Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ARK0m0oceh8InuvQriLx2dWBb5w.roa
File: ARK0m0oceh8InuvQriLx2dWBb5w.roa (raw, json)
Hash identifier: IoQY1gFZo+SCu8zy7fgHw5xW0tM5FNEOBc/C7NrJEU0=
Subject key identifier: 01:12:B4:9B:4A:1C:7A:1F:08:9E:EB:D0:AE:22:F1:D9:D5:81:6F:9C
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019DCF099DCD6E24050187A479EE735DD43F
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ARK0m0oceh8InuvQriLx2dWBb5w.roa
Signing time: Mon 27 Apr 2026 13:03:27 +0000
ROA not before: Mon 27 Apr 2026 13:03:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198653
IP address blocks: 147.90.19.0/24 maxlen: 24
147.90.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 11:08:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:09:9d:cd:6e:24:05:01:87:a4:79:ee:73:5d:d4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Apr 27 13:03:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0112b49b4a1c7a1f089eebd0ae22f1d9d5816f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5f:7c:af:10:0e:12:e5:36:0d:31:b1:b2:27:
8b:ca:4b:31:1e:37:e1:c8:8d:a4:5a:4a:d6:30:a3:
3e:25:53:81:b7:63:11:6c:0d:85:0a:60:0e:0d:f0:
a9:d2:08:75:8e:bb:98:da:b7:34:19:41:95:a6:c4:
9d:2b:27:a2:2f:37:04:21:4b:d0:32:cf:86:5d:d7:
1a:53:c2:1b:62:2d:b3:8f:fe:ff:52:0c:77:37:87:
8f:96:d6:4b:4a:39:eb:ab:1f:1e:87:10:5e:ca:a4:
d0:b6:7c:80:0a:df:b7:e0:62:b7:fa:d4:85:09:83:
b0:b9:3b:cd:03:64:56:ed:f2:12:45:de:12:01:3f:
ec:39:75:dd:17:31:b3:76:6c:e4:e3:a8:e9:9d:7a:
b5:94:35:b6:11:ea:bb:35:09:6c:2e:5a:5c:ff:5f:
00:48:fd:62:12:ba:9d:8b:7a:d8:bb:65:42:7e:91:
ed:a6:7c:d3:b1:36:01:dc:7e:26:19:77:86:40:ac:
5b:ae:f5:9f:14:e5:d5:19:bd:30:c3:a1:86:1a:2c:
c5:ad:8c:d9:20:6e:a4:ba:cb:66:49:2a:f3:df:80:
12:94:56:2f:e6:8c:df:ce:8d:59:aa:49:31:51:c6:
7d:8b:1b:93:79:ef:42:06:8f:12:80:91:79:6d:33:
d6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:12:B4:9B:4A:1C:7A:1F:08:9E:EB:D0:AE:22:F1:D9:D5:81:6F:9C
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ARK0m0oceh8InuvQriLx2dWBb5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.90.19.0/24
147.90.21.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:fc:d8:06:7f:04:68:56:f5:ff:65:ff:74:b6:f5:2e:ff:42:
a7:cc:66:e3:50:e9:24:9c:0e:b5:19:12:6d:ef:c0:1a:b0:a2:
ab:9d:d1:d8:37:1b:ee:23:f0:c0:33:3f:2f:02:b4:38:de:39:
15:6f:b1:7e:33:c9:95:de:74:7c:77:41:2e:1b:e4:82:c7:49:
4e:ae:93:5a:dd:42:eb:ee:60:fa:9f:b3:bb:1d:6c:ba:d2:24:
4b:e7:02:1d:4f:bf:04:63:5b:0d:b8:4e:09:36:98:99:74:23:
a5:9e:fd:ee:51:8d:ea:f8:32:ae:e4:88:c5:e1:5f:94:bd:aa:
69:08:d1:e7:7a:c8:57:21:2a:0f:f5:71:11:8a:bf:83:4f:37:
41:d3:07:73:00:6d:71:a1:f9:38:d8:6f:32:1f:df:65:ff:90:
28:d6:d5:75:5c:93:81:f0:89:b8:60:22:72:12:8e:16:85:89:
1a:7c:33:e4:da:12:e0:4d:8c:2f:2d:95:8a:26:57:4f:ad:ec:
78:dd:ab:96:79:28:a0:f7:a0:84:c5:50:72:c6:19:e5:13:da:
86:c9:d1:0d:43:24:ff:8b:40:13:93:fb:0d:55:e9:47:6d:cd:
ea:fa:b0:59:6e:36:e8:5b:7c:ff:df:0d:99:ee:6c:ec:6d:a4:
26:fe:20:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 18:55:56 2026 by rpki-client