Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUDlsuIuPF0AI0eKv3EPuFYqrxg.roa
File: GUDlsuIuPF0AI0eKv3EPuFYqrxg.roa (raw, json)
Hash identifier: IEMlrTNqFjsHisRkWAiDsZzF+whOTWTevFxxDLLxBlw=
Subject key identifier: 19:40:E5:B2:E2:2E:3C:5D:00:23:47:8A:BF:71:0F:B8:56:2A:AF:18
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E93DD44B081F73664A882E43F81E2104C
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUDlsuIuPF0AI0eKv3EPuFYqrxg.roa
Signing time: Thu 04 Jun 2026 18:20:12 +0000
ROA not before: Thu 04 Jun 2026 18:20:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199925
IP address blocks: 151.244.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:93:dd:44:b0:81:f7:36:64:a8:82:e4:3f:81:e2:10:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 4 18:20:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1940e5b2e22e3c5d0023478abf710fb8562aaf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:d4:69:7a:19:e4:ac:ec:33:e7:d8:9b:f1:
54:cb:6d:d9:bd:ac:f0:fa:db:7c:1a:ac:fc:92:ab:
e1:14:46:d9:84:94:e1:04:1c:3f:82:07:29:95:cc:
3c:15:97:1d:e6:24:03:12:9b:35:80:ef:09:6a:8c:
c7:68:ba:1d:24:49:fe:97:04:3a:59:82:68:c1:f9:
fb:47:1e:7b:3f:bd:b9:01:ba:36:66:03:f2:90:68:
0f:c1:6f:e4:5b:f7:25:9d:af:18:fa:37:5b:aa:0f:
06:db:e5:5e:e8:0b:2f:b9:a1:e2:68:6b:0f:b3:30:
50:28:39:39:e0:40:f3:26:01:f3:07:a8:3a:44:d7:
26:59:6d:fe:33:79:83:dd:ef:66:88:a4:89:5a:4d:
b8:35:72:94:3d:58:c4:12:6b:a1:dc:8c:98:08:5e:
52:62:f5:f6:d5:d3:0b:a0:73:40:1f:15:2f:ec:32:
95:ce:68:96:70:37:65:b2:c6:22:82:52:90:c6:f7:
61:c5:9e:9a:93:91:ab:14:54:2e:fb:02:5c:62:d1:
f3:bf:8f:56:cf:cb:cf:c0:09:04:2d:60:60:05:2d:
85:83:8a:26:03:0c:fd:ca:6f:1e:4d:e8:fc:b2:c1:
5e:8f:a3:f9:10:89:ff:a0:77:91:69:68:04:cc:23:
e6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:40:E5:B2:E2:2E:3C:5D:00:23:47:8A:BF:71:0F:B8:56:2A:AF:18
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUDlsuIuPF0AI0eKv3EPuFYqrxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
30:a1:fd:95:cc:5a:44:15:98:5c:63:d7:d3:81:99:92:82:dd:
4c:99:35:d6:ce:f2:41:f8:8b:09:d0:2f:bf:ce:76:29:57:29:
c0:75:7f:ad:a3:8e:63:78:9a:8b:2b:4c:0a:8c:30:22:fc:06:
de:9a:90:60:5c:1f:fd:39:27:ab:bc:8b:10:40:49:bf:9b:cc:
c4:a0:90:53:d8:81:49:8d:ab:29:18:6a:c3:33:6a:44:4e:a0:
3e:f8:fd:20:7a:82:f1:ef:f8:31:09:1d:79:2f:ce:13:78:11:
0e:d9:7a:ad:b4:e0:e7:0f:96:fb:64:5b:8a:1c:e9:b0:ff:1a:
c1:34:5f:fb:43:17:b9:7a:e5:b7:2b:12:94:17:0f:10:d0:15:
e7:0e:07:1c:28:35:d0:45:49:40:44:12:a1:1c:45:78:c2:ca:
5a:22:e2:1f:83:60:11:57:42:4e:95:42:42:97:85:79:10:72:
78:07:25:84:33:0a:d3:a8:05:67:3d:1f:8f:11:7b:43:94:2a:
0e:ae:27:f2:4a:9e:2d:5f:8a:3d:68:d7:53:9a:b5:db:95:b4:
1f:c8:bd:ff:fb:40:d8:5e:27:80:8c:c2:f1:a5:0f:37:6f:22:
6e:22:a3:1f:03:43:8a:d9:97:8c:85:b8:31:eb:7f:27:87:35:
e9:7d:8a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:32:35 2026 by rpki-client