Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/UNUw4jFEWsKUeiWsH3ZjHOg_xRE.roa
File: UNUw4jFEWsKUeiWsH3ZjHOg_xRE.roa (raw, json)
Hash identifier: A+TDBy2ykpyENvAnJpceko4QeP8K50GEiEUdo90Ul4A=
Subject key identifier: 50:D5:30:E2:31:44:5A:C2:94:7A:25:AC:1F:76:63:1C:E8:3F:C5:11
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 019ED0A4D8A8A33B4DD059D6461E5B28E70B
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/UNUw4jFEWsKUeiWsH3ZjHOg_xRE.roa
Signing time: Tue 16 Jun 2026 13:35:24 +0000
ROA not before: Tue 16 Jun 2026 13:35:24 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 57043
IP address blocks: 62.132.3.0/24 maxlen: 24
77.67.23.0/24 maxlen: 24
77.67.89.0/24 maxlen: 24
194.77.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d0:a4:d8:a8:a3:3b:4d:d0:59:d6:46:1e:5b:28:e7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jun 16 13:35:24 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=50d530e231445ac2947a25ac1f76631ce83fc511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:36:86:69:af:3a:c3:14:18:c9:bc:e2:d6:
c0:43:30:de:e9:49:b3:eb:db:d6:16:35:f3:43:12:
56:d9:3c:d7:5b:90:28:15:57:4e:e8:15:06:3c:4a:
40:c2:d6:5b:8f:3d:3f:46:db:b0:ec:83:f9:0e:7f:
e1:a4:3d:a4:fc:3e:18:cc:d5:ae:fd:5a:8e:36:91:
69:46:dd:17:73:b1:85:d3:bc:b5:94:cf:58:16:50:
78:64:1d:15:1f:89:75:a2:9e:16:29:77:33:8b:c8:
fd:ac:b8:3c:13:52:0e:52:eb:a7:9d:2e:5e:d2:4f:
40:a9:5b:b2:da:3f:ca:9f:43:a2:72:f8:30:66:90:
90:9a:12:96:6a:f8:d0:6d:c1:8f:6c:1e:f8:a6:b3:
3c:7d:d3:f5:e6:40:07:96:74:ea:75:ca:c6:14:48:
e0:51:32:31:f4:01:26:1a:64:5e:b9:b0:38:b5:70:
ae:95:84:37:f1:6e:ab:f4:b1:21:d4:08:dd:05:3a:
c1:40:14:fa:e1:39:51:48:9b:36:1b:47:4f:78:22:
5a:b4:65:87:9a:f5:58:9b:ad:d2:4d:0a:48:c1:e3:
14:b5:aa:8c:60:e0:57:20:a8:99:d3:80:5a:ee:9b:
99:88:ca:77:ee:24:55:71:db:1b:74:b6:d7:36:1d:
00:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D5:30:E2:31:44:5A:C2:94:7A:25:AC:1F:76:63:1C:E8:3F:C5:11
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/UNUw4jFEWsKUeiWsH3ZjHOg_xRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.132.3.0/24
77.67.23.0/24
77.67.89.0/24
194.77.71.0/24
Signature Algorithm: sha256WithRSAEncryption
61:7e:0e:e0:da:b2:7a:0c:23:5b:04:d1:ab:59:2a:b0:79:eb:
43:ab:45:f1:fa:54:5d:a1:9e:c8:44:14:ec:98:e9:30:17:03:
06:6a:5b:bd:44:13:46:a4:42:30:dd:58:8e:02:1a:e3:d3:f5:
48:82:66:5c:2c:61:08:b8:bd:4c:d7:7c:de:2e:9f:c4:33:00:
15:1c:c9:28:d9:e1:f5:90:96:3e:22:20:45:7c:ec:c4:8e:97:
40:26:a7:eb:b6:89:ff:a7:ea:32:58:11:50:7a:ec:77:65:48:
cb:e9:6c:aa:df:a8:cd:da:09:8b:cc:dc:77:dc:64:31:ad:c6:
23:38:50:5b:c2:1a:2f:cb:5e:44:20:53:41:72:35:ba:60:41:
d1:10:39:f1:ea:b0:0d:cd:3e:fb:40:4b:3e:0e:a3:c4:c4:1d:
43:c9:da:0f:11:46:eb:c9:60:ea:86:85:79:6b:5f:47:ef:87:
4d:83:74:d9:1a:42:67:5b:88:b0:5e:0c:d3:24:e8:31:19:6d:
8b:1e:1e:da:97:4b:93:33:16:88:b1:af:f2:a7:8c:51:20:9f:
a9:9c:1d:f1:a8:3d:67:c4:49:73:23:48:14:38:3f:37:90:de:
44:9c:2c:fa:93:29:8c:36:31:8f:b5:68:64:34:10:d0:6f:ef:
e4:95:9c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:24:12 2026 by rpki-client