Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/Mqg9n_WUaz8lrRzhy3caQEnobVw.roa
File: Mqg9n_WUaz8lrRzhy3caQEnobVw.roa (raw, json)
Hash identifier: LZsbKsdzQng7HRZZhi5z+bLzwdV0hD5QUy5L6JqoYos=
Subject key identifier: 32:A8:3D:9F:F5:94:6B:3F:25:AD:1C:E1:CB:77:1A:40:49:E8:6D:5C
Certificate issuer: /CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Certificate serial: 019EA75906A94B392CADDCF2FB9F6F2B366E
Authority key identifier: 72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/Mqg9n_WUaz8lrRzhy3caQEnobVw.roa
Signing time: Mon 08 Jun 2026 13:08:09 +0000
ROA not before: Mon 08 Jun 2026 13:08:09 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8426
IP address blocks: 80.70.216.0/23 maxlen: 23
80.89.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/cke6Q-JwyYvcZCqePCGMpSTrD1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/cke6Q-JwyYvcZCqePCGMpSTrD1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 13:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a7:59:06:a9:4b:39:2c:ad:dc:f2:fb:9f:6f:2b:36:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Validity
Not Before: Jun 8 13:08:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=32a83d9ff5946b3f25ad1ce1cb771a4049e86d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d5:43:f5:6a:92:30:b3:48:1f:f7:ad:22:4c:
46:c1:ea:22:a8:78:87:47:9d:35:a8:7b:14:56:f5:
ed:19:59:06:af:58:0f:50:c4:09:41:24:cb:88:a6:
6f:84:c3:14:e2:39:84:36:f4:07:e5:79:13:02:75:
e7:ba:f6:a6:47:25:6e:b4:d8:56:81:31:0e:69:ba:
f8:8b:9c:ce:96:c3:82:8d:22:06:6a:40:b8:66:69:
b4:1d:d6:d6:e3:a1:e9:25:36:7f:e3:67:93:5b:78:
dd:c2:f9:7c:c9:3d:1b:a5:73:2d:57:dd:be:50:97:
f4:ff:74:98:d5:a4:a9:4a:60:df:b3:5d:48:93:a5:
81:a0:02:24:6d:f4:16:c4:b5:cf:b0:86:36:42:cf:
1f:95:5b:53:ca:26:27:66:d7:1b:ad:6e:43:95:d1:
ac:fa:c0:75:f1:05:a9:03:38:60:81:58:cd:c3:12:
c6:71:b2:31:22:ac:29:9b:7c:2e:ec:1f:a4:5c:85:
fc:fd:65:b0:2c:57:01:32:28:f0:89:1d:a9:f3:df:
22:6a:57:60:06:9c:16:74:4b:88:4f:fa:18:40:35:
38:ad:d6:43:42:1e:0a:b0:ad:9b:02:dd:c6:07:52:
50:9e:bc:75:9b:63:11:73:aa:b6:63:c3:5a:5d:a6:
d1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A8:3D:9F:F5:94:6B:3F:25:AD:1C:E1:CB:77:1A:40:49:E8:6D:5C
X509v3 Authority Key Identifier:
keyid:72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/Mqg9n_WUaz8lrRzhy3caQEnobVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/cke6Q-JwyYvcZCqePCGMpSTrD1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.216.0/23
80.89.114.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ce:55:26:0c:66:67:b1:b1:17:e7:48:9b:8e:76:68:bd:0e:
78:88:03:b4:5f:df:96:c4:8f:96:57:18:dc:82:1e:41:fc:44:
33:c1:60:24:27:ba:fc:8f:ec:7a:d8:26:11:44:75:b9:71:04:
f3:e7:3b:52:8a:ba:22:69:72:70:08:dc:07:66:f4:38:e9:c8:
d0:7b:ab:05:c2:d8:d6:ba:74:0d:d9:cf:b4:e0:06:51:30:34:
08:c2:a4:4c:e7:49:7b:91:52:11:8a:25:45:15:b0:21:34:a0:
15:ed:0c:ed:6e:0d:5c:9c:c7:e7:12:6b:df:21:17:8e:85:81:
8b:17:91:ed:0e:9f:1e:5c:c2:ea:f6:a4:48:3b:81:1d:70:d7:
2f:64:b5:a3:cb:9f:81:de:86:1c:3c:32:c5:83:04:5b:b6:1d:
d6:e5:d5:c1:6e:0e:82:8b:17:68:88:f9:bd:4c:72:13:87:19:
b0:5b:6a:84:63:6a:5d:cd:71:bc:71:17:0a:24:f7:51:15:91:
de:61:2f:b4:ab:06:0e:e1:9e:dd:2f:34:36:4e:01:e6:17:fa:
ec:e0:76:27:f6:4c:be:ea:bd:bc:ff:bd:c1:2c:85:9a:83:87:
b3:f0:0d:6f:89:bb:80:32:55:b7:d6:d7:2e:88:d0:6c:74:ed:
7f:f2:49:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 22:35:07 2026 by rpki-client