Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/oyriMRmPhdyYjCxDT9NIxMvWuOY.roa
File: oyriMRmPhdyYjCxDT9NIxMvWuOY.roa (raw, json)
Hash identifier: kOnKfKDkwxJm6mDlHj9TPtVRno5s/MEcPMb+lTHzVSY=
Subject key identifier: A3:2A:E2:31:19:8F:85:DC:98:8C:2C:43:4F:D3:48:C4:CB:D6:B8:E6
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 019E3BFF2426DA56F1BFFF3876FBB777551D
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/oyriMRmPhdyYjCxDT9NIxMvWuOY.roa
Signing time: Mon 18 May 2026 16:50:37 +0000
ROA not before: Mon 18 May 2026 16:50:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41457
IP address blocks: 89.36.33.0/24 maxlen: 24
194.46.60.0/24 maxlen: 24
2a0c:2505:1000::/48 maxlen: 48
2a14:6780::/32 maxlen: 32
2a14:6780:2::/48 maxlen: 48
2a14:6780:3::/48 maxlen: 48
2a14:6780:4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.mft
rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3b:ff:24:26:da:56:f1:bf:ff:38:76:fb:b7:77:55:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: May 18 16:50:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a32ae231198f85dc988c2c434fd348c4cbd6b8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:90:b0:b3:6e:3b:be:34:11:14:42:c7:eb:5b:
50:99:74:9e:2c:a0:e2:81:de:d5:e7:4c:cc:2d:22:
3d:47:6d:f7:82:f8:41:d2:ed:fa:52:6f:77:47:5c:
99:59:cf:a0:78:99:de:47:1a:15:78:31:e6:a0:bb:
9e:22:97:e0:f9:eb:97:dd:a1:cb:47:72:0a:3b:75:
32:61:ab:e8:90:40:7b:a8:50:16:34:38:fc:a8:06:
38:ee:4a:1e:3f:e4:b5:b0:4d:b7:96:ef:ab:ed:62:
2e:ba:10:3a:14:a8:98:19:81:76:19:97:01:cc:60:
87:d1:21:2c:03:5b:a8:b9:bd:fd:39:74:98:bb:3f:
de:2d:d7:1d:bf:1f:d1:0e:a9:b8:84:9e:99:27:13:
65:0e:75:1c:3f:ad:34:e9:55:28:4a:59:81:6d:a5:
5f:ff:f7:2f:0c:cb:84:a8:80:9c:b0:66:28:75:9d:
db:5f:84:91:24:df:8a:c8:91:ac:83:54:4c:10:74:
71:f2:ad:20:08:ad:96:cd:bc:2f:cd:b4:f3:6b:ab:
a1:cb:2b:3a:fb:cf:a8:b9:17:91:c1:38:09:db:91:
79:7d:cd:4d:28:9e:3e:2e:5d:ab:d4:45:7f:c2:e1:
2c:bf:33:df:bb:57:5e:08:e4:f8:b2:6a:b4:cd:60:
b6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2A:E2:31:19:8F:85:DC:98:8C:2C:43:4F:D3:48:C4:CB:D6:B8:E6
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/oyriMRmPhdyYjCxDT9NIxMvWuOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.33.0/24
194.46.60.0/24
IPv6:
2a0c:2505:1000::/48
2a14:6780::/32
Signature Algorithm: sha256WithRSAEncryption
53:d7:2e:67:0e:4f:cb:b3:bb:a1:41:c1:51:eb:8d:17:72:c2:
e6:e1:79:f6:34:dd:7e:35:fc:38:7c:4f:68:c5:01:ae:5c:ca:
2c:fa:a7:44:7b:58:cc:9b:d7:d2:c6:09:d4:f0:0d:13:7a:8b:
d6:95:69:00:e5:4c:79:4d:2f:45:6e:82:82:b7:b7:21:77:01:
1a:9c:63:00:30:26:2b:a4:9b:d4:24:35:a3:4c:67:f4:89:62:
82:c7:9f:64:13:88:c1:01:45:16:ef:ca:02:05:0a:a8:42:f0:
2f:5f:6c:e2:b9:a8:d6:14:54:00:2e:7f:b1:6a:3f:40:09:d0:
cc:fd:46:b7:0f:35:70:f6:9b:5c:85:27:f0:67:94:1f:9e:6e:
02:bf:b0:d4:fa:48:b8:14:be:ea:10:73:37:f1:7c:14:8e:a8:
52:ae:e6:f7:be:2f:15:7d:ba:bf:8e:61:9e:ac:4b:98:90:70:
0a:49:32:62:12:5c:f4:a3:ef:4f:10:a4:b8:e3:af:27:71:3e:
d4:36:52:a1:9e:4d:3a:2e:47:a5:af:6c:c4:87:f4:7d:a7:db:
7c:c9:5f:5d:eb:69:de:79:7f:2e:70:8a:d4:0a:60:8d:21:05:
93:ec:65:62:9d:72:05:a7:5b:a8:49:21:eb:8d:d5:d9:1e:e6:
a8:d2:3e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:25:12 2026 by rpki-client