Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7eBit4iokq-e-PICMVhI6Sfo6qk.roa
File: 7eBit4iokq-e-PICMVhI6Sfo6qk.roa (raw, json)
Hash identifier: MEvB2+rgYCTa2+p7lJXLUFlor3rRyH9QqQbATcapqaE=
Subject key identifier: ED:E0:62:B7:88:A8:92:AF:9E:F8:F2:02:31:58:48:E9:27:E8:EA:A9
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E3FE0804B058B9DA49A54F1FDA9831C92
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7eBit4iokq-e-PICMVhI6Sfo6qk.roa
Signing time: Tue 19 May 2026 10:55:38 +0000
ROA not before: Tue 19 May 2026 10:55:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 136557
IP address blocks: 151.242.170.0/24 maxlen: 24
151.243.253.0/24 maxlen: 24
151.246.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:e0:80:4b:05:8b:9d:a4:9a:54:f1:fd:a9:83:1c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 19 10:55:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ede062b788a892af9ef8f202315848e927e8eaa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:47:f7:db:a3:be:e8:e7:b0:83:fa:ab:ac:
8e:a9:2b:52:17:82:4a:81:64:3c:4e:9e:e6:ec:f6:
6f:6b:ef:f2:52:cd:ae:c8:32:62:ea:c4:a0:51:00:
6e:85:0c:e9:1b:66:66:69:69:e0:a7:2f:27:32:43:
69:f8:46:78:41:cf:2a:17:a8:0d:f7:65:f4:00:e8:
96:50:e7:e5:ce:45:d5:a1:84:9d:63:3c:c8:5a:95:
da:f2:b1:46:ca:00:31:de:5e:e9:14:9d:b7:fc:0c:
f2:02:1b:13:03:11:2d:5f:c4:95:27:51:2e:42:57:
2a:e6:fc:b3:d5:4d:4e:58:69:17:52:58:ed:7a:ce:
f0:0d:6f:ae:71:fb:33:8f:c2:a5:36:fa:9f:ce:89:
6e:4a:4c:01:8e:d6:a8:95:bc:69:df:2a:a7:70:60:
d9:68:d1:30:3c:0b:85:c1:63:87:91:96:5d:2a:1f:
b2:80:54:1e:87:0c:eb:09:09:d7:7a:55:2e:87:e0:
bc:4c:f1:ba:7c:e7:2d:1b:6b:65:78:46:a3:3a:bf:
39:ee:ff:62:01:4b:48:36:db:c0:c5:43:58:61:4f:
62:30:36:b4:81:89:c0:b8:97:37:93:2b:f1:db:1a:
9b:15:71:67:2b:db:9f:2c:ea:1a:ef:09:6c:dc:ba:
61:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E0:62:B7:88:A8:92:AF:9E:F8:F2:02:31:58:48:E9:27:E8:EA:A9
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/7eBit4iokq-e-PICMVhI6Sfo6qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.170.0/24
151.243.253.0/24
151.246.168.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:5d:31:d6:6b:ab:25:38:ad:f5:e6:89:16:9f:4e:be:9d:95:
72:22:fb:6e:b7:7c:8a:fb:77:0d:85:de:8a:54:11:88:6a:ff:
f3:0b:b0:73:8e:71:90:e7:9e:a4:39:27:2f:4a:39:cd:09:13:
e4:16:c5:63:e8:c1:14:91:a3:25:07:ee:4a:02:c1:d0:26:59:
b3:ad:d7:4a:81:4c:91:0e:92:9d:87:b6:e7:57:0c:2f:cb:7c:
9b:68:a9:0e:67:da:81:e1:69:d9:d9:3d:ab:75:93:84:d9:ba:
54:3b:29:87:b4:9e:24:dd:e1:cf:67:0d:63:8b:df:1c:6e:c2:
69:cd:3e:61:76:40:49:25:73:3f:93:41:b4:c8:e0:ce:8b:86:
d8:4d:04:a7:0c:96:9f:22:3b:9f:02:df:01:61:41:76:b9:8b:
83:3d:ca:b0:28:e8:bf:40:7b:f8:6e:44:65:d5:ef:d9:ee:22:
bd:05:45:a8:c1:f2:78:41:13:fa:45:e7:f1:69:6d:b6:f7:a3:
18:5e:01:4a:a4:bf:cd:c7:dc:cd:29:20:47:a5:e6:0a:fc:72:
29:89:02:98:29:e2:e2:05:4c:7a:d7:d0:e8:59:e5:7e:46:f0:
64:2c:84:6c:0b:df:9d:09:4f:69:a2:d0:b2:00:d6:46:b3:2b:
49:ca:07:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:48:17 2026 by rpki-client