Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/eCPQzIT26q6FVi6fqYWB_iuyTjM.roa
File: eCPQzIT26q6FVi6fqYWB_iuyTjM.roa (raw, json)
Hash identifier: gdJttQaYuZe8bgKzT2f7X07BOiM7G5ZhZ67HNC3G0Zg=
Subject key identifier: 78:23:D0:CC:84:F6:EA:AE:85:56:2E:9F:A9:85:81:FE:2B:B2:4E:33
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019D691C18A741D02747F0C2F6510775273F
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/eCPQzIT26q6FVi6fqYWB_iuyTjM.roa
Signing time: Tue 07 Apr 2026 18:02:22 +0000
ROA not before: Tue 07 Apr 2026 18:02:22 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 40352
IP address blocks: 151.242.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Apr 2026 17:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:69:1c:18:a7:41:d0:27:47:f0:c2:f6:51:07:75:27:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 7 18:02:22 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7823d0cc84f6eaae85562e9fa98581fe2bb24e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:93:ee:20:0c:24:37:57:2f:b3:20:15:90:43:
48:0b:23:3a:f1:86:b8:78:9a:4c:d5:9f:35:bd:70:
05:8b:25:0b:e2:98:eb:2b:39:08:7b:d3:7c:d7:fc:
09:4a:f3:f3:67:46:c5:4e:ff:af:4f:b4:3b:30:96:
33:d8:18:53:28:c7:28:37:f9:37:75:54:b2:75:d3:
63:f0:99:42:c3:42:3a:32:b7:87:02:30:e6:b2:da:
15:34:51:6c:4a:99:2c:d1:e1:9b:06:f8:b1:3f:b9:
a3:94:e2:84:8e:fe:ea:79:4e:96:1f:e0:bb:bf:a2:
a5:1a:c1:4f:bd:ce:27:d7:23:c3:d1:47:f7:2b:51:
f5:27:a6:76:6e:3d:67:ce:00:2a:d7:b8:63:e9:44:
1e:e9:e2:ea:d3:2f:1f:f9:6f:d8:28:1f:7d:18:04:
03:f5:e6:fb:1f:67:25:7b:90:dc:1a:1d:66:b9:81:
07:77:5f:51:02:b2:dd:72:63:bc:90:c1:5d:2e:38:
17:e6:3c:61:3c:f7:13:8a:60:45:e2:63:21:ef:fa:
24:7f:ea:5f:94:12:69:f4:b1:9f:08:fe:43:dd:52:
9c:eb:88:86:e8:6b:f0:84:e4:71:f5:9f:10:51:d4:
39:db:c9:c0:3e:30:33:65:84:34:a3:15:89:70:6b:
c4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:23:D0:CC:84:F6:EA:AE:85:56:2E:9F:A9:85:81:FE:2B:B2:4E:33
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/eCPQzIT26q6FVi6fqYWB_iuyTjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:06:19:4a:12:d5:15:89:01:82:9e:af:3e:84:cb:f5:9d:08:
7e:22:dd:da:14:8f:98:ad:81:9a:d4:f5:e0:fa:df:87:6a:8a:
18:5d:fa:4a:66:6b:a9:f8:75:9a:dd:e5:3c:e1:73:8b:f2:6c:
80:65:87:f9:94:4b:ca:09:9d:35:e4:f9:5b:e1:26:7b:ab:12:
e0:77:c4:a3:9e:1c:17:bf:72:93:7e:38:5a:52:4d:4d:5f:c1:
85:57:d5:8f:6c:0d:f8:38:82:2e:42:64:94:78:db:a1:b9:b6:
ac:73:40:36:99:1e:50:95:55:0c:c1:b5:79:a8:35:a8:9f:ef:
5f:2c:b7:0f:2c:40:e4:26:f2:63:a1:33:f0:94:05:02:78:15:
59:d4:a1:26:66:be:c4:ec:88:c3:a7:51:34:ba:f9:9e:a9:9a:
a6:6f:4d:b8:16:76:98:b8:f4:f8:03:b1:d1:be:84:d0:55:b0:
a5:44:be:08:01:9e:89:c0:cd:18:cc:7f:57:2e:ee:8b:8c:e1:
15:2e:aa:05:2c:67:83:fe:ae:54:99:4b:b6:28:fc:44:af:8e:
47:0b:78:8f:9e:1b:61:da:68:47:51:7e:25:bf:f1:d1:b4:07:
16:40:ac:b5:5a:7e:5b:74:ac:5c:2a:02:98:f3:75:6e:95:ef:
00:10:15:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 11 01:28:59 2026 by rpki-client