Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/gVX2XMknGkV_RXJsg6uzPYcY6hw.roa
File: gVX2XMknGkV_RXJsg6uzPYcY6hw.roa (raw, json)
Hash identifier: hLOfqxbZkwXHrpadQlvnADKw6c5mTp6Jpl5GxNC/v0E=
Subject key identifier: 81:55:F6:5C:C9:27:1A:45:7F:45:72:6C:83:AB:B3:3D:87:18:EA:1C
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019DD99146EC7AF19F4C89EE5D55898D9CF1
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/gVX2XMknGkV_RXJsg6uzPYcY6hw.roa
Signing time: Wed 29 Apr 2026 14:07:49 +0000
ROA not before: Wed 29 Apr 2026 14:07:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402306
IP address blocks: 87.229.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d9:91:46:ec:7a:f1:9f:4c:89:ee:5d:55:89:8d:9c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Apr 29 14:07:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8155f65cc9271a457f45726c83abb33d8718ea1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:33:e7:c2:e2:ea:15:a6:99:9b:9e:2e:b4:
41:66:a3:59:83:05:57:32:25:1f:a0:e4:06:b7:4b:
c1:66:90:f0:58:82:0b:fb:ea:ac:52:dc:d8:d5:a2:
34:1a:91:55:d7:a6:65:aa:96:67:2e:4c:b5:ba:11:
2f:ff:34:c5:cf:90:65:6c:ba:55:3c:dd:df:1c:43:
49:9a:1c:5b:57:dd:32:f0:ac:5c:80:d2:16:3b:d9:
a9:f0:20:20:02:d6:64:92:55:3a:3e:28:a8:da:c2:
c4:e2:76:02:78:cc:ec:b4:80:2a:c2:6a:ac:40:30:
1f:e7:3c:e8:29:fa:66:88:60:a7:da:c6:95:5b:d8:
5c:ea:d1:e9:b5:50:2e:05:1a:76:7b:fe:68:3e:39:
44:75:19:0e:11:65:47:4b:44:a7:ef:bc:0d:6f:bf:
ca:8e:a0:be:f8:c7:7b:51:94:7f:24:35:8e:d3:70:
87:e5:ae:81:96:91:70:f8:01:2c:d4:ac:11:47:f8:
f3:5d:40:2c:91:a0:8b:9d:a6:a8:6c:88:c1:7e:27:
04:3d:1f:6b:4a:8d:88:cf:34:e2:28:41:2f:dc:c0:
6a:2e:dc:a0:d4:ee:32:53:9e:7f:2f:a6:3a:90:01:
d2:22:5d:40:cd:bf:51:f9:ee:d6:25:49:fe:07:db:
48:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:55:F6:5C:C9:27:1A:45:7F:45:72:6C:83:AB:B3:3D:87:18:EA:1C
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/gVX2XMknGkV_RXJsg6uzPYcY6hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.52.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:9c:03:69:c6:f8:3f:17:8e:b1:03:d4:47:f3:99:13:82:24:
0f:c7:fd:b9:a0:ba:9e:22:dd:07:5a:14:f8:ff:38:9f:f9:d7:
e2:45:9e:45:11:f5:db:91:d4:c8:f2:f5:83:25:c4:8b:61:ef:
aa:5f:f1:95:21:e9:f6:6f:f1:49:6b:11:59:80:4a:d5:1f:de:
a6:f0:17:2d:94:5b:d4:f2:7c:79:d8:7c:21:28:5e:f4:cd:cf:
72:1d:8f:6a:03:4a:18:9e:69:03:7d:11:92:6a:43:b7:0e:c3:
82:38:7c:26:29:e7:22:c0:92:9d:46:6d:7a:8a:bb:6e:ba:57:
d4:3c:f0:56:36:d2:90:5a:74:26:c4:1a:1d:46:42:37:50:9b:
9e:a7:fd:ff:22:af:fd:79:9d:8c:fc:5d:75:5b:ae:31:f6:96:
1f:97:f6:10:c6:5b:05:d9:b6:12:54:7f:0d:6d:36:77:a4:5e:
25:ec:c1:bc:25:00:cb:8e:57:61:98:e9:e6:7b:c6:4a:0f:f5:
75:82:85:2c:fe:6f:d5:34:54:00:b4:38:2d:9d:0d:3e:30:5d:
67:55:82:01:25:95:cc:11:95:b8:08:3a:bf:84:04:08:2a:6b:
a1:6d:6b:ca:8e:b4:be:2a:a8:47:72:5f:e6:cc:a4:78:de:04:
7f:a6:64:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 18:35:51 2026 by rpki-client