Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/0UjvPx7CcMjUFarFUGT4RTHs2Kw.roa
File: 0UjvPx7CcMjUFarFUGT4RTHs2Kw.roa (raw, json)
Hash identifier: EOSEMVu8FuC5236h0aPXQFdqATwdcWxQ0dVbn6xjkGU=
Subject key identifier: D1:48:EF:3F:1E:C2:70:C8:D4:15:AA:C5:50:64:F8:45:31:EC:D8:AC
Certificate issuer: /CN=4c175e2d4329bfc4aad1f955d8e6edf7aa49cb03
Certificate serial: 019E972A43BA5728CD9409F4EC47765544AD
Authority key identifier: 4C:17:5E:2D:43:29:BF:C4:AA:D1:F9:55:D8:E6:ED:F7:AA:49:CB:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdeLUMpv8Sq0flV2Obt96pJywM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/0UjvPx7CcMjUFarFUGT4RTHs2Kw.roa
Signing time: Fri 05 Jun 2026 09:43:09 +0000
ROA not before: Fri 05 Jun 2026 09:43:09 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 202390
IP address blocks: 176.107.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/TBdeLUMpv8Sq0flV2Obt96pJywM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/TBdeLUMpv8Sq0flV2Obt96pJywM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdeLUMpv8Sq0flV2Obt96pJywM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:97:2a:43:ba:57:28:cd:94:09:f4:ec:47:76:55:44:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c175e2d4329bfc4aad1f955d8e6edf7aa49cb03
Validity
Not Before: Jun 5 09:43:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d148ef3f1ec270c8d415aac55064f84531ecd8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f5:25:89:04:ab:b8:af:5b:9c:f3:f4:f5:62:
44:18:ef:98:ff:ac:bf:31:84:69:35:a5:eb:57:73:
57:6d:b6:d7:6a:ff:ea:1a:1b:db:c8:78:6c:13:79:
31:5b:de:88:74:16:5b:60:7d:da:4e:a9:64:d0:12:
e4:6c:ad:0f:aa:79:27:f2:ad:82:a5:48:f4:f1:a6:
59:0a:e0:d1:07:76:34:f1:37:5d:d1:7e:ef:0f:99:
33:2f:c2:0a:04:34:b4:2a:4a:00:ef:e3:20:cd:dd:
1e:7b:a0:d2:ff:1e:37:22:4e:9d:e9:2b:88:95:f7:
0d:bf:d0:c4:af:a2:10:39:ed:d1:96:0b:0c:67:7a:
f8:a4:c6:a7:3e:92:be:3b:de:65:00:bc:96:96:a0:
be:27:3d:ad:f9:c8:35:71:b6:fa:71:d9:fe:d1:37:
af:bc:97:54:06:98:00:00:23:8b:aa:3f:ba:0b:f1:
57:39:4e:62:4e:8c:c2:f7:21:16:3d:c3:35:3a:8b:
e7:8c:40:59:12:47:5c:40:30:61:1b:f8:b2:fd:49:
db:ab:5c:25:95:81:18:07:77:12:dd:a9:47:7b:65:
e0:e7:28:47:67:30:9b:1f:16:79:36:94:24:2a:77:
bf:05:6e:07:fe:49:e1:14:29:c7:25:86:bd:11:a6:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:48:EF:3F:1E:C2:70:C8:D4:15:AA:C5:50:64:F8:45:31:EC:D8:AC
X509v3 Authority Key Identifier:
keyid:4C:17:5E:2D:43:29:BF:C4:AA:D1:F9:55:D8:E6:ED:F7:AA:49:CB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdeLUMpv8Sq0flV2Obt96pJywM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/0UjvPx7CcMjUFarFUGT4RTHs2Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7b5433-09f2-4fb4-8f1f-379aba6085d9/1/TBdeLUMpv8Sq0flV2Obt96pJywM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.95.0/24
Signature Algorithm: sha256WithRSAEncryption
af:85:07:d9:9e:f9:c4:73:1d:5a:93:d1:19:52:24:f2:94:d3:
39:50:f9:55:96:29:83:18:15:02:54:6d:51:b5:23:72:61:52:
73:90:b5:2b:7c:de:7f:c5:14:02:0d:48:f9:a7:24:b5:24:de:
0c:6e:57:68:84:27:0f:cb:6c:5a:cc:b4:ed:81:ba:98:a4:44:
44:67:ab:e3:42:b9:93:cc:80:cf:59:ae:da:fd:1c:70:e0:90:
2d:27:bc:40:8b:aa:fb:d0:84:38:e4:20:82:2f:b1:ab:cb:07:
8f:29:72:dc:88:d3:25:c4:7e:83:be:65:19:9e:38:73:24:57:
df:07:e1:d1:c8:6e:1d:8c:49:48:83:bf:e7:0b:1d:8c:85:d0:
4b:03:8f:c3:af:5f:b3:bf:36:ab:52:8d:19:6e:ea:c0:99:f1:
47:18:2a:9d:ed:ac:c6:21:df:11:88:3e:a0:9b:3a:c1:86:93:
66:a9:42:32:6c:ae:06:9f:21:97:13:85:6f:1e:a4:ef:56:f4:
34:1f:f0:d5:11:d6:55:55:3b:c4:e3:b8:e3:98:a9:61:6e:01:
e3:aa:78:d4:e3:3c:e2:5c:53:6f:15:76:d0:59:47:8d:eb:68:
90:ca:46:32:8a:25:2d:75:d7:61:ff:b5:74:68:0b:38:b0:d6:
61:36:b4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:13:04 2026 by rpki-client