Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jLt4ncnKM_TZvtcercytXZLimB4.roa
File: jLt4ncnKM_TZvtcercytXZLimB4.roa (raw, json)
Hash identifier: ETN5WkxpVpzPztXSClFKnSobFSWzzpX0C+zqZS5bRoU=
Subject key identifier: 8C:BB:78:9D:C9:CA:33:F4:D9:BE:D7:1E:AD:CC:AD:5D:92:E2:98:1E
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019E5DDE195AB0B1578849221FECBE28E8B3
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jLt4ncnKM_TZvtcercytXZLimB4.roa
Signing time: Mon 25 May 2026 06:41:37 +0000
ROA not before: Mon 25 May 2026 06:41:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 262199
IP address blocks: 178.19.42.0/24 maxlen: 24
178.19.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 30 May 2026 15:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5d:de:19:5a:b0:b1:57:88:49:22:1f:ec:be:28:e8:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 25 06:41:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8cbb789dc9ca33f4d9bed71eadccad5d92e2981e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b7:a2:42:16:27:9f:a3:7b:75:37:a4:61:29:
e8:13:c5:22:a0:35:c2:ca:15:e0:83:0e:da:63:3b:
87:e8:77:07:10:0f:14:8a:74:b0:dc:14:88:aa:b4:
03:cf:41:4c:35:0c:8c:d4:3a:64:17:64:1c:41:f0:
85:e6:2c:7a:72:21:3f:20:9f:e2:61:75:6c:e1:0d:
62:f8:24:bc:4c:8a:7a:df:00:98:1e:f0:e2:64:ed:
05:2a:f4:69:ba:fe:5d:22:14:89:cc:f0:7a:36:98:
3d:15:e6:14:9d:36:47:aa:eb:82:30:da:73:4c:37:
00:d7:d9:57:93:0b:d7:e8:c0:b4:a5:31:3c:30:ad:
9c:a0:05:dc:2b:a3:4f:a5:3c:81:f1:ef:4f:37:d4:
0f:0c:e3:ed:fd:42:e1:6d:45:63:8c:7a:cc:05:2d:
2d:99:39:7e:26:4b:8f:08:ed:2f:cc:70:30:ed:7a:
18:29:1a:a6:cc:eb:14:17:85:a9:9c:f4:15:ce:44:
43:be:2f:84:8e:d3:ec:74:ae:f7:f6:f8:1f:d2:e1:
91:fa:7f:2c:39:23:e2:8d:22:8c:6a:45:5d:e0:6c:
6b:b4:ab:a9:7c:82:7e:2f:93:83:73:d3:19:85:e8:
8e:d2:29:ce:41:2d:bc:36:31:22:14:5c:59:87:64:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BB:78:9D:C9:CA:33:F4:D9:BE:D7:1E:AD:CC:AD:5D:92:E2:98:1E
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jLt4ncnKM_TZvtcercytXZLimB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.19.42.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:46:11:5b:7c:53:ba:67:19:99:0b:e3:25:bd:6b:31:00:1b:
d6:a5:6c:46:e2:26:2d:11:5e:0a:41:63:66:c1:ef:c2:18:ad:
68:9c:be:2a:7d:05:5b:1e:cb:16:39:4c:ce:85:ab:de:57:15:
d1:3a:ad:e7:61:34:31:99:d9:48:1f:f3:10:9c:6b:cc:38:16:
04:f2:5e:48:52:a3:1e:8f:05:e8:69:68:28:8d:af:83:2d:23:
6b:7a:c1:af:7d:08:7b:c9:74:64:29:02:01:99:9b:1d:69:de:
cf:65:a1:7a:c8:22:11:dd:cd:e6:83:09:7f:70:22:00:48:ce:
fb:80:f1:20:ff:f1:b2:2b:62:42:09:ec:d0:9f:ed:fd:f7:13:
a7:38:60:12:3d:7d:d2:22:7b:98:cf:ea:f2:6e:bb:40:67:c6:
20:52:07:26:d9:fa:ba:98:83:f6:98:e8:56:07:e8:b4:5b:15:
9b:5c:80:b9:3f:54:eb:68:60:7d:2d:bf:76:a8:0f:ea:1a:98:
57:bd:da:5a:3c:2c:e5:8c:d9:85:73:7a:35:ee:15:f9:05:1e:
79:a5:1d:f0:cc:0c:3f:24:6a:d7:d5:4f:db:17:f4:67:40:d1:
bd:6d:49:fe:63:40:63:fb:75:cb:13:e2:70:00:27:e3:ff:a7:
62:94:9a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 29 23:15:41 2026 by rpki-client