Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/5j03nq1GsLOgXHKQxAdy91eOe0I.roa
File: 5j03nq1GsLOgXHKQxAdy91eOe0I.roa (raw, json)
Hash identifier: /lWEsUEU0Y8/XG1nbCZlOOfYGk+R7GscyRUxvhHO4tw=
Subject key identifier: E6:3D:37:9E:AD:46:B0:B3:A0:5C:72:90:C4:07:72:F7:57:8E:7B:42
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 019DA4F742E3BB3A6673114448DEEDB34CD8
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/5j03nq1GsLOgXHKQxAdy91eOe0I.roa
Signing time: Sun 19 Apr 2026 08:59:21 +0000
ROA not before: Sun 19 Apr 2026 08:59:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216126
IP address blocks: 2a0e:46c4:2200::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f7:42:e3:bb:3a:66:73:11:44:48:de:ed:b3:4c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Apr 19 08:59:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e63d379ead46b0b3a05c7290c40772f7578e7b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:6d:db:a8:ae:bc:29:8a:b4:26:76:5f:26:
1b:19:7c:1c:12:68:0a:b7:f2:95:ca:c8:f1:25:f3:
2d:b9:20:9e:ab:bc:bf:20:9e:cb:f5:6b:21:c6:cb:
44:c2:be:0a:dc:0a:3e:6b:a9:4b:51:a7:b6:a5:16:
8b:e5:8d:f3:7a:77:b0:89:75:e0:b5:81:f3:2a:b6:
ad:6a:05:86:f9:a2:ac:52:00:64:4e:5b:0f:03:55:
18:09:84:9c:f5:39:d2:e9:18:fa:5b:1f:bf:30:36:
73:c1:8b:a9:25:88:1d:b0:28:0a:26:5f:f8:36:52:
ea:e2:3a:de:86:ba:0f:b7:25:6d:d6:76:72:1d:69:
f7:47:4b:07:bd:bc:31:67:72:dc:8d:bf:4e:8f:ac:
0b:83:be:fd:4f:7d:55:ea:59:a1:be:26:e5:d3:c4:
27:d6:31:85:56:3b:e6:ae:b9:c0:34:2d:fe:ff:8a:
b0:5a:a2:e4:79:97:d5:15:ee:b9:13:68:42:de:e3:
7b:d8:60:f2:da:cd:c5:21:53:00:bc:5c:3f:3c:e0:
9a:aa:95:45:38:67:46:12:b2:37:d7:96:57:0a:b7:
7e:ef:69:8d:f3:65:4f:b5:c4:ae:b4:13:16:d1:6f:
82:eb:87:bb:40:36:be:72:44:86:c7:2e:3d:a4:ae:
4e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3D:37:9E:AD:46:B0:B3:A0:5C:72:90:C4:07:72:F7:57:8E:7B:42
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/5j03nq1GsLOgXHKQxAdy91eOe0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2200::/40
Signature Algorithm: sha256WithRSAEncryption
24:26:ce:99:af:a5:d9:2f:51:fc:4f:36:d6:8d:d6:56:fb:3a:
6c:ad:78:75:7d:c1:39:df:24:22:60:1d:25:92:75:7c:90:18:
12:83:9d:3d:d6:b4:42:75:c0:36:0b:07:5e:38:46:da:cb:97:
18:cd:f2:cf:a2:10:28:a0:0f:71:b9:45:53:9e:bc:f5:84:ec:
e7:d8:f7:86:e9:66:08:07:26:38:8a:64:15:db:78:56:b0:7f:
cf:e0:cb:e8:81:0c:56:6f:9c:9e:82:2d:e2:c7:9d:a9:38:81:
e0:77:4f:fd:27:e5:6c:e2:b8:a2:28:66:e1:05:99:7d:22:16:
e6:24:4c:1a:9a:cc:df:b2:c7:db:83:e2:45:bc:7c:27:b8:34:
d5:b5:0f:9a:d5:ea:6e:cc:7a:0f:77:64:8d:55:9c:01:30:96:
e8:a6:bc:10:8c:e6:f4:8f:db:0c:29:36:92:06:63:81:6a:0c:
ea:19:52:63:8f:1d:78:d1:62:a9:96:fe:e2:82:b5:9e:6c:04:
ed:60:f7:2f:c6:fd:8f:be:3e:5e:44:ad:98:8c:dc:87:61:c7:
ed:95:7d:df:9c:4c:26:23:56:50:1b:05:24:c7:b6:d0:ce:38:
86:96:5f:90:2c:bc:08:18:7b:e1:48:44:38:8a:a4:1e:b0:84:
2a:34:fd:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 17:25:27 2026 by rpki-client