f02::/32 maxlen: 32
2a0e:13c0::/32 maxlen: 32
2a0e:13c1::/32 maxlen: 32
2a0e:13c2::/32 maxlen: 32
2a0e:4340::/32 maxlen: 32
2a0e:4341::/32 maxlen: 32
2a0e:4342::/32 maxlen: 32
2a0e:4580::/32 maxlen: 32
2a0e:4581::/32 maxlen: 32
2a0e:4582::/32 maxlen: 32
2a0e:67c0::/32 maxlen: 32
2a0e:67c1::/32 maxlen: 32
2a0e:67c2::/32 maxlen: 32
2a0e:dfc0::/32 maxlen: 32
2a0e:dfc1::/32 maxlen: 32
2a0e:dfc3::/32 maxlen: 32
2a0f:4302::/32 maxlen: 32
2a11:15c0::/32 maxlen: 32
2a11:15c2::/32 maxlen: 32
2a11:15c3::/32 maxlen: 32
2a11:3181::/32 maxlen: 32
2a11:3182::/32 maxlen: 32
2a11:3183::/32 maxlen: 32
2a11:34c0::/32 maxlen: 32
2a11:34c2::/32 maxlen: 32
2a11:34c4::/32 maxlen: 32
2a11:3d00::/32 maxlen: 32
2a11:3d03::/32 maxlen: 32
2a11:3d05::/32 maxlen: 32
2a11:4a00::/32 maxlen: 32
2a11:4a01::/32 maxlen: 32
2a11:4a03::/32 maxlen: 32
2a11:7880::/32 maxlen: 32
2a11:7881::/32 maxlen: 32
2a11:7882::/32 maxlen: 32
2a11:8501::/32 maxlen: 32
2a11:8502::/32 maxlen: 32
2a11:8503::/32 maxlen: 32
2a11:9881::/32 maxlen: 32
2a11:b680::/32 maxlen: 32
2a11:b681::/32 maxlen: 32
2a11:b682::/32 maxlen: 32
2a12:1240::/32 maxlen: 32
2a12:1540::/32 maxlen: 32
2a12:1541::/32 maxlen: 32
2a12:1542::/32 maxlen: 32
2a12:2cc0::/32 maxlen: 32
2a12:2cc1::/32 maxlen: 32
2a12:2cc2::/32 maxlen: 32
2a12:3bc2::/32 maxlen: 32
2a12:3bc3::/32 maxlen: 32
2a12:3bc4::/32 maxlen: 32
2a12:41c0::/32 maxlen: 32
2a12:41c1::/32 maxlen: 32
2a12:41c6::/32 maxlen: 32
2a12:9500::/32 maxlen: 32
2a12:9501::/32 maxlen: 32
2a12:9503::/32 maxlen: 32
2a14:9700::/32 maxlen: 32
2a14:9701::/32 maxlen: 32
2a14:9702::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.mft
rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:91:64:79:c4:6c:f2:ca:af:42:eb:87:d8:52:06:70:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Validity
Not Before: Feb 24 20:43:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4b5267497291ca541ffd4879ac8172f8b9235237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:e0:cf:f8:55:3b:88:be:72:06:b2:32:18:
f1:40:d3:77:8d:4b:7e:65:c3:26:1a:aa:b7:e7:1e:
19:e5:e0:aa:f6:fe:3b:83:df:fa:98:c5:c0:c3:d7:
4c:c0:10:59:7a:27:8d:e3:05:5d:46:e5:79:ea:2b:
44:84:87:36:f4:3a:fe:9e:3c:a9:53:1b:60:ba:05:
27:ed:68:eb:fa:8d:8f:08:90:9e:00:9f:c0:40:98:
e6:f2:ad:38:de:00:ab:54:3f:51:71:a9:31:ab:93:
18:e8:7a:c5:fb:b2:cc:d7:cf:3a:e3:1b:5e:db:6b:
1e:5b:c3:b1:29:92:9e:34:d3:ea:a7:28:29:e2:bc:
83:fc:f3:c2:34:04:54:45:48:69:e8:cf:78:89:26:
aa:25:e0:c3:55:20:e6:aa:6e:50:6d:e0:a3:e4:0e:
3a:5a:05:b4:a1:7f:ad:2d:90:79:b4:f0:82:9b:0c:
58:60:12:c8:1e:98:1f:fd:2e:75:eb:55:51:5a:3e:
3f:68:64:2e:01:60:d7:51:25:c1:14:a3:63:8c:e9:
9b:4f:f3:60:23:79:4e:87:04:e3:65:f7:c0:b0:2e:
5f:ed:45:3e:16:ef:51:7d:c8:b4:21:31:6e:90:d3:
90:6a:38:8f:8f:4d:e2:23:91:67:82:6b:06:44:dc:
a1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:52:67:49:72:91:CA:54:1F:FD:48:79:AC:81:72:F8:B9:23:52:37
X509v3 Authority Key Identifier:
keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/S1JnSXKRylQf_Uh5rIFy-LkjUjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3700::-2a09:3702:ffff:ffff:ffff:ffff:ffff:ffff
2a09:6903::/32
2a09:da41::-2a09:da43:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:2840::-2a0c:2842:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:3040::-2a0d:3042:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:adc0::/30
2a0d:b9c3::/32
2a0e:f00::-2a0e:f02:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:13c0::-2a0e:13c2:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:4340::-2a0e:4342:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:4580::-2a0e:4582:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:67c0::-2a0e:67c2:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:dfc0::/31
2a0e:dfc3::/32
2a0f:4302::/32
2a11:15c0::/32
2a11:15c2::/31
2a11:3181::-2a11:3183:ffff:ffff:ffff:ffff:ffff:ffff
2a11:34c0::/32
2a11:34c2::/32
2a11:34c4::/32
2a11:3d00::/32
2a11:3d03::/32
2a11:3d05::/32
2a11:4a00::/31
2a11:4a03::/32
2a11:7880::-2a11:7882:ffff:ffff:ffff:ffff:ffff:ffff
2a11:8501::-2a11:8503:ffff:ffff:ffff:ffff:ffff:ffff
2a11:9881::/32
2a11:b680::-2a11:b682:ffff:ffff:ffff:ffff:ffff:ffff
2a12:1240::/32
2a12:1540::-2a12:1542:ffff:ffff:ffff:ffff:ffff:ffff
2a12:2cc0::-2a12:2cc2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:3bc2::-2a12:3bc4:ffff:ffff:ffff:ffff:ffff:ffff
2a12:41c0::/31
2a12:41c6::/32
2a12:9500::/31
2a12:9503::/32
2a14:9700::-2a14:9702:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
67:23:0c:fe:d8:55:23:95:29:8a:c6:55:ad:e2:19:99:ec:68:
27:77:aa:ab:66:86:d5:87:11:cc:f4:7d:ba:2b:76:fd:c7:d2:
2b:3b:1b:b8:d0:db:6b:d7:bd:7d:83:93:90:31:b9:b4:74:36:
1d:e2:4e:6b:29:e6:dc:54:68:de:90:cc:e9:75:45:d8:ee:36:
2b:a7:2c:d9:ff:61:e5:fc:16:0d:87:5f:78:31:c1:fe:9f:f9:
94:9d:21:05:cf:38:4a:dc:f1:18:68:4a:da:eb:2a:80:4a:0a:
c6:80:2f:1d:93:20:b5:40:32:1d:ef:d4:4f:7d:89:56:a2:83:
7d:f8:e0:5b:78:c5:e3:f1:80:70:8a:63:0d:2a:20:7a:ca:bf:
1d:ea:e9:b2:75:14:7d:da:27:86:0f:cd:15:74:e7:d4:b3:30:
2b:ff:bb:02:b8:f9:c5:aa:de:f2:11:8c:54:c7:a1:06:f1:6c:
3f:02:60:bf:07:63:8e:37:30:f8:9a:a9:9d:3e:88:0f:2c:63:
d1:85:c1:ae:a8:ca:e7:35:d9:63:82:5d:91:17:72:15:bd:89:
62:12:9b:5c:72:e5:ff:2b:05:02:ff:41:ea:28:12:db:68:a1:
ad:7e:42:53:6d:02:b7:9b:a9:d8:b5:c7:ed:fc:db:cb:d7:c3:
a2:df:d1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:27:02 2026 by rpki-client