Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/iNQKxHX5CYxdo6kSNaVI-54gxBM.roa
File: iNQKxHX5CYxdo6kSNaVI-54gxBM.roa (raw, json)
Hash identifier: lY7PO/C4BF6t0cothHlxweu1/afp8mOu32V8nDLIINU=
Subject key identifier: 88:D4:0A:C4:75:F9:09:8C:5D:A3:A9:12:35:A5:48:FB:9E:20:C4:13
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019EAD1BF808FAB3CA07B35256F45D2A2544
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/iNQKxHX5CYxdo6kSNaVI-54gxBM.roa
Signing time: Tue 09 Jun 2026 15:59:11 +0000
ROA not before: Tue 09 Jun 2026 15:59:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 141445
IP address blocks: 191.217.175.0/24 maxlen: 24
200.181.87.0/24 maxlen: 24
201.24.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ad:1b:f8:08:fa:b3:ca:07:b3:52:56:f4:5d:2a:25:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jun 9 15:59:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=88d40ac475f9098c5da3a91235a548fb9e20c413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:10:34:ae:00:af:7d:04:8c:22:27:8a:ba:16:
c7:18:a8:ff:79:55:47:e8:41:8c:25:ad:d2:68:85:
56:a5:3a:89:36:a4:8d:b6:b1:c1:6a:a5:5f:4f:70:
91:b1:31:47:80:9c:26:c9:65:55:79:6a:12:9d:17:
aa:8e:41:92:40:f1:e8:2a:e1:dd:d9:a1:30:9d:c2:
c8:1e:ba:1a:0f:68:e4:4c:b6:72:77:93:fa:92:d1:
54:95:cf:86:04:b5:48:8c:c7:93:7e:ea:a7:72:9e:
58:98:da:62:25:cd:90:fd:8d:7b:9c:c5:a7:15:35:
08:29:64:4e:73:63:33:26:6b:38:72:05:bf:a2:7c:
10:92:09:e7:4b:9f:50:60:25:9c:89:47:dd:34:05:
8c:07:eb:83:87:e8:1e:ea:82:cb:5c:7d:eb:a5:52:
43:50:4b:0a:a8:ab:31:fd:20:0c:38:2f:95:a5:b6:
94:b1:ae:6c:38:96:76:e5:b4:e2:e3:31:da:35:95:
85:2f:19:8b:35:37:b5:89:0f:43:d3:18:35:5c:4f:
a8:f9:38:5f:b0:b6:8f:7e:55:c3:3c:de:88:1a:f2:
d7:97:10:e2:5b:a0:5f:61:03:9e:07:41:0a:ec:fb:
4f:a1:31:d0:5a:ee:a0:ba:75:a7:91:ba:19:b0:01:
dd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D4:0A:C4:75:F9:09:8C:5D:A3:A9:12:35:A5:48:FB:9E:20:C4:13
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/iNQKxHX5CYxdo6kSNaVI-54gxBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.217.175.0/24
200.181.87.0/24
201.24.195.0/24
Signature Algorithm: sha256WithRSAEncryption
28:23:3b:a7:e7:34:50:1a:21:04:04:aa:55:ad:44:e8:0a:55:
01:18:92:0c:ce:dd:90:ed:44:04:50:09:08:e8:22:54:b3:24:
66:55:17:fd:28:e3:3c:c0:98:6c:6e:4d:91:f0:7f:f0:65:ad:
79:9d:4f:7c:16:58:4f:4b:90:71:dc:3d:26:0e:14:7b:27:1c:
fa:38:ee:77:2a:cc:c3:5d:4c:fc:23:cc:67:e2:eb:e3:90:71:
2a:9e:99:4d:15:ad:f8:76:dc:68:31:f8:24:7a:8d:fd:c2:5f:
87:f9:ea:5b:34:7d:3b:f2:f8:5a:9d:b9:19:86:a6:79:49:09:
6c:74:cb:c3:7f:14:5b:4a:dd:6c:a8:4e:cc:62:87:42:e9:fe:
ef:97:f3:d9:07:98:3e:93:3e:dd:e4:0e:6c:ef:b4:2e:c3:99:
0f:e5:67:f4:55:5f:12:1a:64:d8:23:57:02:cd:6d:aa:d0:0d:
5a:96:26:77:27:7a:66:ce:0c:bf:9f:13:dc:08:dd:61:6b:db:
21:ba:e5:0e:94:e1:a7:57:c1:5f:5b:b6:21:49:fa:c8:cb:bb:
12:9e:cb:e6:fc:85:2b:61:5d:39:46:9c:eb:8b:f1:16:92:7f:
78:36:0b:0f:df:17:15:6d:f4:98:89:2d:e6:09:30:56:de:e3:
75:81:7e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:34:29 2026 by rpki-client