Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/ef3ELX7iaik6XnkIuzN-OXTNzqk.roa
File: ef3ELX7iaik6XnkIuzN-OXTNzqk.roa (raw, json)
Hash identifier: J1z15FpdqDCZCa3eLk16tp1TWfZ3MvqSUt2gCJ4El8Y=
Subject key identifier: 79:FD:C4:2D:7E:E2:6A:29:3A:5E:79:08:BB:33:7E:39:74:CD:CE:A9
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 019DBE38CE54E5093C5939A0A452FA9CAD7E
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/ef3ELX7iaik6XnkIuzN-OXTNzqk.roa
Signing time: Fri 24 Apr 2026 06:41:26 +0000
ROA not before: Fri 24 Apr 2026 06:41:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207388
IP address blocks: 185.115.160.0/24 maxlen: 24
185.115.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 13:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:be:38:ce:54:e5:09:3c:59:39:a0:a4:52:fa:9c:ad:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Apr 24 06:41:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=79fdc42d7ee26a293a5e7908bb337e3974cdcea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e9:85:68:7f:31:f2:4d:27:a0:fe:3a:e9:20:
6e:58:82:38:3e:c4:55:12:19:4b:e4:65:92:96:2e:
56:18:bd:20:bc:d4:fa:d4:75:09:a1:1b:de:67:9f:
b8:9e:73:20:0c:f8:7b:4f:0a:a5:3f:c0:e5:1f:a6:
2c:56:78:e5:d6:7e:38:c4:7e:99:d7:db:ab:6f:e4:
b8:d2:7f:b2:60:ea:5e:62:42:bf:1d:8a:56:c9:91:
a8:12:d8:3f:0b:63:ca:45:d3:da:3c:f1:ff:8e:8e:
63:6d:20:88:53:39:13:8e:f7:61:58:89:ff:f7:02:
ab:03:4c:63:2d:ad:4d:f0:00:b2:c7:6b:2f:f3:55:
ef:e0:31:b7:95:4c:07:ee:43:6a:56:9b:a4:76:0e:
39:ef:36:f3:27:e5:93:ce:a0:a0:47:87:06:cd:38:
8e:f8:0a:1f:30:35:c1:42:9f:77:03:91:14:a3:aa:
ed:71:82:b9:56:f8:07:25:c4:c8:fd:4c:d1:60:a9:
bc:39:42:82:56:fe:06:aa:85:5d:2b:39:69:a0:ef:
38:8a:81:af:7a:d8:6d:db:6e:dc:6f:fd:c9:bf:fa:
22:26:70:8f:59:b9:a2:79:7b:b6:55:46:09:26:8f:
2c:26:ba:cb:c7:13:08:03:a5:7b:b3:5c:e1:fa:82:
76:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FD:C4:2D:7E:E2:6A:29:3A:5E:79:08:BB:33:7E:39:74:CD:CE:A9
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/ef3ELX7iaik6XnkIuzN-OXTNzqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.160.0/24
185.115.163.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:02:76:08:a8:ca:af:1b:0e:3e:87:ad:35:62:67:50:76:a7:
15:ce:bc:65:83:5c:f6:96:7e:b7:04:32:a2:05:af:fa:cb:e1:
ce:02:a5:f2:ae:46:43:b3:fe:56:79:d9:dc:17:e2:42:86:62:
4d:ba:21:b9:03:18:26:59:23:8c:38:60:2c:08:1e:27:00:ef:
05:5c:2e:d4:57:07:3e:9b:73:2d:83:7c:e1:5f:d5:1d:c5:5a:
6f:97:70:b9:19:31:e7:6f:97:e7:62:41:63:8b:71:44:65:4e:
0a:3c:a3:57:0b:7c:41:45:35:45:d6:97:6c:97:f2:a8:59:09:
ab:9a:18:9a:58:53:70:5c:b4:22:35:2d:f4:d6:a0:80:30:5b:
3b:b0:82:59:8a:36:52:da:66:49:33:f2:aa:f1:bf:24:17:33:
1a:2d:c0:82:2e:97:4d:43:00:9a:12:5c:71:f4:f4:c3:98:55:
14:81:60:1f:2d:38:64:b3:0c:66:98:ff:cf:d6:54:db:0c:36:
6d:7e:39:c8:34:77:1c:82:fb:9f:d3:b4:35:c9:e8:eb:91:c1:
8a:43:5c:e7:0b:8b:ba:38:30:2b:8c:19:42:8b:bc:96:dc:d1:
e9:6b:d8:8a:34:c5:26:78:36:01:cc:f1:6b:0e:f1:57:63:91:
e6:e8:4e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 16:41:16 2026 by rpki-client