Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/vINuwcNnkpikTczh3QJJDkDshUQ.roa
File: vINuwcNnkpikTczh3QJJDkDshUQ.roa (raw, json)
Hash identifier: d4JFil4KdE9sIgtRNdUYG5jzcpib/Fzi6yqvSmhW+t8=
Subject key identifier: BC:83:6E:C1:C3:67:92:98:A4:4D:CC:E1:DD:02:49:0E:40:EC:85:44
Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Certificate serial: 019CDE263309199AA858576F307670FAB6FF
Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/vINuwcNnkpikTczh3QJJDkDshUQ.roa
Signing time: Wed 11 Mar 2026 18:26:11 +0000
ROA not before: Wed 11 Mar 2026 18:26:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 24768
IP address blocks: 80.174.240.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:de:26:33:09:19:9a:a8:58:57:6f:30:76:70:fa:b6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Validity
Not Before: Mar 11 18:26:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bc836ec1c3679298a44dcce1dd02490e40ec8544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:17:8a:39:f7:20:4b:aa:60:41:cf:41:45:91:
45:e7:ab:53:90:6d:08:95:42:4e:b1:fa:27:b6:3f:
b1:43:36:32:30:5a:46:b9:71:5f:a1:87:2d:5e:10:
48:2f:2d:83:45:6e:0e:36:46:6d:20:c8:19:27:16:
72:6c:ac:3f:1d:9e:71:9a:83:7a:1c:a6:65:94:22:
08:e2:a3:a7:a7:dd:3b:dc:65:80:f9:f0:72:26:a6:
dc:0c:82:ab:25:33:3e:71:8f:1a:46:87:8a:60:bf:
d6:bc:bc:a9:68:1b:99:f2:e8:80:95:0c:e0:7b:5a:
97:04:e7:a7:ba:ba:88:3a:89:1e:07:b8:50:03:31:
55:06:a6:dc:9b:be:06:4a:ca:c0:66:aa:e4:2c:7f:
37:77:31:18:2b:61:f0:a9:38:56:d6:4c:7d:af:4c:
93:6f:6e:90:7a:23:79:95:54:d5:dc:95:89:b9:8d:
23:71:23:9b:4a:24:e3:5d:32:4e:e1:ed:20:b3:a0:
58:7b:53:a4:95:f5:5f:bc:3e:df:e5:9e:33:9c:82:
b8:43:ac:3e:53:af:71:d1:3c:92:3d:30:06:60:9a:
b9:70:52:36:23:ea:9a:ee:e8:4c:af:a4:63:8f:34:
03:43:66:58:d4:c4:58:96:c9:fa:86:f8:05:91:46:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:83:6E:C1:C3:67:92:98:A4:4D:CC:E1:DD:02:49:0E:40:EC:85:44
X509v3 Authority Key Identifier:
keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/vINuwcNnkpikTczh3QJJDkDshUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.174.240.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:da:23:56:27:e9:5d:33:96:7f:21:67:7e:92:69:4c:2b:9b:
3c:2a:99:18:2f:d9:41:40:8e:7b:a9:92:69:18:55:be:44:16:
ba:8a:8d:3a:54:7f:55:59:91:76:03:19:02:ad:fb:91:ea:a2:
27:e0:5a:b8:ce:8c:6f:b7:aa:9e:7c:45:47:d8:44:0f:fc:f0:
c4:e0:62:cc:1d:56:21:37:1f:9c:db:38:ea:85:65:c4:89:da:
1a:c2:92:63:35:93:f0:01:1a:44:0d:04:24:1b:19:c2:bd:d2:
a6:35:69:95:77:3c:ec:bd:d5:72:c9:fa:49:bc:55:d9:1f:bc:
5f:80:6c:22:27:59:b2:cb:e8:19:96:ef:d7:4e:e4:41:8c:5e:
fe:11:a1:60:48:69:12:5c:c2:34:84:79:41:77:7a:97:8d:d2:
27:a3:27:c5:c4:dc:63:31:37:9d:50:c9:93:92:24:ee:37:68:
3c:47:dd:f0:fb:49:f6:58:40:3b:87:1d:43:56:7d:d6:2b:76:
f2:56:09:83:00:28:c9:8a:76:e9:2b:65:55:bf:da:f3:f1:9d:
0e:94:7c:10:42:18:80:02:e1:45:10:98:0d:a8:71:fa:98:18:
35:6b:ad:ce:8b:3e:32:8d:41:0e:c0:04:02:70:b0:73:3b:30:
05:a0:64:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 00:05:55 2026 by rpki-client