Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6LJwmcwzlfr4LcokZ6UufOZS7zg.roa
File: 6LJwmcwzlfr4LcokZ6UufOZS7zg.roa (raw, json)
Hash identifier: BoxE4A3jgIoFpZk5p9RRKFxXYdE9++wTkBhKGmCPfaY=
Subject key identifier: E8:B2:70:99:CC:33:95:FA:F8:2D:CA:24:67:A5:2E:7C:E6:52:EF:38
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019D75F0FBA46ED301AAC11B72C06893F4C9
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6LJwmcwzlfr4LcokZ6UufOZS7zg.roa
Signing time: Fri 10 Apr 2026 05:50:20 +0000
ROA not before: Fri 10 Apr 2026 05:50:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20724
IP address blocks: 80.244.13.0/24 maxlen: 24
91.227.62.0/24 maxlen: 24
185.244.104.0/24 maxlen: 24
195.182.25.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Apr 2026 05:50:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:75:f0:fb:a4:6e:d3:01:aa:c1:1b:72:c0:68:93:f4:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 10 05:50:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e8b27099cc3395faf82dca2467a52e7ce652ef38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c9:6f:0f:78:ad:8d:bc:48:70:c9:00:24:d5:
ab:60:68:fa:50:a3:7a:be:a1:61:61:87:a7:dc:76:
8f:3b:02:24:7a:9a:5d:c3:98:a3:b4:24:5f:e0:09:
00:63:b7:26:02:c2:47:55:c6:53:9c:57:b9:2c:2f:
42:ed:ce:8c:c2:e5:68:5d:1c:ba:a5:0c:6f:ee:b4:
9f:21:b2:4e:29:d4:13:54:26:26:04:fa:65:11:47:
ee:57:56:c2:36:52:24:33:b8:ee:0f:6b:62:9a:d0:
a1:3b:ef:7b:87:0d:c4:80:07:a9:1e:32:df:c9:4d:
5e:6b:70:27:3c:95:4a:07:64:44:99:bf:33:c6:46:
f5:1a:25:dd:2e:85:86:d1:84:f6:18:7b:5d:de:29:
28:ac:91:8d:0d:77:74:c4:aa:54:f6:86:a7:67:41:
fe:ba:82:c5:b7:ef:3e:66:8d:9f:fd:14:fc:f2:60:
cc:2e:93:93:1f:e7:4e:8f:ed:6b:7f:38:5f:d6:33:
4c:1b:46:61:9c:20:b5:1e:f8:87:2d:65:3b:b3:93:
d6:55:92:e6:37:a9:9c:f7:56:c2:04:da:34:c8:6e:
54:a5:a4:67:26:26:eb:0a:6e:3f:ef:b3:81:d4:e2:
d5:07:3f:c9:3f:d8:54:04:d3:5a:5e:71:93:b8:b4:
58:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B2:70:99:CC:33:95:FA:F8:2D:CA:24:67:A5:2E:7C:E6:52:EF:38
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6LJwmcwzlfr4LcokZ6UufOZS7zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.13.0/24
91.227.62.0/24
185.244.104.0/24
195.182.25.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a2:42:a4:f8:86:fc:d4:57:e3:55:00:ac:3d:80:39:b8:4a:
0a:4e:17:28:aa:c4:fd:29:86:4b:f4:00:f8:d9:96:47:54:95:
73:13:6c:b3:91:94:ad:62:eb:48:5e:9d:ae:d6:10:d7:23:5b:
e4:4f:3e:b0:29:19:3a:1a:c8:04:fe:c6:65:18:00:cc:a1:fc:
b4:de:77:6a:31:1a:9b:02:04:22:40:41:f1:8b:41:da:44:8c:
ea:3e:02:a0:db:f5:a1:bd:9f:94:3a:32:56:09:90:33:7a:7a:
32:21:fe:b5:5c:c2:0d:95:6f:64:ce:9c:5c:2d:bc:17:6e:7f:
39:e4:4f:4a:97:08:fe:cf:d0:77:fd:02:7c:00:45:70:1b:d2:
e0:f7:bf:1a:43:f9:92:4a:53:f4:78:b7:71:d5:f2:3a:39:69:
e9:1b:79:97:5a:78:3e:0f:f3:c4:f7:ce:a7:b5:71:12:1a:d6:
65:61:95:c8:09:34:a2:80:97:65:5d:37:ba:0b:eb:a4:5e:63:
84:a6:04:21:18:ab:98:94:0a:4c:c3:e8:39:9c:04:21:fb:f7:
aa:f7:3f:8f:01:1c:0d:4d:60:1f:bf:00:02:7f:a0:6c:d3:a4:
c3:8a:15:ab:33:e0:94:37:93:e1:63:06:1c:0e:5a:3a:26:06:
c4:b7:61:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 10 14:41:29 2026 by rpki-client