Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ihrJ6kMk5KjlA2aFZBVBPJ_p5jw.roa
File: ihrJ6kMk5KjlA2aFZBVBPJ_p5jw.roa (raw, json)
Hash identifier: VBmMVOAKRpVG4b2ZSVSqXIqn2aKrkNHIiVgCvO5e0pQ=
Subject key identifier: 8A:1A:C9:EA:43:24:E4:A8:E5:03:66:85:64:15:41:3C:9F:E9:E6:3C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E26D07CFDFDF71B9BC781E87DDA83A6EB
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ihrJ6kMk5KjlA2aFZBVBPJ_p5jw.roa
Signing time: Thu 14 May 2026 14:07:38 +0000
ROA not before: Thu 14 May 2026 14:07:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208905
IP address blocks: 151.245.72.0/24 maxlen: 24
151.247.195.0/24 maxlen: 24
151.247.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:26:d0:7c:fd:fd:f7:1b:9b:c7:81:e8:7d:da:83:a6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 14 14:07:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8a1ac9ea4324e4a8e50366856415413c9fe9e63c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0e:8b:b8:11:b4:8d:c7:5f:72:dc:c4:ff:60:
48:92:81:10:b9:f4:d0:d8:eb:68:14:f7:37:8f:f8:
ae:5e:ef:c2:54:4b:ec:8b:da:6a:3c:99:91:db:83:
c9:a9:3b:b5:70:29:54:e7:06:fe:d7:b5:2f:82:0f:
83:ce:46:06:3b:02:2d:a8:3d:c2:6f:9b:d0:09:7d:
02:40:4b:ba:a4:90:29:82:fd:7b:8e:63:c0:f0:ad:
e1:1d:1a:59:13:05:22:b0:54:7e:2e:b2:f8:71:ab:
d9:ae:13:a3:55:7e:75:90:83:e9:7d:49:d7:ec:6c:
c0:32:8a:c9:96:56:c5:1a:5b:34:b2:7a:7e:fa:24:
d1:3c:d1:09:52:3d:e7:b3:50:9b:b8:13:7f:1a:ff:
41:92:3b:47:19:15:3b:48:79:3f:49:56:74:ce:a9:
c4:1e:d5:b2:22:d0:d7:cd:25:bf:e6:9b:52:0c:2c:
4d:78:01:51:cc:ac:5f:f0:28:50:71:72:29:ec:9e:
e4:23:cf:48:55:a4:11:84:45:7a:52:27:84:e5:f3:
a9:81:e7:94:b2:d1:68:92:03:79:d0:ee:e3:95:b2:
82:65:ee:2b:43:b2:d2:da:13:20:33:37:0c:67:59:
90:15:a7:d2:85:33:27:26:87:d8:2f:49:88:0d:85:
bd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1A:C9:EA:43:24:E4:A8:E5:03:66:85:64:15:41:3C:9F:E9:E6:3C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ihrJ6kMk5KjlA2aFZBVBPJ_p5jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.245.72.0/24
151.247.195.0/24
151.247.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3f:be:99:06:28:f1:64:8d:8f:23:17:b9:5d:fe:63:c4:e5:
34:af:1b:53:2b:9d:96:27:7e:fc:4b:7f:42:63:86:65:78:d3:
35:e4:8e:64:08:8e:91:47:a1:97:90:3e:af:87:d8:f8:64:a4:
73:04:e4:ce:85:cc:34:f8:86:31:21:87:8f:9b:16:d2:9d:84:
b6:ee:bc:a1:96:bd:ac:06:45:10:fb:89:e7:7a:77:cb:e8:f6:
1f:29:29:57:84:5e:25:8f:ea:ee:9b:ac:53:b0:24:f4:39:28:
14:97:6c:81:cb:2b:37:92:e2:e1:68:c2:41:40:ff:ba:5c:17:
82:6d:b5:f7:88:af:ed:08:fc:fa:b9:5e:81:87:28:ad:77:63:
eb:73:dc:c2:88:5d:e1:bc:f0:f0:86:fc:df:2d:f0:70:0e:07:
2c:c9:50:cf:3e:b1:3a:08:a8:e8:9a:0a:61:19:24:29:73:dd:
c4:56:c2:ca:4a:66:cf:1a:de:5c:5d:25:43:3f:e7:a8:f2:b5:
6d:80:2a:8c:91:ca:04:8d:d6:59:24:6c:30:b4:e3:47:8d:ae:
d3:d4:74:78:92:f5:12:4c:c2:a0:de:ed:7e:90:f6:8e:71:17:
16:75:81:34:98:63:53:91:d2:2f:a4:0e:ec:4d:be:79:df:a6:
27:6a:e5:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:20:25 2026 by rpki-client