Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/hGQkR2xUweGSZnUaT9mmLKGQdGg.roa
File: hGQkR2xUweGSZnUaT9mmLKGQdGg.roa (raw, json)
Hash identifier: DUMOxHkcLcliSsMHtXHcwDi20h0T0+aMjAxD0D0jknQ=
Subject key identifier: 84:64:24:47:6C:54:C1:E1:92:66:75:1A:4F:D9:A6:2C:A1:90:74:68
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 019DB93626F4AEA670D3670F02BD1B8F0CB8
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/hGQkR2xUweGSZnUaT9mmLKGQdGg.roa
Signing time: Thu 23 Apr 2026 07:20:26 +0000
ROA not before: Thu 23 Apr 2026 07:20:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199030
IP address blocks: 212.100.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b9:36:26:f4:ae:a6:70:d3:67:0f:02:bd:1b:8f:0c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Apr 23 07:20:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=846424476c54c1e19266751a4fd9a62ca1907468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:28:a9:ba:19:d5:e3:6a:78:bd:d7:d2:42:0d:
ba:a3:21:d3:0d:ea:52:85:4c:8c:75:67:eb:88:cc:
5b:55:5d:54:0c:51:dd:f1:ca:f1:0e:af:b7:ee:f2:
79:39:24:e6:81:88:a4:57:67:51:f8:1b:3f:21:0e:
4d:4e:6d:05:c6:55:38:22:ee:94:a0:19:25:84:b1:
51:2d:93:1f:6d:b9:75:cc:7c:a2:94:52:0a:47:a2:
88:7d:02:29:e2:6a:60:9d:04:61:77:b8:88:d4:f9:
ce:33:13:ed:53:12:8c:91:dc:fd:db:a7:c7:6f:09:
39:74:5a:35:0e:96:77:a3:80:43:2b:61:66:7f:43:
f8:4b:67:06:07:08:5e:cd:fb:5f:95:45:f0:b3:b0:
ba:f6:6d:ce:35:0d:d5:98:14:24:50:0f:a0:25:07:
62:86:cd:f3:6a:a7:85:5a:53:4a:31:00:06:0a:41:
be:3e:b2:46:c2:69:68:1f:e6:87:21:20:93:b9:52:
a6:c5:fc:e1:05:d8:72:66:ce:4d:b8:31:2a:35:1c:
82:cd:74:c0:bf:d6:78:b5:f6:55:b4:5b:be:c0:9d:
20:c6:d8:6a:21:2c:75:b2:72:2d:18:0b:17:27:29:
30:2b:5c:c5:fb:f4:87:7b:df:39:fa:cf:0f:b4:31:
cf:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:64:24:47:6C:54:C1:E1:92:66:75:1A:4F:D9:A6:2C:A1:90:74:68
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/hGQkR2xUweGSZnUaT9mmLKGQdGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.179.0/24
Signature Algorithm: sha256WithRSAEncryption
35:ae:ac:98:3d:31:dc:6d:52:30:d5:9e:54:fb:0e:a1:5d:85:
38:fb:7e:e7:4a:5c:79:0a:7e:fc:97:ba:54:d6:50:26:5c:e8:
da:6e:23:c5:72:39:8e:15:cb:63:fc:23:09:8c:16:15:09:8b:
b2:81:7a:70:76:ce:56:a1:96:07:0a:53:f2:a0:f1:0a:3e:3d:
3a:1a:33:b3:2a:27:e0:6d:24:13:85:cd:25:1b:65:63:bc:0b:
a4:4a:b5:ec:c4:76:2b:5d:9b:91:18:0b:bf:0b:33:b4:f4:a7:
1d:27:3f:82:22:29:8c:4d:27:14:e9:3b:93:50:5d:dc:a3:e2:
0d:8d:03:08:de:58:b1:10:1a:71:7f:5a:2e:7b:bc:0b:9e:a9:
27:95:37:46:ee:ca:15:f6:e0:42:a1:e9:81:75:bc:a5:d4:9b:
dd:43:39:34:29:82:5d:d4:b1:ed:df:ab:3d:72:f8:fa:18:f1:
e3:aa:b1:ff:27:b7:7a:a6:c7:0e:e5:a9:53:93:22:bc:0f:aa:
22:7b:a2:b7:93:6e:d4:36:b5:48:c1:af:2f:9f:69:ee:e1:e5:
a9:98:a6:3a:73:a3:15:7f:cf:44:4c:a4:64:22:13:97:46:03:
04:d3:4f:40:8a:1e:70:24:fa:cd:d9:81:b8:cb:09:72:f6:c6:
9b:1e:d2:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 01:12:13 2026 by rpki-client