
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/hZFo8bORABxrVTA2g0Rgs0Np94Y.roa
File: hZFo8bORABxrVTA2g0Rgs0Np94Y.roa (raw, json)
Hash identifier: 4AnoEQ7t7toUJeq4TT297IXujkquUWFQ3NJQhOMypW4=
Subject key identifier: 85:91:68:F1:B3:91:00:1C:6B:55:30:36:83:44:60:B3:43:69:F7:86
Certificate issuer: /CN=be5b8a2b106d334b0c6c61e177aa62f44fe0e3b6
Certificate serial: 019F23691DF399F739C306D9E3A7AEB90D34
Authority key identifier: BE:5B:8A:2B:10:6D:33:4B:0C:6C:61:E1:77:AA:62:F4:4F:E0:E3:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vluKKxBtM0sMbGHhd6pi9E_g47Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/hZFo8bORABxrVTA2g0Rgs0Np94Y.roa
Signing time: Thu 02 Jul 2026 15:18:39 +0000
ROA not before: Thu 02 Jul 2026 15:18:39 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 399486
IP address blocks: 82.152.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vluKKxBtM0sMbGHhd6pi9E_g47Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vluKKxBtM0sMbGHhd6pi9E_g47Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/vluKKxBtM0sMbGHhd6pi9E_g47Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Jul 2026 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:23:69:1d:f3:99:f7:39:c3:06:d9:e3:a7:ae:b9:0d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5b8a2b106d334b0c6c61e177aa62f44fe0e3b6
Validity
Not Before: Jul 2 15:18:39 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=859168f1b391001c6b553036834460b34369f786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:2d:26:3c:92:ef:3c:c3:f0:91:02:33:14:
10:69:25:bf:79:f7:c7:f3:77:05:08:e2:84:7d:1f:
cf:9d:96:ac:0c:93:2c:54:5a:cd:b6:31:26:06:6e:
6a:bb:51:15:d2:10:66:88:e8:77:7f:75:39:f8:41:
82:86:09:56:7a:bb:ab:52:af:b8:39:39:f7:ef:54:
f8:45:9c:40:6f:a5:ee:4c:dc:af:34:b0:d3:94:39:
e2:71:34:40:a6:e3:ba:b1:a7:d0:1c:fb:6c:68:2d:
28:ea:09:6d:39:bb:39:bc:9d:e2:82:d0:17:d1:86:
b4:64:37:2f:4d:39:17:8a:fe:88:30:71:25:0a:f9:
e5:4c:61:a8:3b:f9:ce:65:aa:04:05:ec:10:8f:d8:
1c:d1:48:fc:21:8f:5c:e0:50:84:25:2d:20:fe:fd:
37:48:ff:ab:eb:84:55:c4:7d:97:d8:4c:77:0f:e4:
c2:93:b1:90:46:9d:b0:1e:14:e2:08:61:41:68:50:
4b:84:20:d5:b0:b3:ce:7c:28:27:6e:0c:4e:b4:89:
16:a9:71:2a:df:a8:f5:c5:6e:5d:44:f5:d3:93:c4:
69:b8:76:3e:fd:b9:dd:ca:00:58:ed:1b:79:62:6b:
86:4b:51:4e:a6:b8:12:07:d6:f4:6d:af:66:bd:a0:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:91:68:F1:B3:91:00:1C:6B:55:30:36:83:44:60:B3:43:69:F7:86
X509v3 Authority Key Identifier:
keyid:BE:5B:8A:2B:10:6D:33:4B:0C:6C:61:E1:77:AA:62:F4:4F:E0:E3:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vluKKxBtM0sMbGHhd6pi9E_g47Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/hZFo8bORABxrVTA2g0Rgs0Np94Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vluKKxBtM0sMbGHhd6pi9E_g47Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.110.0/24
Signature Algorithm: sha256WithRSAEncryption
32:66:8f:33:a7:c3:96:62:0b:7f:b6:f8:c0:14:45:4b:47:73:
99:8f:a7:f9:2f:2d:81:ba:57:98:d5:d7:63:8f:eb:ab:55:66:
fc:7a:44:75:30:01:f3:85:e4:ad:c0:86:8d:fd:00:93:34:82:
7b:25:1a:5b:5f:5e:4b:5e:d1:ee:f0:73:ac:e3:8c:29:3f:e3:
38:1d:ad:b8:96:7d:d9:b6:d1:9f:a6:33:d1:b0:e1:48:6e:ac:
b4:f7:5e:5f:cb:f7:71:06:ae:21:98:f4:9e:06:39:d5:b6:81:
42:97:58:97:56:24:11:80:d6:2e:a8:64:9d:4b:f7:8f:5a:58:
11:f3:6f:bc:68:db:87:83:ca:0f:7f:d5:d1:c4:09:22:26:5a:
43:56:2d:91:b6:ef:a7:22:ba:e4:11:4b:c3:a3:59:56:1d:d0:
ce:de:7e:d6:e8:7b:a5:52:30:56:bb:ce:05:38:e1:7e:ce:25:
1e:78:5a:b0:ad:2a:d3:b2:83:49:91:6b:e4:c9:d5:6b:6c:84:
e7:47:10:0b:5e:1c:ba:66:38:8e:dd:07:29:a0:15:5f:c2:49:
0f:12:90:04:ac:22:5c:d6:14:6d:d3:ee:80:7d:fe:c9:eb:5c:
f1:4c:7b:57:ab:57:66:ce:86:ac:71:3c:0b:a1:f4:f4:ea:33:
96:9c:b4:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 18:19:41 2026 by rpki-client