Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eEvWKTzhsO-aNt-7w713mdRPbOs.roa
File: eEvWKTzhsO-aNt-7w713mdRPbOs.roa (raw, json)
Hash identifier: 6xCd7vhTo5ul3qCMpzuIYlA8yIP7x3wAY9g+vLPiSq0=
Subject key identifier: 78:4B:D6:29:3C:E1:B0:EF:9A:36:DF:BB:C3:BD:77:99:D4:4F:6C:EB
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019E3D1DB3A9C5C945FC1A84B097CC740D56
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eEvWKTzhsO-aNt-7w713mdRPbOs.roa
Signing time: Mon 18 May 2026 22:03:37 +0000
ROA not before: Mon 18 May 2026 22:03:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 31898
IP address blocks: 2a06:9801::/48 maxlen: 48
2a06:9801:741::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 29 May 2026 11:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3d:1d:b3:a9:c5:c9:45:fc:1a:84:b0:97:cc:74:0d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: May 18 22:03:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=784bd6293ce1b0ef9a36dfbbc3bd7799d44f6ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ea:ec:4b:9c:33:ca:e1:51:98:1b:7a:e4:93:
4d:a3:e1:44:cf:7c:c6:a1:dd:64:9b:bb:3b:f3:cb:
a0:68:75:0d:d9:76:84:5a:50:84:03:f1:b1:d0:7e:
f3:11:e2:a5:1e:ee:a7:db:36:89:67:0e:47:a7:e6:
f9:c4:12:41:e3:09:80:08:d7:ae:e5:df:3d:29:05:
72:e9:0d:bd:d9:f3:e3:c2:84:c6:a3:48:3d:83:be:
63:90:1a:ea:18:0b:8a:f0:eb:b8:1d:27:5c:f9:c2:
15:db:b1:68:bc:6f:3f:fd:e9:f2:82:3e:d6:e2:e6:
65:32:95:4d:2a:dc:a1:2e:3e:b2:0c:14:72:a7:83:
24:59:da:65:a1:62:7f:bc:d9:04:98:d6:e6:f6:bd:
b5:ab:ee:a7:7a:92:03:40:e6:bf:68:10:78:c9:8e:
26:21:42:ce:17:ab:d9:61:d9:34:a6:2e:22:72:a0:
fb:0d:15:69:07:5d:46:bc:d2:94:52:1d:bd:60:d4:
4b:38:93:9c:08:c2:3c:90:90:40:89:64:e8:52:ba:
25:a4:89:f0:02:e6:4b:74:41:30:22:db:8a:5b:13:
24:ae:36:9d:eb:49:a4:1d:3a:22:85:b0:6a:a1:95:
cf:58:28:55:7e:e8:5f:ea:44:b5:17:fb:e9:33:7a:
5f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4B:D6:29:3C:E1:B0:EF:9A:36:DF:BB:C3:BD:77:99:D4:4F:6C:EB
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eEvWKTzhsO-aNt-7w713mdRPbOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801::/48
2a06:9801:741::/48
Signature Algorithm: sha256WithRSAEncryption
19:ef:ff:39:80:1b:66:91:cd:72:dd:10:31:76:31:dc:76:59:
14:dd:9c:44:e1:c2:9c:2e:35:4f:8f:59:0c:53:cf:a0:e5:9e:
72:7e:58:ce:f0:9e:ca:56:83:64:80:cb:e7:29:db:d8:6f:df:
b4:e4:89:c7:7b:3c:87:1c:8c:d0:b4:a0:45:3e:29:de:8d:91:
f3:3d:70:c8:b1:7a:e4:fc:e7:d6:4e:2b:10:03:01:9a:3d:01:
a8:bd:b5:c4:f5:34:f5:07:8c:47:34:8e:6f:43:1a:ea:d3:41:
e8:92:c4:ce:19:b9:03:fa:ee:aa:de:63:e8:53:7f:fa:48:f2:
0a:f7:9a:bb:b4:5a:a1:9e:85:18:44:bd:a5:c9:ad:f4:cd:48:
ca:f5:7c:60:a0:18:34:47:a2:38:65:a0:5a:da:6f:52:4e:53:
a9:28:31:ca:9d:09:40:cc:07:8d:62:2f:c8:56:d9:77:fd:21:
92:c1:a4:09:95:54:7c:cb:bf:dd:a8:3f:e2:ea:ed:e1:64:2b:
94:69:b1:0c:bc:1d:3c:2c:97:1e:4b:58:a7:c5:1e:62:bf:a8:
f3:30:77:f6:b3:1e:c7:4f:14:af:1b:c1:10:75:2e:b0:1a:28:
89:80:be:c0:08:7b:51:84:b9:58:f8:19:81:86:5a:df:40:18:
49:89:08:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 28 15:23:35 2026 by rpki-client