Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/enjrI3qS0eDKq9FxqgMBXZXa8bI.roa
File: enjrI3qS0eDKq9FxqgMBXZXa8bI.roa (raw, json)
Hash identifier: 7AA44tOm4Fmfn4VUaeNF1GBVCgOMd9NfAXPwT0p2JtI=
Subject key identifier: 7A:78:EB:23:7A:92:D1:E0:CA:AB:D1:71:AA:03:01:5D:95:DA:F1:B2
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019D7292A09239EDC9B4631487E803892580
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/enjrI3qS0eDKq9FxqgMBXZXa8bI.roa
Signing time: Thu 09 Apr 2026 14:08:25 +0000
ROA not before: Thu 09 Apr 2026 14:08:25 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 396542
IP address blocks: 81.19.194.0/24 maxlen: 24
81.19.194.30/32 maxlen: 32
81.19.195.0/24 maxlen: 24
81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.0/24 maxlen: 24
185.100.0.53/32 maxlen: 32
2a10:eec0:abcd::/48 maxlen: 48
2a10:eec0:abcd::30/128 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:72:92:a0:92:39:ed:c9:b4:63:14:87:e8:03:89:25:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Apr 9 14:08:25 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7a78eb237a92d1e0caabd171aa03015d95daf1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ad:c6:a5:04:a5:ec:e9:0c:e3:74:30:04:8f:
65:22:08:52:b5:1c:c5:8c:eb:1a:a5:71:f5:22:f6:
3f:4b:fc:83:0b:19:65:2e:59:3c:11:e7:8a:c7:5b:
d6:c0:ce:d0:44:0a:82:92:7c:c6:75:ac:a0:e4:90:
90:e6:39:d6:03:34:50:37:84:4a:91:6e:91:5d:52:
5a:e8:cc:c6:63:ef:94:25:4c:2a:41:36:be:93:1e:
ad:c1:cd:d4:a7:d4:e8:43:ed:72:07:76:4f:47:08:
1b:a0:81:97:7a:d2:6b:c8:0f:5e:f6:e4:52:46:57:
d9:fd:a6:47:2e:4a:cb:61:6c:38:ab:c9:50:6d:c2:
29:72:5e:f9:da:a9:73:67:42:c7:8f:0d:6f:38:61:
8c:97:3a:d6:b2:6e:39:11:b0:76:4e:f2:86:c4:25:
2b:8e:c1:93:7f:1e:9d:3c:2e:fb:9c:03:1f:6a:d2:
f9:70:81:b5:15:b4:d3:19:dd:ef:fa:6a:7a:b8:67:
ff:e0:fa:26:43:e7:e9:66:1b:b6:4f:f1:6c:3b:67:
ff:c0:5d:d9:17:1d:51:58:dc:4e:ca:ee:3f:64:ed:
f6:2c:dc:7f:75:bb:dc:43:13:a8:80:0c:f9:a2:b6:
7c:dd:62:50:21:69:9c:4e:b6:57:8b:58:64:4f:1d:
d0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:78:EB:23:7A:92:D1:E0:CA:AB:D1:71:AA:03:01:5D:95:DA:F1:B2
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/enjrI3qS0eDKq9FxqgMBXZXa8bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.194.0/23
185.100.0.0/24
IPv6:
2a10:eec0:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
0b:1e:fe:72:64:c7:2f:1c:18:0b:59:09:d9:61:1c:71:f9:b1:
e3:28:c1:b4:3f:b9:36:e9:eb:01:ec:5a:29:de:98:16:65:73:
62:53:3b:52:ae:14:57:da:ad:08:65:c9:15:fd:de:64:d3:a3:
71:b2:50:33:eb:ce:05:b0:1d:ff:ae:ee:84:cc:55:1e:72:25:
8b:a2:42:da:17:6a:4a:87:51:76:37:b6:b4:64:41:f7:68:7c:
b2:65:65:45:4e:db:d4:11:22:45:c3:80:5e:f4:36:0c:ed:df:
04:49:7d:ec:b4:c1:f2:45:d1:24:3a:bd:b2:77:4a:5d:bd:08:
af:87:a3:88:a8:f7:76:55:15:e7:8b:4b:5e:7f:32:42:51:97:
e9:35:49:36:91:38:12:fb:2a:7b:dc:e3:62:20:10:18:21:d9:
a9:3e:ec:9a:43:89:3b:ef:31:5d:e6:41:ef:a8:25:98:44:a1:
ec:54:96:de:94:98:d3:26:a8:cc:30:46:b8:bf:f9:af:29:af:
de:55:d2:a4:38:7c:85:ec:11:72:72:79:e8:b6:d2:62:44:8f:
7c:db:6a:29:3d:ee:ac:a8:b5:06:fc:96:2c:ee:a2:40:b9:e2:
cd:61:80:8a:2b:98:33:c7:7f:6b:2b:cf:c1:52:20:a8:a6:c9:
a7:6c:c9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 01:21:26 2026 by rpki-client