Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/ejxSY9TKj20nwUenCWY904eeisM.roa
File: ejxSY9TKj20nwUenCWY904eeisM.roa (raw, json)
Hash identifier: nrnnn9DeLLHHt78QR3l33T9y9AiL94VkdF6b7pD3MV0=
Subject key identifier: 7A:3C:52:63:D4:CA:8F:6D:27:C1:47:A7:09:66:3D:D3:87:9E:8A:C3
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 019DE409EE67BE79FDEF553CADB16B4B2FC8
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/ejxSY9TKj20nwUenCWY904eeisM.roa
Signing time: Fri 01 May 2026 14:55:49 +0000
ROA not before: Fri 01 May 2026 14:55:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 202623
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.91.0/24 maxlen: 24
2a06:98c0:1400::/48 maxlen: 48
2a06:98c0:1401::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:360e::/48 maxlen: 48
2a06:98c0:3612::/48 maxlen: 48
2a06:98c0:3616::/48 maxlen: 48
2a06:98c0:3622::/48 maxlen: 48
2a06:98c0:3626::/48 maxlen: 48
2a06:98c0:3627::/48 maxlen: 48
2a06:98c0:362b::/48 maxlen: 48
2a06:98c0:362c::/48 maxlen: 48
2a06:98c0:362d::/48 maxlen: 48
2a06:98c0:362f::/48 maxlen: 48
2a06:98c0:3630::/48 maxlen: 48
2a06:98c0:3631::/48 maxlen: 48
2a06:98c0:3632::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft
rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 May 2026 19:58:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e4:09:ee:67:be:79:fd:ef:55:3c:ad:b1:6b:4b:2f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: May 1 14:55:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7a3c5263d4ca8f6d27c147a709663dd3879e8ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:59:8d:6e:a9:4d:7c:54:33:6c:54:2e:98:eb:
e5:08:cc:4a:1b:0a:29:c7:50:fa:2d:9f:59:f7:99:
bc:2f:7d:ec:be:83:dc:fc:dd:d1:9f:bf:4f:a1:72:
4d:f2:46:cd:f4:19:ee:4c:94:bb:78:de:d1:5b:10:
88:37:9a:ee:d0:1a:e6:27:52:09:32:76:d4:ae:5f:
74:a3:ee:fe:9a:73:fc:26:2d:81:1c:05:39:eb:49:
00:18:e3:e3:af:e9:da:56:13:00:01:01:a4:ba:5f:
1f:79:ca:8e:ef:dc:3a:2e:5e:83:6d:29:0a:97:10:
90:90:32:f5:b5:0f:30:7a:51:90:18:f5:1d:99:00:
fd:2a:84:87:f1:b5:54:1c:40:a6:2b:32:fa:e7:1e:
5c:98:92:0c:c1:6a:4a:87:ae:6d:6f:5f:4e:5c:7d:
83:15:53:63:75:64:6c:85:f6:a6:3b:40:63:77:1c:
9f:87:33:6a:f2:f6:c3:b8:ab:51:39:3f:e2:72:f2:
ff:27:aa:e4:e3:7c:2e:83:5c:5a:d4:08:dd:90:79:
b8:8a:c7:c7:82:2c:4d:74:45:9b:95:35:d0:91:f2:
1c:6c:10:bb:03:6c:6d:22:a8:eb:7b:ca:f9:03:13:
68:1a:61:d1:b5:b3:32:c1:c5:80:8f:86:ef:2e:d8:
66:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3C:52:63:D4:CA:8F:6D:27:C1:47:A7:09:66:3D:D3:87:9E:8A:C3
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/ejxSY9TKj20nwUenCWY904eeisM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0/24
141.101.91.0/24
IPv6:
2a06:98c0:1400::/47
2a06:98c0:3602::-2a06:98c0:3607:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360e::/48
2a06:98c0:3612::/48
2a06:98c0:3616::/48
2a06:98c0:3622::/48
2a06:98c0:3626::/47
2a06:98c0:362b::-2a06:98c0:362d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:362f::-2a06:98c0:3632:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4a:5d:50:11:1c:f9:cd:a4:5f:6d:98:4f:e2:da:f2:b3:90:2c:
05:07:95:63:ae:bd:c4:45:c1:ac:29:06:52:31:e4:bf:9c:b8:
2d:d4:60:fb:b4:b1:93:57:b8:be:83:2b:3a:0a:a8:55:c7:44:
84:a4:1a:d3:1b:76:e6:b5:5b:e8:40:72:6e:98:91:93:fc:e9:
c7:cc:2b:50:5c:29:0b:45:12:3c:01:81:0a:3a:1c:48:84:e3:
2f:c2:3d:77:3c:b9:2b:91:d1:76:4f:73:53:45:ff:d4:bc:74:
7a:73:98:63:43:4c:86:93:1c:1c:b1:d1:3f:41:eb:42:ce:91:
b0:4e:4a:e1:81:16:f0:89:4f:75:39:73:bd:12:4c:3a:84:f8:
fa:df:ad:1d:1c:e1:08:df:f8:96:9a:18:1d:38:fe:4e:13:15:
71:96:1b:df:63:be:36:fb:dc:9f:9b:1f:2c:10:1a:83:e0:08:
53:ce:15:bd:41:6b:09:11:6b:56:c8:8d:ff:8d:00:c6:f6:42:
3c:e0:0f:b8:6a:06:c0:81:17:ac:00:0c:ce:a5:7e:53:23:40:
80:37:b5:33:12:a7:94:8b:c4:68:7c:bc:c6:61:c5:81:4f:95:
61:41:a2:a4:f1:1b:f0:52:05:1d:dd:b5:e2:be:a9:58:ea:61:
08:4e:8f:09
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAZ3kCe5nvnn971U8rbFrSy/IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZDViZmFkNDVkN2M2NWE2ZTM0MzAyODUwOWZkMTg5MmU5
N2I5ZDAwHhcNMjYwNTAxMTQ1NTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTNjNTI2M2Q0Y2E4ZjZkMjdjMTQ3YTcwOTY2M2RkMzg3OWU4YWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVmNbqlNfFQzbFQumOvlCMxKGwop
x1D6LZ9Z95m8L33svoPc/N3Rn79PoXJN8kbN9BnuTJS7eN7RWxCIN5ru0BrmJ1IJ
MnbUrl90o+7+mnP8Ji2BHAU560kAGOPjr+naVhMAAQGkul8fecqO79w6Ll6DbSkK
lxCQkDL1tQ8welGQGPUdmQD9KoSH8bVUHECmKzL65x5cmJIMwWpKh65tb19OXH2D
FVNjdWRshfamO0BjdxyfhzNq8vbDuKtROT/icvL/J6rk43wug1xa1AjdkHm4isfH
gixNdEWblTXQkfIcbBC7A2xtIqjre8r5AxNoGmHRtbMywcWAj4bvLthmUQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFHo8UmPUyo9tJ8FHpwlmPdOHnorDMB8GA1UdIwQY
MBaAFJnVv61F18ZabjQwKFCf0Ykul7nQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQt
NzU1MTgwOWNiNzMxLzEvZWp4U1k5VEtqMjBud1VlbkNXWTkwNGVlaXNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQtNzU1MTgwOWNiNzMx
LzEvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjASBAIAATAMAwQAjWVA
AwQAjWVbMHgEAgACMHIDBwEqBpjAFAAwEgMHASoGmMA2AgMHAyoGmMA2AAMHACoG
mMA2DgMHACoGmMA2EgMHACoGmMA2FgMHACoGmMA2IgMHASoGmMA2JjASAwcAKgaY
wDYrAwcBKgaYwDYsMBIDBwAqBpjANi8DBwAqBpjANjIwDQYJKoZIhvcNAQELBQAD
ggEBAEpdUBEc+c2kX22YT+La8rOQLAUHlWOuvcRFwawpBlIx5L+cuC3UYPu0sZNX
uL6DKzoKqFXHRISkGtMbdua1W+hAcm6YkZP86cfMK1BcKQtFEjwBgQo6HEiE4y/C
PXc8uSuR0XZPc1NF/9S8dHpzmGNDTIaTHByx0T9B60LOkbBOSuGBFvCJT3U5c70S
TDqE+PrfrR0c4Qjf+JaaGB04/k4TFXGWG99jvjb73J+bHywQGoPgCFPOFb1BawkR
a1bIjf+NAMb2QjzgD7hqBsCBF6wADM6lflMjQIA3tTMSp5SLxGh8vMZhxYFPlWFB
oqTxG/BSBR3dteK+qVjqYQhOjwk=
-----END CERTIFICATE-----
Generated at Sat May 9 06:09:24 2026 by rpki-client