Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/meQPQLdj0-UYyv8yzJ7DSCj-0lE.roa
File: meQPQLdj0-UYyv8yzJ7DSCj-0lE.roa (raw, json)
Hash identifier: Qc9pdr7VhRxziZXjkPRVy4GNTKjo6uhjpkDHabQBIuo=
Subject key identifier: 99:E4:0F:40:B7:63:D3:E5:18:CA:FF:32:CC:9E:C3:48:28:FE:D2:51
Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74
Certificate serial: 019E4ADC11D09D539881A8436FF89BEE0308
Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/meQPQLdj0-UYyv8yzJ7DSCj-0lE.roa
Signing time: Thu 21 May 2026 14:06:36 +0000
ROA not before: Thu 21 May 2026 14:06:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197411
IP address blocks: 2a0d:d940:150::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4a:dc:11:d0:9d:53:98:81:a8:43:6f:f8:9b:ee:03:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74
Validity
Not Before: May 21 14:06:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=99e40f40b763d3e518caff32cc9ec34828fed251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f7:47:9b:8f:86:1c:5f:bc:da:df:6a:a8:de:
32:ff:fc:e4:21:08:6e:3a:b5:96:70:8a:83:19:a1:
af:98:af:a8:c2:ef:2e:46:b7:fa:b3:29:f0:11:d5:
47:6d:82:f7:c4:9b:43:49:2f:ae:d3:c2:e7:f3:1f:
31:c0:38:54:32:5d:b6:1f:b9:c2:3a:4c:d4:2d:89:
f8:0c:2d:b4:6e:32:90:86:f7:57:fe:a1:42:ac:37:
72:65:4f:fc:bc:fd:af:80:20:7f:67:98:0f:c6:04:
8e:9f:35:09:27:db:26:aa:7d:f7:63:73:8b:86:49:
8e:b3:ea:2b:fc:77:3c:d2:8b:58:c7:8b:db:df:92:
24:b5:db:89:3c:0b:d2:4e:17:83:d1:d3:34:bd:8c:
5f:d8:08:5e:f4:93:72:d8:6a:6f:d5:3e:a8:57:4f:
9a:fc:8c:5f:82:a2:6b:e9:63:e1:7b:cc:3d:99:41:
e3:5e:14:61:30:07:ad:33:c2:af:c4:4b:49:12:b1:
60:b4:f1:d0:74:c2:8f:4e:13:ce:a7:28:d8:07:3e:
f7:f0:3f:97:06:50:d6:82:84:02:76:ec:36:1d:30:
f6:6e:22:50:ef:8b:11:3a:4a:5f:dc:39:c8:31:22:
7a:0a:ed:e7:b5:e5:e4:0c:e9:6f:62:49:15:55:31:
e2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E4:0F:40:B7:63:D3:E5:18:CA:FF:32:CC:9E:C3:48:28:FE:D2:51
X509v3 Authority Key Identifier:
keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/meQPQLdj0-UYyv8yzJ7DSCj-0lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d940:150::/44
Signature Algorithm: sha256WithRSAEncryption
dd:d9:00:f9:23:31:49:10:c5:87:d0:3b:1b:eb:64:f7:f5:8f:
9a:46:fd:e2:bd:e3:11:30:01:3a:2c:f8:76:4c:80:70:aa:37:
22:6f:59:04:dd:7c:f3:82:ef:e9:cb:cd:c2:6c:81:d5:f6:4a:
80:21:68:e7:bf:7e:28:a6:ea:7a:4c:e4:da:ca:53:f1:9e:5f:
45:e9:1a:7a:e5:23:1c:11:cf:f4:a6:a9:33:cb:90:2a:1c:e5:
45:af:8d:69:28:b3:d7:82:ce:f7:47:bb:56:98:a0:d0:48:ff:
e6:4d:53:55:96:6f:22:62:b4:e1:dc:fb:82:a5:5a:d7:65:95:
d8:ea:0a:47:f7:df:c7:22:b8:0b:aa:44:f0:6b:bf:66:9f:a3:
fc:21:af:da:e7:2e:18:28:26:a2:92:b2:14:3f:79:17:bb:5e:
9f:6f:59:1e:45:4c:72:3b:5d:73:08:03:65:4a:ae:3c:7f:0e:
11:53:19:07:72:18:02:5c:61:ca:72:30:77:2e:c4:0f:e8:fd:
61:00:f7:1a:e9:38:18:75:17:c3:e5:62:c4:a3:72:77:17:8f:
64:8b:42:9b:aa:fe:a2:9e:9e:8a:b9:10:07:46:e6:5b:38:1e:
5e:a6:66:df:f3:d6:53:6e:5b:56:99:80:83:06:ed:01:65:f0:
d8:7c:50:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:00:26 2026 by rpki-client