Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AEu4BTMHk7-Ln6sxUV0vgSfpihg.roa
File: AEu4BTMHk7-Ln6sxUV0vgSfpihg.roa (raw, json)
Hash identifier: LA1CTS94bb0VvGJZ+YeR+SZ9Hs2/IiTlZooQOGz1lwc=
Subject key identifier: 00:4B:B8:05:33:07:93:BF:8B:9F:AB:31:51:5D:2F:81:27:E9:8A:18
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019DD495F553B6CC227318A570673E5B576A
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AEu4BTMHk7-Ln6sxUV0vgSfpihg.roa
Signing time: Tue 28 Apr 2026 14:54:50 +0000
ROA not before: Tue 28 Apr 2026 14:54:50 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 393559
IP address blocks: 151.241.158.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 18:48:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d4:95:f5:53:b6:cc:22:73:18:a5:70:67:3e:5b:57:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 28 14:54:50 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=004bb805330793bf8b9fab31515d2f8127e98a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:38:39:41:3e:15:9a:02:cb:97:9b:6f:aa:
9d:a2:1d:f7:75:ce:5e:57:0b:59:ea:06:39:a0:78:
df:6c:a3:dc:c5:aa:88:5f:15:d4:42:91:d0:f4:0a:
a0:54:e7:4a:79:01:c1:02:76:7c:09:d2:c9:26:ac:
59:d5:35:31:c7:97:ab:34:c9:be:5a:b8:e3:73:5f:
90:b8:97:e4:71:03:57:27:43:6a:cb:f9:ba:5a:72:
02:81:60:03:bc:68:99:1a:cd:d1:99:4a:06:33:0f:
5d:b1:11:eb:1d:23:30:83:da:f9:f9:99:d6:cc:b7:
15:1f:59:fc:25:15:08:d6:2c:26:4f:75:8d:74:59:
5f:e1:2f:06:c7:44:d0:ec:a1:e8:3f:a2:c4:24:fe:
7c:39:3e:57:d5:0a:af:43:81:c6:9c:57:af:ad:9f:
6b:0f:75:27:39:69:5b:e1:f6:37:f8:63:83:98:9b:
fb:c7:93:af:9c:05:0e:04:7a:aa:68:94:5f:08:21:
c9:c8:3d:57:03:f4:a1:f1:b6:1f:e6:25:93:7d:bc:
cb:ef:37:0d:f6:e2:4a:12:04:5f:ad:e4:2b:b5:00:
10:7a:38:fa:97:34:05:7b:3d:34:41:a0:4c:d3:6a:
e1:36:1f:f1:82:bc:68:8f:15:64:8e:c1:37:17:82:
dc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4B:B8:05:33:07:93:BF:8B:9F:AB:31:51:5D:2F:81:27:E9:8A:18
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AEu4BTMHk7-Ln6sxUV0vgSfpihg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.241.158.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:6d:35:f0:ce:a4:7a:1a:41:d1:8e:f2:d5:c0:d5:92:58:eb:
4b:2b:a5:38:2f:77:c3:80:e3:4a:62:6e:94:37:89:4c:73:49:
56:63:42:6e:49:26:03:da:6c:1e:36:28:a4:d3:42:3f:86:4f:
b8:04:2d:5a:4a:51:ab:fb:9c:5a:64:5e:ad:34:ee:ae:2c:1d:
83:56:7a:81:65:16:02:98:6d:25:03:6d:50:4d:96:8a:ac:ed:
c3:b0:07:a4:d4:f1:c7:ec:af:88:67:63:bb:86:f4:99:80:46:
47:73:2e:10:05:9d:db:ec:50:7d:21:0e:47:4d:55:83:a8:8a:
6f:cf:1d:5c:89:7a:ef:31:52:66:f7:a5:9f:d7:03:5c:2c:c4:
04:16:c7:a8:e3:fc:0d:8a:d5:ba:53:05:ea:67:2f:a5:23:93:
88:fd:a9:f8:ba:fc:fb:94:5c:17:77:d3:f4:bb:a8:cc:db:c5:
54:e9:8d:8c:3c:17:91:f3:62:32:fc:9b:d3:de:04:bf:bb:b6:
f4:00:94:16:36:6a:3b:e2:aa:8a:fb:3a:41:de:d9:7f:79:32:
0a:07:63:77:82:03:52:de:34:ef:cd:f9:6f:f1:4e:54:3a:cc:
e1:20:5f:c9:ae:20:08:5b:ad:1e:47:40:f9:97:9d:db:f3:08:
3f:a4:76:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 02:55:27 2026 by rpki-client