Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/RHQL18wfluldSPd9N8_76rdnGhM.roa
File: RHQL18wfluldSPd9N8_76rdnGhM.roa (raw, json)
Hash identifier: yLa6Xspiu5pQmBQHVsnAJuJQzkmKhlfGSF7EUEeLPzo=
Subject key identifier: 44:74:0B:D7:CC:1F:96:E9:5D:48:F7:7D:37:CF:FB:EA:B7:67:1A:13
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019E2C59B58A53B64F006A33678FDCEF6CBE
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/RHQL18wfluldSPd9N8_76rdnGhM.roa
Signing time: Fri 15 May 2026 15:55:37 +0000
ROA not before: Fri 15 May 2026 15:55:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204909
IP address blocks: 2a0d:ad45::/32 maxlen: 32
2a11:9043::/32 maxlen: 32
2a11:e2c2::/32 maxlen: 32
2a11:e2c5::/32 maxlen: 32
2a12:8785::/32 maxlen: 32
2a12:cf82::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2c:59:b5:8a:53:b6:4f:00:6a:33:67:8f:dc:ef:6c:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 15 15:55:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=44740bd7cc1f96e95d48f77d37cffbeab7671a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a7:f2:71:67:c9:44:79:1c:84:5f:8a:f6:dd:
bb:68:c9:39:30:d0:53:ef:a8:37:b6:01:78:d1:d5:
76:b8:54:c8:ba:40:57:e8:b2:35:67:7d:fe:73:ac:
f0:94:14:aa:4e:24:2a:c3:e2:f7:0f:67:f4:53:e3:
88:42:6c:38:54:00:d1:ab:e2:17:c2:ea:eb:29:69:
24:8c:ab:84:11:8f:0d:7e:85:02:df:d4:fc:ed:c1:
78:7f:e8:c5:58:6b:82:7c:e1:d7:16:01:2d:d1:8d:
e1:87:fa:18:8a:0c:e4:b9:2f:86:3b:71:a7:24:70:
17:8d:7d:fd:d7:6f:03:f1:ca:4b:cf:90:aa:07:ba:
38:c9:8c:b7:f5:76:3a:05:38:b0:12:ca:26:36:66:
2e:73:fb:e9:b0:b2:87:5d:a8:10:6a:45:ed:06:ea:
2e:a5:cf:18:2c:bb:30:6d:00:bb:0d:80:aa:1c:c7:
93:5c:c8:f3:99:97:33:de:e3:84:37:70:22:77:4a:
4b:a5:c1:72:e4:80:01:f5:96:f7:56:1d:6d:c0:a6:
15:aa:78:3b:dd:44:6f:9b:d5:1a:c1:43:42:0f:a1:
73:49:eb:cc:90:b9:64:ce:48:e2:03:34:c3:8f:0c:
3d:23:2d:49:25:d3:56:52:f5:38:ca:89:b2:b6:d5:
8a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:74:0B:D7:CC:1F:96:E9:5D:48:F7:7D:37:CF:FB:EA:B7:67:1A:13
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/RHQL18wfluldSPd9N8_76rdnGhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:ad45::/32
2a11:9043::/32
2a11:e2c2::/32
2a11:e2c5::/32
2a12:8785::/32
2a12:cf82::/32
Signature Algorithm: sha256WithRSAEncryption
53:76:d2:c0:87:71:53:62:d6:4b:48:fe:db:23:69:84:1c:7b:
03:57:55:3c:c0:c3:07:e5:85:55:0d:c7:f9:03:d5:3e:9a:c1:
19:39:9f:5c:b2:d8:75:ac:ed:5d:5a:38:d2:e1:fb:fc:4c:0f:
e1:fc:dc:2a:c7:fb:35:7b:fc:0b:cf:96:52:a8:30:f2:27:0f:
48:b4:94:a5:35:55:da:07:3e:f6:da:ac:62:7d:c9:80:3e:3a:
e1:6d:09:29:fb:da:0d:57:17:f9:d6:85:ac:ae:9a:22:65:34:
f9:1c:ea:9d:a6:9f:e5:8d:90:26:29:ac:f3:2e:eb:86:2f:67:
be:40:66:02:22:89:60:96:55:07:c7:86:f1:da:fc:f6:b0:87:
36:6c:45:21:61:53:0f:15:c9:65:c2:80:5b:3a:50:92:aa:49:
6b:6a:6f:6a:75:00:1c:cf:cb:70:06:5d:26:35:8e:1d:d7:9d:
2c:d5:e7:fe:8b:5f:62:15:17:53:ac:3d:18:ad:bd:a3:91:d5:
08:cf:d7:e8:4a:b1:1d:30:0c:ca:79:97:c2:ec:08:88:57:13:
76:aa:32:b7:da:7e:e8:34:01:3d:2b:2f:c9:a0:dd:c0:ee:15:
54:db:ba:a9:0a:2b:b0:b8:0c:92:3b:9e:76:82:b9:82:6a:24:
2e:2a:27:96
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZ4sWbWKU7ZPAGozZ4/c72y+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjYwNTE1MTU1NTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDc0MGJkN2NjMWY5NmU5NWQ0OGY3N2QzN2NmZmJlYWI3NjcxYTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36fycWfJRHkchF+K9t27aMk5MNBT
76g3tgF40dV2uFTIukBX6LI1Z33+c6zwlBSqTiQqw+L3D2f0U+OIQmw4VADRq+IX
wurrKWkkjKuEEY8NfoUC39T87cF4f+jFWGuCfOHXFgEt0Y3hh/oYigzkuS+GO3Gn
JHAXjX39128D8cpLz5CqB7o4yYy39XY6BTiwEsomNmYuc/vpsLKHXagQakXtBuou
pc8YLLswbQC7DYCqHMeTXMjzmZcz3uOEN3Aid0pLpcFy5IAB9Zb3Vh1twKYVqng7
3URvm9UawUNCD6FzSevMkLlkzkjiAzTDjww9Iy1JJdNWUvU4yomyttWKuQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFER0C9fMH5bpXUj3fTfP++q3ZxoTMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvUkhRTDE4d2ZsdWxkU1BkOU44Xzc2cmRuR2hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUAKg2tRQMF
ACoRkEMDBQAqEeLCAwUAKhHixQMFACoSh4UDBQAqEs+CMA0GCSqGSIb3DQEBCwUA
A4IBAQBTdtLAh3FTYtZLSP7bI2mEHHsDV1U8wMMH5YVVDcf5A9U+msEZOZ9csth1
rO1dWjjS4fv8TA/h/Nwqx/s1e/wLz5ZSqDDyJw9ItJSlNVXaBz722qxifcmAPjrh
bQkp+9oNVxf51oWsrpoiZTT5HOqdpp/ljZAmKazzLuuGL2e+QGYCIolgllUHx4bx
2vz2sIc2bEUhYVMPFcllwoBbOlCSqklram9qdQAcz8twBl0mNY4d150s1ef+i19i
FRdTrD0Yrb2jkdUIz9foSrEdMAzKeZfC7AiIVxN2qjK32n7oNAE9Ky/JoN3A7hVU
27qpCiuwuAySO552grmCaiQuKieW
-----END CERTIFICATE-----
Generated at Thu Jun 4 09:59:31 2026 by rpki-client