Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/lnEZ2L7e-Dxcul1E9k6BLuQkjjg.roa
File: lnEZ2L7e-Dxcul1E9k6BLuQkjjg.roa (raw, json)
Hash identifier: liPZV9DolRRT9nAWU7u6DPc6DGrvrDdx9vqrlRsVAKE=
Subject key identifier: 96:71:19:D8:BE:DE:F8:3C:5C:BA:5D:44:F6:4E:81:2E:E4:24:8E:38
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019D532A7C8A43A02ECA8FA19918B8E5D467
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/lnEZ2L7e-Dxcul1E9k6BLuQkjjg.roa
Signing time: Fri 03 Apr 2026 11:46:26 +0000
ROA not before: Fri 03 Apr 2026 11:46:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 14315
IP address blocks: 2a13:bb40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Apr 2026 19:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:53:2a:7c:8a:43:a0:2e:ca:8f:a1:99:18:b8:e5:d4:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 3 11:46:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=967119d8bedef83c5cba5d44f64e812ee4248e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ef:c6:d4:06:ec:3a:04:0c:d3:20:63:7a:73:
e1:d9:e4:7e:0b:42:00:63:35:7c:a7:e3:94:98:9d:
ff:2e:54:29:84:7b:27:c4:d6:5c:09:2e:2f:0d:6b:
e3:d9:ed:8f:ef:e6:eb:02:ce:19:0b:31:d3:44:9e:
c4:09:e2:0a:82:06:ae:ba:c9:df:92:ed:33:60:7e:
02:1b:d3:3c:6d:51:00:84:bd:80:3d:ec:15:81:63:
4d:ca:08:35:c4:8a:9f:2c:07:5c:e1:e0:73:e7:07:
2c:cb:0c:23:53:82:93:ef:54:f3:19:37:3d:c6:1a:
73:f5:0b:f3:1b:26:f0:1d:98:3c:e6:9c:b6:ac:03:
76:9c:05:00:3c:ca:b7:75:9c:51:89:42:8d:46:ab:
7c:13:1b:b0:2b:a3:ea:44:e3:1d:97:56:2d:1a:1d:
65:3a:fe:8a:d1:6f:01:4b:82:72:6d:db:47:21:bf:
c5:9b:94:ff:1d:7f:c6:78:18:ba:46:3d:9a:6e:70:
5b:82:6e:05:da:d5:c6:d9:bc:69:ba:ed:63:fe:22:
1c:a7:4d:d4:0f:cb:0c:73:97:23:b9:7e:c7:86:ce:
4c:a2:3c:00:88:f4:59:e5:6a:ed:d7:42:6e:53:2c:
6d:bc:f7:81:5a:c6:70:b6:96:71:96:8f:37:12:83:
0f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:71:19:D8:BE:DE:F8:3C:5C:BA:5D:44:F6:4E:81:2E:E4:24:8E:38
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/lnEZ2L7e-Dxcul1E9k6BLuQkjjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bb40::/29
Signature Algorithm: sha256WithRSAEncryption
7f:53:bf:0a:23:e3:c8:2d:1b:5c:ad:12:7b:41:0c:29:4b:41:
ec:c3:a1:d1:cb:6d:5e:f7:23:82:4e:f0:89:a3:3b:3f:46:80:
78:f5:45:df:7a:03:67:45:5f:18:fe:45:e8:98:22:85:56:f3:
15:cb:3a:90:4c:9d:fd:19:08:21:4f:7d:1d:02:8a:8d:4a:68:
8d:71:80:1e:15:a7:0b:c6:4b:ca:ee:94:a2:0b:1b:aa:3b:cf:
40:13:77:af:14:6d:59:dd:87:76:3a:34:13:07:f8:59:c1:1c:
31:ee:5e:9c:a9:70:c5:1c:52:c0:e0:95:5b:55:b9:85:8a:40:
8a:3a:5b:74:dc:0c:dc:0e:5e:14:17:1f:b2:f5:57:8e:85:2e:
95:c9:40:b6:24:ff:3c:83:dd:3f:74:18:03:d0:9d:51:71:ab:
0c:ee:ee:14:a2:a7:eb:2e:80:8f:b9:2a:e5:2c:b0:82:d2:53:
84:d8:69:c6:33:fe:08:4e:af:2f:be:79:25:66:bf:2e:62:68:
99:eb:0c:c9:bc:3f:7b:87:c4:bb:43:55:84:bd:05:c0:2e:1b:
3c:b5:f2:32:5c:a2:ca:ef:bd:af:92:06:dd:18:46:65:05:44:
a0:44:e2:cc:39:23:94:96:bc:0b:16:1e:2b:29:87:19:69:c1:
a1:40:40:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 4 02:14:33 2026 by rpki-client