Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/4YrP_GMXN-9_98lTPO7BAnb9Uww.roa
File: 4YrP_GMXN-9_98lTPO7BAnb9Uww.roa (raw, json)
Hash identifier: ZE5NJ8weEe35ei1/Z8mIitscXSDfGVCMmkz9eemXrFY=
Subject key identifier: E1:8A:CF:FC:63:17:37:EF:7F:F7:C9:53:3C:EE:C1:02:76:FD:53:0C
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 019D73A70A5BAC59F45C7FB81D9FE1C38D65
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/4YrP_GMXN-9_98lTPO7BAnb9Uww.roa
Signing time: Thu 09 Apr 2026 19:10:20 +0000
ROA not before: Thu 09 Apr 2026 19:10:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 23061
IP address blocks: 45.138.12.0/24 maxlen: 24
45.138.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:73:a7:0a:5b:ac:59:f4:5c:7f:b8:1d:9f:e1:c3:8d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Apr 9 19:10:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e18acffc631737ef7ff7c9533ceec10276fd530c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:85:cd:d8:6a:fb:2b:5a:d8:12:68:c5:d1:f3:
38:f9:ef:0d:af:e8:10:f7:b8:5c:bf:11:53:3e:80:
b3:1c:37:99:a1:c5:b1:c0:dd:75:bf:72:ae:20:6b:
9c:60:9b:6f:1e:66:22:bd:52:23:fc:47:9e:6a:5e:
4c:ec:69:d8:e4:ac:e6:98:42:3f:dd:57:d6:4a:c5:
b5:e9:ee:5c:94:fa:b3:86:09:ff:55:2c:ab:17:49:
ae:a0:c3:d4:b8:25:5b:18:43:76:a7:d2:63:8c:49:
68:e4:04:de:bf:6f:a2:09:e4:33:83:2b:e4:d9:1a:
83:d9:b7:5b:0f:fa:ef:27:11:ee:27:fd:53:75:3c:
66:b6:b2:a6:dd:9f:76:9b:d8:d7:f1:1d:66:47:1d:
ef:38:16:a3:31:2e:4b:eb:53:8b:33:b0:71:6b:1f:
5e:a3:e3:01:ab:04:1c:a8:5a:ba:33:35:3d:21:14:
a1:ef:07:6b:c0:63:bc:e0:9e:04:f6:79:fe:a2:cf:
c4:26:66:25:9a:80:3f:63:94:dc:8f:49:e4:93:dd:
57:02:bb:02:3c:03:a0:c5:f9:fa:1e:06:b0:7b:38:
e0:3a:20:77:81:35:f0:cc:2d:ab:5a:a6:88:12:49:
20:52:a0:e2:d2:b7:24:41:b3:3b:c1:92:79:9d:79:
a5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:8A:CF:FC:63:17:37:EF:7F:F7:C9:53:3C:EE:C1:02:76:FD:53:0C
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/4YrP_GMXN-9_98lTPO7BAnb9Uww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.12.0/23
Signature Algorithm: sha256WithRSAEncryption
59:72:39:fc:b5:e3:0b:27:8b:74:0a:2b:e6:24:9c:9f:18:63:
0e:82:48:bc:b6:c2:07:96:0d:78:40:ff:6c:03:77:b2:a1:d8:
2e:69:e2:12:07:a4:c9:a1:d2:15:80:2e:8f:2a:14:43:c2:55:
3e:0b:b8:df:fd:4b:4f:02:c3:c5:ea:5f:e2:14:69:8b:a0:0a:
4c:83:2c:3f:ae:c5:31:51:af:8b:41:0f:72:b9:d1:89:41:54:
87:b5:c3:bf:a4:e1:9b:c7:fc:fb:10:5e:59:79:9d:c0:f9:5e:
42:7d:f3:6e:a0:cb:26:da:c6:be:02:54:46:25:c7:bc:0d:3c:
67:a1:b6:53:32:42:58:2a:e5:6f:b3:a7:20:78:4a:1a:10:5b:
9d:b9:6e:75:0a:00:3f:86:55:18:37:70:61:30:66:8b:45:e5:
e2:28:d7:e4:43:f2:75:89:1b:ea:6f:c6:17:75:0e:4e:fb:9e:
0d:45:ee:33:6f:b1:68:f2:08:91:de:ca:9c:64:48:47:54:e9:
73:2b:b7:46:42:60:51:a8:37:57:1f:7f:f8:c0:e4:69:25:a6:
62:84:c7:2f:be:cd:33:6d:85:f7:03:08:bb:e7:6f:60:1c:b6:
c9:99:3f:6c:b9:b4:dd:d0:58:e2:bb:3e:9c:bc:26:cd:42:4b:
d5:25:47:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:31:31 2026 by rpki-client