Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4Jco5MjwRNXXRi3HaIA2ZRfhKdI.roa
File: 4Jco5MjwRNXXRi3HaIA2ZRfhKdI.roa (raw, json)
Hash identifier: 94krqJNaVTjNFeAJcc0TeVz/nC220rWqN85IjPfxBhk=
Subject key identifier: E0:97:28:E4:C8:F0:44:D5:D7:46:2D:C7:68:80:36:65:17:E1:29:D2
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 019DB9FBE7CF8629BDEAEF3B1B5CC00701BB
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4Jco5MjwRNXXRi3HaIA2ZRfhKdI.roa
Signing time: Thu 23 Apr 2026 10:56:26 +0000
ROA not before: Thu 23 Apr 2026 10:56:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402214
IP address blocks: 194.231.138.0/24 maxlen: 24
194.231.151.0/24 maxlen: 24
194.231.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b9:fb:e7:cf:86:29:bd:ea:ef:3b:1b:5c:c0:07:01:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Apr 23 10:56:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e09728e4c8f044d5d7462dc76880366517e129d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1c:3e:e0:22:f5:74:36:4c:63:58:11:fa:86:
56:73:84:55:7d:96:aa:1c:79:94:b4:fe:fa:8f:a2:
86:88:00:42:59:ff:d2:80:07:33:86:08:81:bf:a9:
37:52:fe:bf:ea:c6:d7:b0:36:a2:c0:d9:73:3a:3d:
f4:91:ef:59:1f:ab:5b:24:05:d6:10:ac:2a:c0:4d:
46:62:e9:01:ab:8f:48:62:bd:69:d3:6a:ab:f5:7f:
9b:5a:28:92:ba:fa:52:d8:1b:d2:6c:a0:85:d2:8b:
f3:68:5b:18:c5:c2:d5:4b:a7:fe:0f:30:c5:a3:48:
a6:df:d0:3f:6b:3a:48:7d:f5:b0:0c:0a:37:22:f0:
e8:a4:87:28:05:2e:6c:2e:54:f9:c0:9e:23:7b:e5:
ef:a7:09:95:c1:ff:9e:5d:4f:23:74:1f:03:5f:ec:
bb:e1:e3:c0:bb:2d:53:cd:12:91:66:ed:ee:2b:39:
0e:26:c5:cf:79:7f:e2:f6:ac:ba:8a:52:aa:34:6e:
4b:93:62:0c:98:7c:56:61:70:3e:10:d8:4e:3f:23:
6f:be:a1:04:a2:74:f2:dc:fb:f5:10:38:8c:e8:72:
c1:b7:b1:b1:b0:cf:02:48:17:da:a9:8e:66:8f:29:
5c:9d:df:80:e7:c1:c2:bc:37:0f:99:09:54:64:6c:
cb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:97:28:E4:C8:F0:44:D5:D7:46:2D:C7:68:80:36:65:17:E1:29:D2
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4Jco5MjwRNXXRi3HaIA2ZRfhKdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.231.138.0/24
194.231.151.0/24
194.231.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:79:7e:55:1d:25:0d:50:f9:78:b8:7b:77:2a:12:7b:f2:00:
87:fa:83:f1:19:7d:71:0e:9c:50:28:08:72:28:be:0f:22:19:
a0:ed:e9:c8:3f:5d:b6:fa:0b:3f:ba:34:9d:2a:11:f1:1e:3b:
a6:e4:31:b2:29:0f:57:89:40:de:a3:fa:e1:3e:14:4a:96:c3:
38:4c:8f:c6:ec:4e:6d:5c:47:4c:95:45:aa:fc:a5:86:da:2b:
16:ab:9d:07:f6:8d:47:7c:bf:2c:32:2e:09:c5:9c:59:a9:59:
9e:59:dd:b0:bc:81:8c:02:44:0d:c9:9d:f9:62:ef:5c:f9:41:
0b:b0:86:8a:ef:86:ad:73:ca:5f:27:b7:46:5b:9c:5e:13:76:
cf:eb:0d:e5:b9:42:02:0f:fb:72:50:22:f1:8e:d3:76:48:5e:
e6:94:ac:8c:4f:0c:49:a3:c4:41:9b:85:0c:44:35:3c:6d:0c:
db:37:29:4c:e0:a4:29:e2:ce:71:5b:b3:48:d6:13:59:38:de:
c6:33:ad:fc:33:64:30:d8:b4:e3:4c:c7:f2:c0:37:40:1c:3c:
92:ab:09:ca:80:64:74:7f:7b:a9:ab:73:86:62:ac:83:7b:30:
65:19:ff:bf:2c:63:a9:3d:ee:e2:fc:b0:56:8d:ef:14:da:f4:
79:c0:70:c9
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZ25++fPhim96u87G1zABwG7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0
NmQxNzEwHhcNMjYwNDIzMTA1NjI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDk3MjhlNGM4ZjA0NGQ1ZDc0NjJkYzc2ODgwMzY2NTE3ZTEyOWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xw+4CL1dDZMY1gR+oZWc4RVfZaq
HHmUtP76j6KGiABCWf/SgAczhgiBv6k3Uv6/6sbXsDaiwNlzOj30ke9ZH6tbJAXW
EKwqwE1GYukBq49IYr1p02qr9X+bWiiSuvpS2BvSbKCF0ovzaFsYxcLVS6f+DzDF
o0im39A/azpIffWwDAo3IvDopIcoBS5sLlT5wJ4je+XvpwmVwf+eXU8jdB8DX+y7
4ePAuy1TzRKRZu3uKzkOJsXPeX/i9qy6ilKqNG5Lk2IMmHxWYXA+ENhOPyNvvqEE
onTy3Pv1EDiM6HLBt7GxsM8CSBfaqY5mjylcnd+A58HCvDcPmQlUZGzLnQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFOCXKOTI8ETV10Ytx2iANmUX4SnSMB8GA1UdIwQY
MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt
MGNmMTA5M2Q0NTQ4LzEvNEpjbzVNandSTlhYUmkzSGFJQTJaUmZoS2RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4
LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwueKAwQA
wueXAwQAwufIMA0GCSqGSIb3DQEBCwUAA4IBAQBreX5VHSUNUPl4uHt3KhJ78gCH
+oPxGX1xDpxQKAhyKL4PIhmg7enIP122+gs/ujSdKhHxHjum5DGyKQ9XiUDeo/rh
PhRKlsM4TI/G7E5tXEdMlUWq/KWG2isWq50H9o1HfL8sMi4JxZxZqVmeWd2wvIGM
AkQNyZ35Yu9c+UELsIaK74atc8pfJ7dGW5xeE3bP6w3luUICD/tyUCLxjtN2SF7m
lKyMTwxJo8RBm4UMRDU8bQzbNylM4KQp4s5xW7NI1hNZON7GM638M2Qw2LTjTMfy
wDdAHDySqwnKgGR0f3upq3OGYqyDezBlGf+/LGOpPe7i/LBWje8U2vR5wHDJ
-----END CERTIFICATE-----
Generated at Mon Apr 27 05:20:49 2026 by rpki-client