Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/mll0JS45VfsGyC4p947Xw9ARAuk.roa
File: mll0JS45VfsGyC4p947Xw9ARAuk.roa (raw, json)
Hash identifier: SaWT036nVOihQ/TIk7R5WevvvdD0q/i8CFax8NpY1KY=
Subject key identifier: 9A:59:74:25:2E:39:55:FB:06:C8:2E:29:F7:8E:D7:C3:D0:11:02:E9
Certificate issuer: /CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Certificate serial: 019F04543994C7B8C1690F24EF2D19795F56
Authority key identifier: 5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/mll0JS45VfsGyC4p947Xw9ARAuk.roa
Signing time: Fri 26 Jun 2026 14:27:36 +0000
ROA not before: Fri 26 Jun 2026 14:27:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9304
IP address blocks: 178.214.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:04:54:39:94:c7:b8:c1:69:0f:24:ef:2d:19:79:5f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Validity
Not Before: Jun 26 14:27:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9a5974252e3955fb06c82e29f78ed7c3d01102e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:9f:ed:28:da:6f:e2:02:2f:23:3e:0e:37:01:
7f:3a:7e:48:7b:d6:e0:81:bf:da:6c:27:9b:29:7b:
78:09:c5:76:99:ff:f7:ac:97:97:52:44:00:2d:f3:
2c:5e:54:d5:a3:90:a6:a7:46:8f:d0:7b:28:91:a5:
bc:c1:81:b6:71:69:b3:2e:1e:e3:b9:bb:36:cc:51:
f8:f1:c6:18:9a:65:d8:66:47:d5:76:6b:a4:db:99:
38:9b:70:6a:1a:2b:dd:7b:c4:2c:92:98:4d:ec:2d:
d4:63:6c:77:e4:9c:49:ea:e6:13:26:8a:27:9b:30:
ad:f6:ec:0f:9a:e7:8f:ac:5e:0b:6d:8b:44:df:b8:
35:ca:3e:4a:38:1e:f9:e4:9d:a3:9d:5a:26:41:cb:
d9:d0:30:d4:3f:d0:ae:23:c7:3c:37:2d:f3:26:02:
16:36:28:56:b3:d6:5a:c7:22:67:2d:42:8d:7e:9f:
79:08:36:36:72:16:73:58:3f:31:cc:d3:cf:70:13:
f0:ee:71:b2:2e:a6:74:15:0b:f7:81:8d:0b:36:78:
65:2d:45:c8:fa:f6:df:76:76:f6:e4:3f:dc:0f:bd:
a1:6d:da:da:38:0d:f1:57:ee:5b:f5:21:6d:95:be:
d4:71:47:83:1e:cb:40:6f:70:2b:eb:81:1c:68:d0:
b9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:59:74:25:2E:39:55:FB:06:C8:2E:29:F7:8E:D7:C3:D0:11:02:E9
X509v3 Authority Key Identifier:
keyid:5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/mll0JS45VfsGyC4p947Xw9ARAuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.216.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8d:8b:87:f0:92:95:db:3b:ff:af:87:13:58:00:91:44:eb:
34:75:45:16:87:f0:f2:ce:93:90:1c:c0:99:07:b3:86:35:bb:
c5:90:4a:62:1d:dd:4a:e3:e5:6d:b4:29:a4:53:fc:a1:8c:98:
93:00:cd:54:ab:38:95:73:41:3e:c4:92:1b:0c:81:9c:f2:c9:
ac:69:07:d8:b2:09:fa:9c:fd:b0:c2:ae:53:86:0b:70:1e:d2:
1f:1d:3d:51:bb:d9:d1:30:2a:42:62:9b:91:13:21:44:13:c3:
b2:75:d6:91:6b:dc:fd:04:b7:f9:91:53:c6:09:cc:1c:03:d0:
bc:25:b3:fd:ad:62:2f:75:47:c3:71:15:c4:db:e7:6b:fa:55:
38:06:0f:20:1b:85:ea:9c:e6:bd:98:78:1a:53:b0:b1:86:85:
c3:44:74:62:cd:0f:99:38:c5:79:6f:70:48:38:d6:6c:ac:49:
45:40:6b:03:73:57:89:14:f4:c8:f5:b7:d3:73:97:45:0f:f3:
75:92:b8:82:67:04:1a:46:36:e6:29:59:94:98:98:15:fc:b5:
44:40:fd:11:23:e0:19:db:06:86:4f:66:9a:f9:41:f2:eb:20:
7b:9b:bd:c9:87:2a:fd:83:60:4b:47:5c:48:82:9b:96:f1:0f:
e9:6c:ea:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:06:20 2026 by rpki-client