Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/e35ktrQsroeoz-hqYwMXgNxCrgE.roa
File: e35ktrQsroeoz-hqYwMXgNxCrgE.roa (raw, json)
Hash identifier: 0znXH2U5r65LOTxxhIiC9crhKr2/V5rJx+Qg3brtRY0=
Subject key identifier: 7B:7E:64:B6:B4:2C:AE:87:A8:CF:E8:6A:63:03:17:80:DC:42:AE:01
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019EBD427D75F60035C2A5CB31E887F506DE
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/e35ktrQsroeoz-hqYwMXgNxCrgE.roa
Signing time: Fri 12 Jun 2026 19:15:11 +0000
ROA not before: Fri 12 Jun 2026 19:15:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51082
IP address blocks: 189.75.183.0/24 maxlen: 24
200.181.89.0/24 maxlen: 24
201.14.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:17:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:42:7d:75:f6:00:35:c2:a5:cb:31:e8:87:f5:06:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jun 12 19:15:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7b7e64b6b42cae87a8cfe86a63031780dc42ae01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:d6:dc:14:84:65:9c:08:a0:7d:6a:ac:e6:
11:ed:7d:dc:b2:38:75:36:4a:7e:9f:59:48:2e:a8:
0f:ae:9f:23:f2:08:1f:ca:a8:fa:8b:f1:43:d8:66:
f6:dc:c0:7b:aa:b9:8e:87:ff:45:88:80:ea:f7:48:
1a:9d:fc:db:20:ee:5d:da:68:b8:4f:1f:33:4c:b1:
1e:87:15:8b:f4:b0:c2:a6:ee:b4:80:5e:05:91:b0:
83:92:75:a2:91:f7:65:0e:ae:3b:8f:f5:fb:a9:9e:
50:42:91:8a:95:9f:d6:19:cf:e1:4d:c9:e6:cf:7b:
38:1d:96:a4:cf:47:c4:12:88:e9:02:84:09:fd:f2:
fc:4f:25:4e:f3:47:70:44:ba:53:3f:64:9d:5e:0b:
d2:ce:5d:ae:9a:6f:16:b6:ee:d5:f9:b8:42:95:97:
67:c5:6a:65:b8:1b:c8:3b:fb:dc:13:7f:7a:13:7e:
4b:df:cd:1f:79:f6:57:23:35:5b:3d:c2:1e:58:a9:
17:b1:2a:43:45:b8:ad:c4:03:8a:d6:24:47:0a:78:
fc:1a:27:83:cd:09:5e:4a:07:c8:2c:28:e3:aa:a9:
5a:44:9e:a1:61:2c:14:c4:3f:a1:84:8f:96:ea:5b:
72:11:ec:89:ef:31:2e:5b:06:2f:e4:c9:73:6d:7e:
f7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7E:64:B6:B4:2C:AE:87:A8:CF:E8:6A:63:03:17:80:DC:42:AE:01
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/e35ktrQsroeoz-hqYwMXgNxCrgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.75.183.0/24
200.181.89.0/24
201.14.218.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:10:f7:77:12:73:45:e4:3b:f8:2a:0d:eb:03:d8:b8:08:57:
47:66:17:49:33:62:9a:43:ab:72:ea:83:74:65:a2:18:7a:32:
8a:1a:0c:f2:66:2f:18:f7:8b:3c:7b:e7:d7:31:40:de:37:08:
8f:c5:8c:ed:4c:47:ca:1c:5f:1e:30:a5:cc:59:e7:73:9d:46:
b9:f0:ae:d1:a1:66:c5:6b:58:20:b8:3b:c4:e3:71:49:30:d9:
f8:72:ff:c7:67:df:46:48:65:e5:0b:02:e8:5d:c1:a0:b5:dd:
41:2a:0b:25:5c:e8:c4:a6:b6:13:2a:9f:cb:46:a7:97:41:f9:
e2:c8:0e:b7:13:95:2b:f2:2c:82:12:22:7c:1c:a4:07:16:5c:
99:e2:1c:c8:2d:e0:8d:d8:ed:bf:28:02:fe:6b:9e:9b:9a:19:
3d:b4:de:89:f0:2b:d1:2c:2b:ac:28:bb:78:1c:4c:7f:3a:31:
1f:1b:84:78:1a:af:ec:cf:14:6f:7f:66:99:c8:76:1d:26:6c:
37:33:38:63:69:d7:b5:d3:27:e8:88:75:f1:9a:da:9c:90:2e:
cc:d4:c8:a5:84:f3:9e:9d:eb:f3:24:7a:69:df:9a:2e:de:e6:
5b:e2:fc:69:1b:ba:25:8b:32:42:39:d7:90:00:2d:c0:93:92:
25:a5:59:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:09 2026 by rpki-client