Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4gmMRlqkyJYnPp2JOy1An-8UPU.roa
File: j4gmMRlqkyJYnPp2JOy1An-8UPU.roa (raw, json)
Hash identifier: h8ZqIQJkEsMSBduJY2lHYHcM35duZDtbh3sRRcDWE6k=
Subject key identifier: 8F:88:26:31:19:6A:93:22:58:9C:FA:76:24:EC:B5:02:7F:BC:50:F5
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 019E2A3ACDAAEDAD395815EDF57AA6F3DD72
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4gmMRlqkyJYnPp2JOy1An-8UPU.roa
Signing time: Fri 15 May 2026 06:02:37 +0000
ROA not before: Fri 15 May 2026 06:02:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 7029
IP address blocks: 77.105.22.0/24 maxlen: 24
109.121.0.0/19 maxlen: 24
178.219.14.0/24 maxlen: 24
212.69.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:3a:cd:aa:ed:ad:39:58:15:ed:f5:7a:a6:f3:dd:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: May 15 06:02:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8f882631196a9322589cfa7624ecb5027fbc50f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1c:ab:3a:e6:04:dc:33:f1:06:cc:69:92:26:
aa:b5:02:b2:d4:f4:5c:d6:9b:81:80:7b:b4:05:00:
dc:c9:24:97:05:12:a0:54:6b:a9:bd:1f:64:fa:d5:
5d:69:d0:49:e1:34:49:b5:a3:a5:29:bd:11:33:8d:
47:61:60:54:18:b8:a7:d6:45:6a:c4:12:e9:06:4d:
90:5d:84:5d:f7:df:6c:d3:77:3d:3e:7a:02:00:e6:
6a:9a:71:f8:48:16:a2:29:24:f9:50:02:c2:67:02:
33:35:5e:5e:9a:dd:80:17:a5:23:07:01:67:5b:fb:
b4:10:6a:d2:0b:6d:05:6e:62:f3:d9:c4:54:f8:31:
18:84:00:c3:0c:80:ae:df:4e:bf:bf:6f:50:91:84:
48:8c:d9:86:fa:aa:99:9e:fd:4d:86:30:56:ae:5a:
a6:7d:46:4f:03:9e:4a:1e:40:87:06:9a:0a:b9:0b:
6c:46:f6:a1:90:85:4f:25:cf:e2:e4:11:ce:35:43:
62:27:54:ad:ba:ba:ee:38:fb:f6:b6:88:00:c5:d2:
af:5f:7d:cc:02:f2:9d:fb:83:0c:50:ab:70:f6:86:
d4:bc:30:ff:2b:5f:77:b4:35:05:8b:78:f8:30:82:
6a:b3:39:41:82:77:58:07:b1:ea:22:54:e3:0c:82:
5f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:88:26:31:19:6A:93:22:58:9C:FA:76:24:EC:B5:02:7F:BC:50:F5
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4gmMRlqkyJYnPp2JOy1An-8UPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.22.0/24
109.121.0.0/19
178.219.14.0/24
212.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e9:c2:3e:54:a7:a7:76:5c:ef:10:33:90:0b:24:cf:aa:fe:
5f:0d:67:e6:de:63:3f:a6:cf:eb:86:36:f2:66:0a:34:cd:ea:
00:a7:d0:fc:f0:c1:8c:1e:61:58:02:8f:ce:0a:f3:a4:c7:9d:
4c:b2:b4:74:d6:f5:d8:be:6f:4b:3f:49:27:84:40:9c:01:a6:
d2:55:31:3f:55:57:84:ce:e5:9a:de:4f:aa:45:71:d5:a1:ac:
5e:0e:c0:5f:a2:82:05:5f:01:2d:ef:d8:18:4d:db:3e:e5:8d:
26:ab:38:04:57:76:ca:a8:9c:d2:16:9d:5d:20:39:fc:2f:00:
eb:be:aa:ec:2b:c4:8c:b4:24:de:ca:9a:91:65:ae:56:4a:4e:
41:a5:18:c3:c0:ca:57:26:6c:50:51:14:1b:d3:e4:fb:92:62:
b9:0f:8a:89:4b:47:eb:64:e3:62:e7:87:b0:87:f0:a2:d5:9f:
ef:9e:bd:36:eb:6e:96:f5:ec:3c:68:96:0d:c2:10:cf:bd:9a:
7e:a9:e2:6d:a0:86:2a:ea:dc:9a:12:ce:6f:6b:23:b6:3a:62:
0a:8f:40:45:15:8a:ab:51:9b:17:16:f8:4a:c5:59:1d:4b:e2:
fc:84:e8:3f:3a:04:96:19:b7:8c:3c:1c:8b:f5:ec:39:7f:19:
52:a0:6d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 06:43:00 2026 by rpki-client