Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/ME6vRLxkNmOkJwq_oQkZ9OQRI14.roa
File: ME6vRLxkNmOkJwq_oQkZ9OQRI14.roa (raw, json)
Hash identifier: ztigzmBI+Nqg3JYL/aEqwd3HX52y65/qJXje8DI37qo=
Subject key identifier: 30:4E:AF:44:BC:64:36:63:A4:27:0A:BF:A1:09:19:F4:E4:11:23:5E
Certificate issuer: /CN=c2919334ad2ad53616c34fece96ce29230f86349
Certificate serial: 019CE31A32D86BF902E432CD571B956FF358
Authority key identifier: C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/ME6vRLxkNmOkJwq_oQkZ9OQRI14.roa
Signing time: Thu 12 Mar 2026 17:31:10 +0000
ROA not before: Thu 12 Mar 2026 17:31:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401496
IP address blocks: 2a01:f040::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:1a:32:d8:6b:f9:02:e4:32:cd:57:1b:95:6f:f3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2919334ad2ad53616c34fece96ce29230f86349
Validity
Not Before: Mar 12 17:31:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=304eaf44bc643663a4270abfa10919f4e411235e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:52:5e:2e:b5:42:78:ea:64:a8:86:7e:97:84:
be:fa:e8:92:ad:86:2a:ea:2e:d6:4c:a9:ed:9d:32:
2b:df:54:fc:d9:78:47:72:d5:35:6d:32:e4:d5:b6:
01:b7:60:9b:76:7c:71:c9:c6:27:f9:18:a1:7a:a1:
d9:68:d1:1b:57:26:37:40:f6:09:b0:06:b4:fc:b6:
bd:73:51:d4:2a:be:2b:4a:d2:91:84:da:2a:4b:43:
b5:a3:6f:8e:86:32:04:51:16:d3:20:55:5a:e2:bb:
ed:1c:73:76:db:17:7b:66:82:f2:dc:67:17:b8:e0:
af:6d:b0:15:42:9c:65:b3:97:b5:e6:e8:a1:c8:b3:
6f:f2:5a:c4:68:2b:8b:68:8e:3c:2a:8e:c2:78:dc:
3f:89:01:7e:cf:31:c5:ad:93:c4:2e:16:e4:9b:a9:
e8:74:13:73:48:d9:5e:ca:90:0c:1a:c8:c3:23:b1:
e7:92:0f:4e:21:e3:7e:d0:52:14:47:db:6b:c2:4e:
37:4d:70:dc:97:b7:c1:d5:28:86:43:d2:dd:d8:cb:
99:a8:17:cb:c1:e0:2c:a4:26:68:f7:c0:50:04:4c:
60:0b:d7:34:c1:ab:19:97:23:f4:bd:be:3c:0c:1f:
46:fb:2b:cf:ba:a3:a6:cc:3f:27:92:5d:c7:2a:81:
e4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4E:AF:44:BC:64:36:63:A4:27:0A:BF:A1:09:19:F4:E4:11:23:5E
X509v3 Authority Key Identifier:
keyid:C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/ME6vRLxkNmOkJwq_oQkZ9OQRI14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:f040::/29
Signature Algorithm: sha256WithRSAEncryption
d6:71:1a:4a:61:9d:7d:65:a8:bc:a8:16:0e:46:c2:f1:0b:89:
c7:a5:25:b1:a3:2a:45:e1:21:03:37:9e:48:5a:61:73:cd:a5:
a0:65:45:5b:13:68:1f:51:66:ed:be:c7:ef:8c:a0:8e:3b:e5:
dd:69:40:63:41:fe:11:7b:69:7e:58:1c:8b:24:3d:37:e7:07:
db:9d:d7:37:97:97:d9:f3:95:f3:69:2d:73:92:d7:83:79:03:
37:6c:ae:e3:72:95:f5:96:5e:46:15:1a:6f:5c:33:d9:33:e8:
54:1a:1c:79:0f:6e:82:d3:f7:f0:f7:c5:79:60:25:98:6a:3f:
26:aa:6c:21:e2:96:9c:71:03:4c:12:50:53:91:e1:9b:4a:5e:
cd:55:dc:7b:7d:93:45:aa:d1:c1:3e:ff:de:e9:6a:58:c2:14:
1d:3e:3e:2b:20:24:41:f6:ce:7f:a1:5e:40:f0:01:44:39:78:
1c:1b:1d:9b:7c:50:7a:fa:6a:b8:f2:84:19:a2:c9:ea:e9:ed:
7f:44:da:ac:ba:e8:4e:c8:a1:b3:26:af:5f:b1:29:85:7e:97:
77:03:02:7b:91:46:cc:57:41:63:96:83:69:74:cc:fb:02:82:
e8:f2:64:20:9f:59:c4:51:80:52:3b:7a:3c:bf:89:fd:c6:47:
af:44:5c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:03:41 2026 by rpki-client