Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/6ylYtYjMhdi7Jh023ydSVK05NgE.roa
File: 6ylYtYjMhdi7Jh023ydSVK05NgE.roa (raw, json)
Hash identifier: 0racxXFBf54MHASE/eJaBsxse2XKmRyOkQKxCSB6yak=
Subject key identifier: EB:29:58:B5:88:CC:85:D8:BB:26:1D:36:DF:27:52:54:AD:39:36:01
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E6990ABCDB5FF1A91C0ED5A3E981267E0
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/6ylYtYjMhdi7Jh023ydSVK05NgE.roa
Signing time: Wed 27 May 2026 13:12:29 +0000
ROA not before: Wed 27 May 2026 13:12:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212890
IP address blocks: 37.202.195.0/24 maxlen: 24
151.242.123.0/24 maxlen: 24
151.245.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:69:90:ab:cd:b5:ff:1a:91:c0:ed:5a:3e:98:12:67:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 27 13:12:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eb2958b588cc85d8bb261d36df275254ad393601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:0a:32:c9:3e:ba:96:25:07:ff:5d:8a:d8:
78:d2:ea:6a:aa:d6:3e:cb:28:a8:c4:7f:3f:f1:cf:
f6:36:5a:b1:0a:cc:93:f1:d6:61:b7:e6:3e:67:06:
9e:2d:5c:83:01:c2:98:e1:f3:d8:f6:b5:87:41:d0:
46:62:67:23:d2:c9:73:cb:5d:e7:4b:6d:8c:3a:4b:
37:d3:59:18:25:49:09:1f:c4:68:da:5d:d4:93:40:
ba:49:d9:36:a6:6d:d4:08:78:f9:9b:67:1d:b3:91:
1b:37:88:d3:4a:61:16:ad:0e:79:e0:8b:3e:a5:57:
4c:4d:35:64:f2:88:25:2e:3f:90:77:f7:71:24:fe:
9b:dc:c5:a4:9b:2f:6d:5b:6a:f7:29:9c:a0:a6:0a:
91:50:a3:8d:41:6f:b1:18:90:80:46:a6:9d:6f:c2:
c0:e7:50:65:1f:0c:83:b3:5e:87:0d:68:8d:b4:f7:
e5:5e:dd:12:ea:68:1d:a2:4e:e0:b6:c3:44:1f:25:
ec:09:93:6c:a8:23:c3:bb:36:98:9f:91:62:2c:a2:
3b:d8:dc:37:8f:30:d6:25:13:bc:a2:ad:5d:4f:e8:
73:c6:a5:0c:91:65:31:83:ea:bf:8d:db:23:4a:98:
a8:a6:b8:99:5f:e9:0e:82:ec:69:88:8f:41:87:80:
bc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:29:58:B5:88:CC:85:D8:BB:26:1D:36:DF:27:52:54:AD:39:36:01
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/6ylYtYjMhdi7Jh023ydSVK05NgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.195.0/24
151.242.123.0/24
151.245.20.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:71:3b:50:95:e7:3e:7e:f1:e0:5c:c4:0e:6d:1a:61:e5:c0:
f8:de:06:56:3d:a7:93:af:6b:1d:43:2e:10:46:8e:f9:7a:2d:
33:54:fc:e6:69:53:07:e1:43:4d:88:8f:6d:4a:6c:37:bd:5d:
40:a7:f6:8c:bb:18:83:ee:0e:23:af:75:cc:d8:da:e7:a2:0b:
aa:a0:4a:ed:bc:ca:f5:c9:1b:ad:be:c6:5c:6a:1a:8f:79:2d:
f2:56:eb:29:19:2e:1a:98:81:4e:1a:e0:aa:d3:67:66:2b:aa:
43:a4:2d:e1:0d:27:fb:91:a4:ec:82:57:e5:93:0c:1a:4d:aa:
21:96:4a:d8:b6:63:d2:d5:74:97:1f:1f:6b:5c:37:0a:24:1f:
82:d6:48:64:df:1b:b3:dc:cb:3e:4c:8f:a8:aa:bd:9a:ec:92:
aa:de:6e:06:a1:74:a4:69:fc:0d:e2:83:de:65:31:ad:78:53:
8b:5e:47:d7:b2:46:04:cb:f2:64:1b:c3:17:0f:71:f5:a0:e9:
0a:3b:3c:71:5a:4e:c8:dd:c4:f8:0c:3e:d4:c1:35:c7:dc:ac:
d6:1b:d5:e8:86:6c:d7:a2:2c:b0:79:67:2e:55:69:01:ee:54:
5f:74:41:b4:07:d8:53:d1:97:49:34:11:68:50:ac:6d:59:1f:
39:3c:98:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:02:08 2026 by rpki-client