Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/gXHVKG-JVzO9_jEGgE9ZLQa-xIk.roa
File: gXHVKG-JVzO9_jEGgE9ZLQa-xIk.roa (raw, json)
Hash identifier: w8luRE5sZERw/KvZdVDd2HVCUA0Yv15U8Hw9ib/ZWlM=
Subject key identifier: 81:71:D5:28:6F:89:57:33:BD:FE:31:06:80:4F:59:2D:06:BE:C4:89
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019C7C1F9BB01D9F38B6BC8C3D1E5ED88B6E
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/gXHVKG-JVzO9_jEGgE9ZLQa-xIk.roa
Signing time: Fri 20 Feb 2026 17:36:12 +0000
ROA not before: Fri 20 Feb 2026 17:36:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9304
IP address blocks: 94.229.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:7c:1f:9b:b0:1d:9f:38:b6:bc:8c:3d:1e:5e:d8:8b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Feb 20 17:36:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8171d5286f895733bdfe3106804f592d06bec489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:42:a0:84:5c:8e:1e:7a:81:da:24:10:1a:66:
b6:b8:20:a9:99:31:5c:20:28:1f:de:ce:86:a6:8d:
08:36:19:5e:a1:7a:cb:b3:3d:62:55:1f:fc:1f:3e:
c3:63:cf:25:19:e0:a3:fe:e5:01:59:1f:db:be:47:
64:b9:6c:b6:ea:be:10:02:ab:27:21:2c:f5:5a:46:
75:9a:fe:11:a9:6f:09:4c:a4:94:ea:06:df:8d:ee:
99:ec:46:32:b0:66:87:ee:0d:97:c5:3e:70:52:47:
72:5e:32:b0:41:ab:da:2d:76:db:a9:ef:bb:16:3c:
56:d4:63:75:08:eb:29:97:a4:dc:8b:31:52:9d:7e:
c6:0d:59:82:c6:b0:c4:01:5f:37:02:86:0a:0d:14:
14:f0:10:68:a8:a6:2c:28:07:87:74:ad:5b:c2:ce:
51:41:f5:d5:67:a9:66:bb:ff:c3:65:17:84:e5:54:
db:09:63:26:cd:07:e4:eb:b0:89:59:1a:c1:b1:e5:
4f:d7:85:de:a0:e2:2c:e2:a6:be:17:75:c6:fc:72:
ad:db:3e:2f:ca:1b:c3:3c:86:38:14:a4:9f:f0:46:
96:33:30:bb:67:24:e1:69:73:7b:06:98:5e:10:55:
e9:6b:2a:29:a1:f7:72:6a:2f:32:0b:1f:73:47:de:
ae:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:71:D5:28:6F:89:57:33:BD:FE:31:06:80:4F:59:2D:06:BE:C4:89
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/gXHVKG-JVzO9_jEGgE9ZLQa-xIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.229.218.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:43:87:84:93:17:a4:70:54:a5:ef:4d:b8:2d:cc:bb:60:14:
f7:59:f2:31:4f:e6:f0:ac:3a:0a:3a:eb:69:f7:d0:51:d9:10:
45:c6:74:e4:df:69:5c:d0:c3:7d:8e:10:74:71:ba:f0:62:5b:
ba:4b:df:15:cb:05:6c:3a:85:31:f2:05:17:6b:44:4e:5b:20:
da:a7:aa:30:66:bc:b3:67:3f:ab:5d:1c:ea:18:4d:44:c9:ea:
ec:89:16:26:38:3a:fb:1f:a0:a8:51:97:08:de:4f:28:b3:1d:
91:c1:a8:4d:47:94:62:81:7f:3b:2b:fb:ec:f6:ce:c5:08:16:
ec:e9:d7:44:6c:18:7a:c6:fa:eb:7e:c2:aa:05:1b:e0:00:38:
39:a2:0a:b1:a7:43:9a:95:87:08:2c:c2:4a:ea:d7:19:3b:a1:
c9:e1:f9:80:c5:60:38:47:4f:00:19:16:05:01:6e:f7:3b:7a:
fa:ec:16:af:5a:5e:75:8a:ba:bf:c9:94:11:20:0d:12:70:7f:
7e:21:39:4b:5d:17:e8:66:f9:b6:43:7a:b5:dc:3f:98:0d:ff:
00:13:42:e1:30:aa:b9:71:16:30:b2:d2:63:6c:35:f4:33:7d:
01:8c:f9:e0:8e:f8:97:f9:22:56:82:0f:08:39:00:2c:38:36:
9b:3c:f8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:08:45 2026 by rpki-client