Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sLBdUB7uY4EeVOlQkY-IAAn5NAc.roa
File: sLBdUB7uY4EeVOlQkY-IAAn5NAc.roa (raw, json)
Hash identifier: 6KFDHKy5ThY3kZDfyhPkjjeF/KaUWo1t1f2pg5KSoxQ=
Subject key identifier: B0:B0:5D:50:1E:EE:63:81:1E:54:E9:50:91:8F:88:00:09:F9:34:07
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019EB66303C2CC02AE206E511D7B96FC0B75
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sLBdUB7uY4EeVOlQkY-IAAn5NAc.roa
Signing time: Thu 11 Jun 2026 11:13:22 +0000
ROA not before: Thu 11 Jun 2026 11:13:22 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 219474
IP address blocks: 81.161.239.0/24 maxlen: 24
147.78.100.0/24 maxlen: 24
193.25.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:63:03:c2:cc:02:ae:20:6e:51:1d:7b:96:fc:0b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 11 11:13:22 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b0b05d501eee63811e54e950918f880009f93407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d4:f7:67:da:68:0b:ea:5e:b5:70:10:37:07:
84:c0:84:63:2e:75:ff:07:a9:30:db:39:9c:66:c7:
2d:c2:a2:35:b9:cc:84:38:ff:0c:ea:ae:1e:a5:38:
e5:d9:5f:01:65:17:d6:3a:f5:53:9c:d8:87:10:cf:
07:48:64:1e:e7:61:79:0f:12:1a:26:38:d3:31:ab:
57:e2:49:b9:92:26:f4:b9:c8:9d:d1:09:0b:e1:da:
ea:80:fa:58:89:de:e4:f6:49:07:d6:b4:02:9e:d2:
61:52:c1:4f:56:85:aa:e1:ea:2d:75:17:bd:ea:78:
66:d9:2a:32:83:84:14:b9:b5:e1:84:a4:5e:be:0c:
71:81:4f:e8:94:bd:49:66:a9:a8:a4:ea:70:22:aa:
82:e8:ee:d8:34:d0:f5:ec:60:61:a4:ca:13:08:d8:
2e:c5:b2:32:ed:1f:44:dd:90:3b:a3:31:f4:4f:6c:
10:21:0f:9d:6e:0e:7c:e3:a0:45:a2:00:50:e0:f3:
72:78:e9:29:47:33:74:60:ef:dc:a6:49:ca:d1:dd:
0d:33:d9:89:5d:a1:f3:10:0a:ae:fb:1c:68:e7:3b:
54:c9:36:55:7b:f5:e7:28:e4:fd:49:c7:75:d9:81:
e8:e0:c2:ce:cc:0d:0a:8c:71:08:be:3a:1d:6b:98:
7b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B0:5D:50:1E:EE:63:81:1E:54:E9:50:91:8F:88:00:09:F9:34:07
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sLBdUB7uY4EeVOlQkY-IAAn5NAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.239.0/24
147.78.100.0/24
193.25.217.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:f1:6f:06:9e:49:bb:55:b6:df:1c:42:00:64:aa:8c:fe:54:
0e:d8:ad:10:37:60:3a:f8:39:de:32:70:80:15:ef:f7:ac:be:
6a:da:a5:00:62:c9:4b:44:bb:03:ef:bc:42:e4:ad:54:a7:e7:
f3:6f:50:28:d3:c6:35:d2:bb:5b:a2:05:0c:ee:5d:69:b6:02:
b8:27:ec:88:60:42:4b:59:98:af:f6:2b:1b:6e:fb:e4:6e:9b:
59:a6:5b:fd:f0:8c:70:fc:be:32:11:49:a0:c7:cd:5a:74:fd:
88:09:c1:df:1d:24:82:81:d0:5a:36:69:2f:c3:cb:c0:45:5a:
cd:52:45:61:04:ba:d2:d7:88:1c:76:88:c4:b1:77:35:57:7b:
a9:0a:40:3a:b0:14:c9:07:bd:03:c0:b3:e2:9f:24:68:45:f8:
72:26:d6:e4:9f:06:14:16:63:41:bf:3c:82:9a:44:ce:44:f5:
fc:14:16:f3:f4:6d:a8:86:79:82:14:72:24:ac:88:75:87:11:
9b:de:42:4a:d8:9d:13:41:4b:88:a5:72:3c:ec:60:7a:c0:40:
f2:5f:22:fc:e6:39:bd:77:06:7d:51:ff:64:ad:77:f9:33:20:
a8:47:56:11:8c:7a:d7:31:38:60:a2:48:e4:f7:36:6c:95:a3:
35:4e:74:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:00:14 2026 by rpki-client