Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eyT-V0cGhedFvLuk606sfXrDwlI.roa
File: eyT-V0cGhedFvLuk606sfXrDwlI.roa (raw, json)
Hash identifier: R+lMjXFPvtF8yS9cMPdmu9XEaFwjVptVE+dy/KpDv6c=
Subject key identifier: 7B:24:FE:57:47:06:85:E7:45:BC:BB:A4:EB:4E:AC:7D:7A:C3:C2:52
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019DBD0AAE775B63B795798DD06EAA02EFE6
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eyT-V0cGhedFvLuk606sfXrDwlI.roa
Signing time: Fri 24 Apr 2026 01:11:26 +0000
ROA not before: Fri 24 Apr 2026 01:11:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209553
IP address blocks: 2a06:9801:2b2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:bd:0a:ae:77:5b:63:b7:95:79:8d:d0:6e:aa:02:ef:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: Apr 24 01:11:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7b24fe57470685e745bcbba4eb4eac7d7ac3c252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:be:0d:95:5b:d5:7f:3f:e9:fe:84:d1:50:
4c:8e:ea:20:a3:8b:5e:08:0d:64:3e:31:12:6a:d8:
53:ad:78:07:cd:62:de:24:96:7d:88:82:30:c5:83:
33:c9:ba:bc:ea:17:73:3c:78:e4:59:d8:be:d3:fb:
5d:11:fc:a8:25:12:89:a8:1a:b6:0f:9d:c0:39:e6:
d9:b6:e0:f6:e9:4b:8f:d0:fd:5c:81:fa:73:c2:86:
dd:19:fb:db:49:a5:46:18:af:86:1b:03:9a:b1:b3:
f7:e9:0f:1b:22:ea:a3:f4:db:e6:89:fb:d5:87:53:
39:f7:b5:a5:6a:cf:d3:c7:9d:a0:6a:11:7a:3e:44:
f3:1a:b5:d3:14:c2:16:29:fb:4f:5e:ed:cf:63:94:
8c:94:e8:4d:df:a6:b8:5e:9e:21:b2:64:b6:83:e6:
70:de:fe:14:ef:83:0e:63:67:f4:f5:fd:0e:53:d8:
aa:08:b5:0e:56:55:fc:4c:fb:d9:ce:40:99:b7:cd:
c2:c6:e1:af:b2:f4:b4:db:9c:3d:14:28:bf:90:be:
66:c6:1b:b4:cc:96:3d:45:42:13:c1:a6:8d:77:35:
98:00:54:ab:65:9b:ac:e0:8c:bf:62:6d:8b:bb:e5:
3b:b8:13:52:6a:f4:3f:6a:4c:66:8c:88:b4:1b:be:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:24:FE:57:47:06:85:E7:45:BC:BB:A4:EB:4E:AC:7D:7A:C3:C2:52
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/eyT-V0cGhedFvLuk606sfXrDwlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:2b2::/48
Signature Algorithm: sha256WithRSAEncryption
a7:dd:69:e0:e6:0a:c7:a4:3e:47:ba:4e:e6:f1:38:12:ab:3f:
91:70:ec:77:b4:0d:41:ae:d5:7e:b3:a7:35:ea:62:70:85:1c:
56:fa:83:30:c1:dd:56:58:7e:0b:e8:0d:c2:37:4f:db:da:8f:
64:a7:47:13:b0:9f:ad:a8:ba:21:b6:2c:d8:11:f2:0d:19:3d:
c2:3c:a1:ee:e5:42:ca:5c:55:20:de:3e:48:78:30:76:ca:5e:
88:7d:f6:4b:7b:47:b2:61:7f:ce:c1:8d:35:7e:51:d2:89:44:
fc:49:bd:c9:32:5f:d0:dd:3a:1d:b9:ee:b0:90:4b:0d:c0:d4:
05:44:6c:82:d1:b7:29:3b:e4:59:2c:a2:e5:ee:07:ef:52:df:
a0:e4:f0:eb:19:02:0f:4f:4a:74:51:30:c7:31:07:57:43:e7:
04:6b:a1:ab:03:74:1d:a4:36:ab:26:9e:fb:ad:35:07:34:63:
f0:58:eb:ee:1c:d6:6c:fe:e7:95:57:3b:1a:8b:59:67:5d:46:
9b:2b:89:5b:bd:ef:bb:92:fb:fd:2e:e2:da:dc:3a:6a:6d:56:
cb:9e:e4:52:6f:ee:90:c0:8f:fe:36:c5:30:d8:aa:75:52:ad:
2a:3c:eb:53:be:67:33:ce:f3:fd:32:c4:cb:75:b5:ec:64:78:
b6:62:63:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 19:09:52 2026 by rpki-client