Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GJzdGMT-zPTV1IHF-8Hln4D5Uf0.roa
File: GJzdGMT-zPTV1IHF-8Hln4D5Uf0.roa (raw, json)
Hash identifier: BxCvZQMCbInLYNnb3rkoqxgjfs9atRdRviHuLcQEoGc=
Subject key identifier: 18:9C:DD:18:C4:FE:CC:F4:D5:D4:81:C5:FB:C1:E5:9F:80:F9:51:FD
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019D9AF946194DF35CE58F59B62FA316E2B3
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GJzdGMT-zPTV1IHF-8Hln4D5Uf0.roa
Signing time: Fri 17 Apr 2026 10:25:20 +0000
ROA not before: Fri 17 Apr 2026 10:25:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 45.155.65.0/24 maxlen: 24
193.200.78.0/24 maxlen: 24
2a06:5fc0::/29 maxlen: 29
2a0b:ac00::/29 maxlen: 29
2a10:3c81::/32 maxlen: 32
2a13:b9c0::/29 maxlen: 29
2a13:bb40::/29 maxlen: 29
2a13:c240::/29 maxlen: 29
2a13:c340::/29 maxlen: 29
2a13:c440::/29 maxlen: 29
2a14:42c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:f9:46:19:4d:f3:5c:e5:8f:59:b6:2f:a3:16:e2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 17 10:25:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=189cdd18c4feccf4d5d481c5fbc1e59f80f951fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3d:e6:f8:e5:8a:14:62:28:36:7c:f1:80:c4:
90:c8:4b:fb:9f:66:c2:e7:23:86:44:4e:e8:46:f3:
1c:a4:5f:63:63:a5:f2:7a:b6:8a:53:de:a0:e6:8a:
fb:ac:ce:e2:ec:c4:ba:9c:dc:7e:0e:6c:8c:be:00:
85:eb:05:96:ec:68:21:d0:71:ce:95:df:ca:07:39:
84:27:a5:ff:8d:1c:65:87:e0:ab:db:75:9c:fd:98:
39:f6:82:07:93:68:94:5a:2c:f1:ef:28:e5:cb:51:
7a:54:e4:45:02:9b:38:14:17:ad:f4:a5:da:73:70:
8f:1b:e6:8d:8a:d9:13:a4:dc:ba:f5:52:56:5e:a4:
7a:a2:44:64:ec:25:c6:cd:d8:a8:54:68:32:8b:7f:
93:52:ca:cf:cf:1e:1d:84:e6:23:4f:a1:06:7c:c6:
0b:04:64:61:7c:cb:81:52:bf:ca:2a:8c:02:31:09:
0e:d9:73:91:05:5e:34:17:d1:87:a0:fc:e9:9b:69:
46:ef:c0:b3:eb:1a:3e:13:97:19:4e:dc:87:33:f7:
24:89:36:e2:00:14:03:4c:d9:50:47:b6:a0:79:ef:
b9:50:1b:4b:1f:41:5f:0d:ef:25:59:b5:a4:60:dd:
83:46:a8:0c:3d:b8:08:5f:5b:ab:7d:da:f2:a5:98:
0d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9C:DD:18:C4:FE:CC:F4:D5:D4:81:C5:FB:C1:E5:9F:80:F9:51:FD
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GJzdGMT-zPTV1IHF-8Hln4D5Uf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.65.0/24
193.200.78.0/24
IPv6:
2a06:5fc0::/29
2a0b:ac00::/29
2a10:3c81::/32
2a13:b9c0::/29
2a13:bb40::/29
2a13:c240::/29
2a13:c340::/29
2a13:c440::/29
2a14:42c0::/29
Signature Algorithm: sha256WithRSAEncryption
cd:3b:9c:b6:33:c8:08:34:d0:3c:a6:06:4f:99:17:fd:f5:d3:
5b:bd:42:d9:18:a4:fd:77:c1:9b:3a:18:38:46:5c:71:56:f1:
b6:5c:39:50:ce:85:ab:20:21:f5:ad:fe:b8:af:47:3b:35:f0:
74:7d:16:25:30:3e:53:19:88:a5:71:86:84:70:72:5f:e9:ab:
94:90:df:ca:9b:ab:e3:8c:0d:d4:ec:b6:5b:13:7f:49:fe:3b:
55:5e:ff:e7:ce:01:a3:b1:cb:08:ab:c5:3d:9c:bb:0f:ec:d5:
65:74:8e:03:97:22:77:35:26:d3:ed:2a:4d:e3:69:85:d1:f4:
23:1f:53:89:3f:91:9d:27:c1:17:30:02:b1:f6:88:17:62:75:
76:e5:b9:4c:a1:12:06:88:e3:2c:43:ac:c5:94:98:95:3d:db:
92:20:f3:fc:1f:15:b8:85:d0:90:e8:bd:fd:d8:c9:e2:2d:d2:
a8:22:c9:13:0a:51:28:bf:5a:63:70:77:d2:51:58:85:89:e5:
a6:2e:ef:12:58:d2:2e:2c:e2:1c:8d:04:ac:01:f0:74:a2:cb:
b9:00:2d:67:3b:e5:1d:e3:26:11:7c:d7:e5:30:1f:ab:d8:e4:
ab:53:e8:72:1e:17:b2:b4:a8:93:33:ca:a3:1d:f1:ea:74:08:
3d:74:c2:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:26:18 2026 by rpki-client