Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/cMRr_23jJl38g6UVbhHoXMn0ET4.roa
File: cMRr_23jJl38g6UVbhHoXMn0ET4.roa (raw, json)
Hash identifier: ONJX4FsCfA7REiTmz8FeLFqtfNrLbXf4QLE1W9Ka2kM=
Subject key identifier: 70:C4:6B:FF:6D:E3:26:5D:FC:83:A5:15:6E:11:E8:5C:C9:F4:11:3E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019E86FD99BB96441631E7CF1EA87A0A1D48
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/cMRr_23jJl38g6UVbhHoXMn0ET4.roa
Signing time: Tue 02 Jun 2026 06:20:27 +0000
ROA not before: Tue 02 Jun 2026 06:20:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63023
IP address blocks: 2a05:9a40::/29 maxlen: 29
2a10:b40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:86:fd:99:bb:96:44:16:31:e7:cf:1e:a8:7a:0a:1d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jun 2 06:20:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=70c46bff6de3265dfc83a5156e11e85cc9f4113e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:44:0a:21:32:e6:b2:79:7d:a8:8e:99:71:b2:
b9:a8:ce:06:bc:1c:37:0e:ee:7b:11:91:f1:d3:90:
55:49:6a:db:21:62:8f:28:4d:d3:7c:70:3e:c0:04:
a5:f2:46:0c:b8:32:1b:db:2d:9f:e0:9a:9e:d0:4e:
ad:ba:0c:23:0b:b2:bb:cd:84:d6:b6:a9:3b:ae:8a:
2d:50:da:cb:9c:bc:6a:0c:1c:af:31:04:bb:d6:8b:
3c:e0:88:5f:46:71:aa:dd:0e:94:69:1e:ea:fd:d7:
c9:41:f1:3f:aa:ed:14:d6:ec:df:1e:1a:5c:09:2e:
13:6a:d8:f3:ca:4e:32:75:9f:b1:70:fc:1e:98:b9:
21:a4:42:da:44:2f:66:cb:41:b8:07:58:db:7e:9f:
c0:77:fb:53:39:49:26:74:dc:9c:39:34:14:b9:fd:
54:6c:4f:0f:e0:4f:d1:aa:1c:ca:d0:18:34:4c:4f:
b3:90:80:7b:d6:63:f5:77:07:8e:e8:c1:81:7b:bb:
6c:6d:2c:0e:77:45:8a:ef:53:17:8d:63:59:9d:99:
54:d8:36:a4:7e:1b:47:26:5c:68:1e:4c:39:23:e5:
a7:a8:f8:f3:40:1f:9c:e8:2f:a6:2c:0e:86:43:60:
84:74:42:84:4e:37:46:6b:06:ff:9a:87:e2:ff:98:
33:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C4:6B:FF:6D:E3:26:5D:FC:83:A5:15:6E:11:E8:5C:C9:F4:11:3E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/cMRr_23jJl38g6UVbhHoXMn0ET4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a40::/29
2a10:b40::/29
Signature Algorithm: sha256WithRSAEncryption
2f:89:70:a6:ad:59:e9:4b:b0:5a:46:4d:bb:bf:58:69:10:17:
a9:a7:a1:db:42:fc:8a:5e:e8:96:0d:2c:2c:d7:56:e2:ce:67:
1c:b4:fe:11:a4:b2:cb:87:40:22:f1:c4:55:9a:b7:db:94:f2:
9a:20:4d:f0:5e:02:a6:20:54:82:f0:7e:4a:37:af:a1:b9:c4:
5f:40:b6:a5:4f:4e:0a:66:f7:7d:2f:4b:3e:c5:66:00:0a:9a:
e1:34:80:ae:0a:ac:f1:1d:54:6c:b6:7c:71:89:3d:2e:73:2f:
15:69:9b:89:02:4e:72:65:f4:99:bf:8e:c9:ad:ee:e5:14:44:
ac:65:c9:e2:f4:51:c3:22:ac:88:4a:fd:2b:9b:c4:50:4e:fd:
3f:9b:ff:a1:f5:34:ae:a6:1f:05:5f:fa:2f:33:31:0f:20:07:
54:85:c5:73:c8:e1:11:53:89:76:1b:7d:22:24:29:34:64:dd:
bc:0c:27:7c:f0:42:af:07:58:63:e0:27:e3:3e:0d:c8:d8:1e:
ce:86:57:8f:91:0e:7e:cd:a1:c9:80:8c:d7:18:47:c0:f3:95:
3d:4f:40:55:be:05:61:d5:dc:fe:e8:98:16:7a:e8:2e:d3:a1:
fa:29:4e:34:c4:a9:a6:76:70:ab:e1:e8:0f:0f:93:c5:01:f6:
37:57:89:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:14:04 2026 by rpki-client