Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/LnTDeAq5cbx3b3XnP65aQWmUeCs.roa
File: LnTDeAq5cbx3b3XnP65aQWmUeCs.roa (raw, json)
Hash identifier: VTuZic/G4GEGMOPiljA9N6EvyygFF2GLI3A2dOfG+po=
Subject key identifier: 2E:74:C3:78:0A:B9:71:BC:77:6F:75:E7:3F:AE:5A:41:69:94:78:2B
Certificate issuer: /CN=7a8bae923305a71c526a6fcf57c29d6c16a4269e
Certificate serial: 019DAA6E2D76F96D5AA0510ABFE4F3C9DEDE
Authority key identifier: 7A:8B:AE:92:33:05:A7:1C:52:6A:6F:CF:57:C2:9D:6C:16:A4:26:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eouukjMFpxxSam_PV8KdbBakJp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/LnTDeAq5cbx3b3XnP65aQWmUeCs.roa
Signing time: Mon 20 Apr 2026 10:27:20 +0000
ROA not before: Mon 20 Apr 2026 10:27:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 2a00:7320::/29 maxlen: 29
2a00:7320::/32 maxlen: 32
2a00:7321::/32 maxlen: 32
2a00:7322::/32 maxlen: 32
2a00:7323::/32 maxlen: 32
2a00:7324::/32 maxlen: 32
2a00:7325::/32 maxlen: 32
2a00:7326::/32 maxlen: 32
2a00:7327::/32 maxlen: 32
2a04:4f80::/29 maxlen: 29
2a04:4f80::/32 maxlen: 32
2a04:4f81::/32 maxlen: 32
2a04:4f82::/32 maxlen: 32
2a04:4f83::/32 maxlen: 32
2a04:4f84::/32 maxlen: 32
2a04:4f85::/32 maxlen: 32
2a04:4f86::/32 maxlen: 32
2a04:4f87::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/eouukjMFpxxSam_PV8KdbBakJp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/eouukjMFpxxSam_PV8KdbBakJp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/eouukjMFpxxSam_PV8KdbBakJp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 13:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:aa:6e:2d:76:f9:6d:5a:a0:51:0a:bf:e4:f3:c9:de:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8bae923305a71c526a6fcf57c29d6c16a4269e
Validity
Not Before: Apr 20 10:27:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2e74c3780ab971bc776f75e73fae5a416994782b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:68:0f:31:b7:c3:ec:8b:eb:7f:71:7f:57:32:
0f:55:87:3d:e8:64:a5:48:8e:c3:c7:6f:b8:3e:e8:
9d:41:8e:b7:8c:c7:68:5f:7d:50:2a:66:60:30:59:
85:1c:5b:97:76:36:dd:bd:a3:78:b2:08:7d:e4:84:
c8:71:a0:35:66:27:f7:95:9d:d9:43:b4:3e:75:d4:
6d:28:e9:8b:e2:71:a6:0a:78:c8:23:40:88:7b:14:
4e:a8:cf:27:85:38:1a:74:d4:df:54:27:88:c4:2a:
fe:e9:bf:de:c4:e4:86:47:da:ee:2f:64:2b:bf:73:
7b:d6:f2:b2:49:9a:68:c5:e9:22:bb:b6:7c:74:94:
7c:d7:81:dd:c8:46:e2:12:31:bd:37:43:4a:9e:80:
3b:27:3d:2f:0f:60:dc:78:7c:58:23:e2:0f:b8:b3:
d2:fb:2b:3e:43:35:cb:7d:4f:12:83:b3:9c:6f:b6:
99:5f:90:38:2d:40:7e:3b:05:97:1f:30:17:53:48:
e4:e5:2f:3e:24:a2:40:1b:53:fc:b6:0b:3d:bb:8f:
2c:8c:12:3c:3f:cb:f6:18:0f:31:de:ef:8c:60:23:
c4:a1:1e:e6:39:a4:86:cf:8b:05:db:e0:f5:a9:af:
5e:a1:fd:5f:e2:38:15:58:d5:b9:fe:37:ad:7b:76:
38:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:74:C3:78:0A:B9:71:BC:77:6F:75:E7:3F:AE:5A:41:69:94:78:2B
X509v3 Authority Key Identifier:
keyid:7A:8B:AE:92:33:05:A7:1C:52:6A:6F:CF:57:C2:9D:6C:16:A4:26:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eouukjMFpxxSam_PV8KdbBakJp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/LnTDeAq5cbx3b3XnP65aQWmUeCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2a1e5c-1010-4098-94c9-de0c570ba850/1/eouukjMFpxxSam_PV8KdbBakJp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7320::/29
2a04:4f80::/29
Signature Algorithm: sha256WithRSAEncryption
15:4c:2b:c1:22:74:12:e6:4c:5e:73:ac:16:c0:bf:50:a2:5f:
74:fd:ae:2a:96:2d:63:4d:12:29:05:d1:21:e7:84:c7:5a:8c:
71:18:cb:2a:bb:4e:29:db:a7:e8:07:51:c6:de:5c:97:f9:e1:
10:d0:05:90:74:a2:7a:f9:5a:54:ce:88:9b:1e:cd:b3:17:e4:
13:38:9a:18:7c:17:af:95:a8:da:f0:45:35:32:a7:ff:96:40:
9e:de:96:60:f7:eb:24:2e:87:31:b6:2b:51:7b:cd:94:fa:8c:
00:9d:4f:c7:1e:51:07:4b:5a:48:6c:e3:21:7f:9a:eb:59:c2:
08:75:92:1e:ba:c4:e5:62:7c:a1:8d:8d:60:37:33:55:f3:f7:
ce:d9:4c:ff:81:43:30:6c:c1:31:58:ee:59:fd:d5:60:2a:01:
f4:5e:6f:4e:2f:55:76:bc:1d:cb:a0:8f:97:67:b9:d9:59:88:
34:c7:6e:0f:94:e3:70:86:b2:d5:80:7a:3c:c6:0f:be:5a:e2:
7b:39:44:1e:34:a3:4e:7d:71:7f:34:ef:7f:af:10:e1:12:44:
f5:b9:6b:92:8c:b8:d9:9d:f2:87:a9:14:5d:bc:cb:a3:5f:39:
ab:31:12:2d:c4:36:b5:f8:b1:e4:68:05:4d:08:4d:55:99:f0:
91:0a:5e:3e
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZ2qbi12+W1aoFEKv+Tzyd7eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhOGJhZTkyMzMwNWE3MWM1MjZhNmZjZjU3YzI5ZDZjMTZh
NDI2OWUwHhcNMjYwNDIwMTAyNzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTc0YzM3ODBhYjk3MWJjNzc2Zjc1ZTczZmFlNWE0MTY5OTQ3ODJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2gPMbfD7Ivrf3F/VzIPVYc96GSl
SI7Dx2+4PuidQY63jMdoX31QKmZgMFmFHFuXdjbdvaN4sgh95ITIcaA1Zif3lZ3Z
Q7Q+ddRtKOmL4nGmCnjII0CIexROqM8nhTgadNTfVCeIxCr+6b/exOSGR9ruL2Qr
v3N71vKySZpoxekiu7Z8dJR814HdyEbiEjG9N0NKnoA7Jz0vD2DceHxYI+IPuLPS
+ys+QzXLfU8Sg7Ocb7aZX5A4LUB+OwWXHzAXU0jk5S8+JKJAG1P8tgs9u48sjBI8
P8v2GA8x3u+MYCPEoR7mOaSGz4sF2+D1qa9eof1f4jgVWNW5/jete3Y4uQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFC50w3gKuXG8d2915z+uWkFplHgrMB8GA1UdIwQY
MBaAFHqLrpIzBaccUmpvz1fCnWwWpCaeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZW91dWtqTUZweHhTYW1fUFY4S2RiQmFrSnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yYTFlNWMtMTAxMC00MDk4LTk0Yzkt
ZGUwYzU3MGJhODUwLzEvTG5URGVBcTVjYngzYjNYblA2NWFRV21VZUNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yYTFlNWMtMTAxMC00MDk4LTk0YzktZGUwYzU3MGJhODUw
LzEvZW91dWtqTUZweHhTYW1fUFY4S2RiQmFrSnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgBzIAMF
AyoET4AwDQYJKoZIhvcNAQELBQADggEBABVMK8EidBLmTF5zrBbAv1CiX3T9riqW
LWNNEikF0SHnhMdajHEYyyq7Tinbp+gHUcbeXJf54RDQBZB0onr5WlTOiJsezbMX
5BM4mhh8F6+VqNrwRTUyp/+WQJ7elmD36yQuhzG2K1F7zZT6jACdT8ceUQdLWkhs
4yF/mutZwgh1kh66xOVifKGNjWA3M1Xz987ZTP+BQzBswTFY7ln91WAqAfReb04v
VXa8Hcugj5dnudlZiDTHbg+U43CGstWAejzGD75a4ns5RB40o059cX8073+vEOES
RPW5a5KMuNmd8oepFF28y6NfOasxEi3ENrX4seRoBU0ITVWZ8JEKXj4=
-----END CERTIFICATE-----
Generated at Mon Apr 27 20:07:42 2026 by rpki-client