Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/lK9DxXZeoXtqlq1bPFz0BtQnBq4.roa
File: lK9DxXZeoXtqlq1bPFz0BtQnBq4.roa (raw, json)
Hash identifier: QFc0l80zmpqGEvVQGNe+RF7xjAgh9gj8MfPl4+sWkkU=
Subject key identifier: 94:AF:43:C5:76:5E:A1:7B:6A:96:AD:5B:3C:5C:F4:06:D4:27:06:AE
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 019DB9244B1226D784C3E10D2BF6A0845413
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/lK9DxXZeoXtqlq1bPFz0BtQnBq4.roa
Signing time: Thu 23 Apr 2026 07:00:56 +0000
ROA not before: Thu 23 Apr 2026 07:00:56 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208504
IP address blocks: 212.100.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b9:24:4b:12:26:d7:84:c3:e1:0d:2b:f6:a0:84:54:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Apr 23 07:00:56 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=94af43c5765ea17b6a96ad5b3c5cf406d42706ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:af:a7:86:31:b0:74:46:4c:0a:b4:7c:81:29:
f7:51:55:9a:f5:19:2d:f7:c5:25:09:71:f2:94:27:
9a:66:19:29:82:5f:8a:f5:ac:82:ee:ad:9a:e8:b6:
88:55:44:b6:3d:49:da:d9:32:15:6d:d6:6b:b0:22:
40:ae:54:1c:78:a2:b2:28:d5:81:92:66:84:46:1c:
07:81:b2:f2:19:e1:40:8f:13:2e:f7:a6:a0:a1:3d:
a8:4b:65:3d:62:c4:ad:8a:9a:e0:35:df:f5:04:f7:
30:8f:de:01:2f:db:95:25:91:6e:41:11:62:c9:7a:
49:61:d7:ba:4d:1e:a2:56:a7:11:e3:a2:2b:47:6e:
47:46:70:fd:92:89:a0:95:7f:64:fa:76:cf:65:1b:
f7:01:da:ce:a8:1c:02:19:42:0e:aa:f7:a2:84:93:
6c:60:ac:11:ea:eb:15:b9:d5:14:e0:58:d7:d2:61:
43:35:5c:f9:31:ad:aa:35:ec:9e:e6:d5:63:d7:31:
dc:26:62:b3:a1:4f:45:c9:a5:ef:f7:2e:b2:39:8b:
bc:6b:ec:35:40:82:76:cc:18:df:fb:b0:95:f7:70:
67:c2:60:f4:bf:c6:24:56:6f:29:00:a7:23:d7:6e:
7c:8e:1e:d0:4e:64:32:12:54:46:15:00:6e:eb:e9:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AF:43:C5:76:5E:A1:7B:6A:96:AD:5B:3C:5C:F4:06:D4:27:06:AE
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/lK9DxXZeoXtqlq1bPFz0BtQnBq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.179.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:4a:ca:0e:f2:56:df:81:41:8d:7f:83:06:ba:a5:a3:f9:d5:
8a:7c:2b:67:c3:85:e9:b9:38:dd:6b:48:7b:df:63:06:66:18:
a0:a2:2f:94:4c:2a:0a:e7:b4:df:f9:c1:3c:92:6f:d1:4b:f1:
b1:ff:51:0d:69:62:e8:0b:ca:e5:db:17:13:ca:69:17:1f:d3:
a7:06:5c:04:68:bc:ab:1a:3e:90:2c:7d:ac:08:3d:a3:58:d8:
2a:e1:e6:68:89:c4:bc:fd:63:a9:f7:88:9b:36:00:50:29:c4:
23:a1:66:d2:48:17:e8:06:7d:d5:4a:83:e2:a4:e3:eb:ae:b9:
ce:1c:88:1c:b0:4a:cb:8c:0c:72:4c:75:c8:71:94:87:bd:3a:
81:25:df:4a:8f:1f:45:70:a5:ac:26:6c:2e:b8:79:22:ab:08:
3f:77:03:37:1c:ce:82:02:5d:1b:0e:c7:2b:a0:5b:7d:d5:f8:
95:ea:ad:16:62:32:51:81:cf:73:36:2d:6c:22:d0:83:e3:61:
58:b1:ed:f6:86:f9:04:35:d7:d8:f1:a4:06:ca:0c:2a:80:9b:
70:dd:59:ca:b5:f3:aa:40:67:f2:fd:a9:f1:e1:9f:c8:4c:da:
e9:86:72:37:c0:08:4a:41:d9:91:13:b8:bf:00:3e:4a:2b:2b:
85:f5:9f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 01:12:12 2026 by rpki-client