Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/N5RNMQSuWGggziV-EHnoOW3fJ0Q.roa
File: N5RNMQSuWGggziV-EHnoOW3fJ0Q.roa (raw, json)
Hash identifier: GKwEDdHgPehq6w1A0tTWjcCpEOHQv9KNuXCiv3hL/zE=
Subject key identifier: 37:94:4D:31:04:AE:58:68:20:CE:25:7E:10:79:E8:39:6D:DF:27:44
Certificate issuer: /CN=e91ef22adaa16d53dcf637c569f4131f26215b91
Certificate serial: 019E8F38E174DF00759BCB00CE7F6E11E69B
Authority key identifier: E9:1E:F2:2A:DA:A1:6D:53:DC:F6:37:C5:69:F4:13:1F:26:21:5B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/N5RNMQSuWGggziV-EHnoOW3fJ0Q.roa
Signing time: Wed 03 Jun 2026 20:42:10 +0000
ROA not before: Wed 03 Jun 2026 20:42:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 205007
IP address blocks: 130.49.160.0/22 maxlen: 24
2a09:31c0:babe::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8f:38:e1:74:df:00:75:9b:cb:00:ce:7f:6e:11:e6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e91ef22adaa16d53dcf637c569f4131f26215b91
Validity
Not Before: Jun 3 20:42:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=37944d3104ae586820ce257e1079e8396ddf2744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:38:a7:0d:30:01:f4:db:1c:a4:2f:16:77:4a:
9c:01:07:1a:0f:e7:2e:22:0f:9e:fb:82:05:9d:b9:
cc:87:9a:3e:a8:69:14:52:39:ee:ac:79:0e:9e:9b:
8b:e7:ec:27:b2:0d:3e:84:84:ee:51:65:9c:8c:0a:
0f:b4:c8:18:9e:16:e5:39:08:99:10:19:29:6b:e1:
fc:17:fe:a4:0c:1c:c5:7a:c9:1e:03:06:11:81:d4:
28:a5:da:4f:75:72:89:4b:48:c3:b6:6d:91:79:b0:
e1:02:5c:7c:45:45:3d:12:71:84:e8:6e:88:5f:df:
b5:3f:13:b2:5c:7e:72:ab:0c:5d:28:f3:f8:ab:86:
d2:9f:85:7e:2f:8a:e8:8f:d6:53:81:02:cd:c4:bb:
3b:5e:30:1b:38:65:66:db:d3:03:aa:b3:cf:36:83:
83:4b:16:27:2c:b9:1d:aa:4e:08:06:a9:18:38:10:
f5:09:54:6c:be:54:78:15:cf:de:3e:09:86:29:a8:
8d:8a:78:5b:63:a8:23:a2:3d:1c:03:78:34:99:d2:
6c:44:99:40:ab:03:35:97:a0:c6:0e:83:0e:0d:4a:
2d:d7:61:df:d4:33:94:a0:6a:28:9f:09:55:fe:bc:
50:43:a9:95:95:10:b9:3a:82:68:04:78:48:a8:6c:
51:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:94:4D:31:04:AE:58:68:20:CE:25:7E:10:79:E8:39:6D:DF:27:44
X509v3 Authority Key Identifier:
keyid:E9:1E:F2:2A:DA:A1:6D:53:DC:F6:37:C5:69:F4:13:1F:26:21:5B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/N5RNMQSuWGggziV-EHnoOW3fJ0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.49.160.0/22
IPv6:
2a09:31c0:babe::/48
Signature Algorithm: sha256WithRSAEncryption
95:21:46:82:f7:86:7f:a6:97:6a:f0:5a:98:06:93:77:6c:e8:
ff:dd:b2:8c:57:f6:24:40:6a:27:58:7a:3d:92:46:77:84:29:
5e:a4:a0:af:a7:3f:1c:0d:83:06:d4:57:e5:c7:f8:0e:74:62:
71:db:bd:53:92:3c:31:7e:c7:ef:71:e6:91:de:bc:c4:8c:4a:
4a:25:be:e7:d6:96:70:43:b3:eb:d0:d2:9e:9d:12:ca:30:fa:
ef:86:a6:e7:32:d5:15:7b:9b:87:00:20:fc:32:5a:a7:d4:20:
80:c5:42:64:7b:9c:30:eb:46:44:31:f9:8b:6f:81:01:76:a2:
f6:14:7b:90:d0:e4:27:29:56:d1:89:c1:36:20:33:ab:0a:31:
ff:05:22:eb:c0:fa:77:a5:7b:38:65:cb:db:11:23:2b:16:3f:
9e:75:2b:14:03:eb:20:22:b8:b9:94:82:56:53:14:90:c0:23:
9f:f2:bf:fb:6c:e1:d1:cb:0b:37:72:b3:3f:f5:9c:9a:c6:e5:
d9:31:d7:93:fb:23:d1:c6:42:37:3d:10:49:39:9a:79:bb:50:
a5:56:8b:4a:bf:ae:b9:cd:dd:bb:91:97:25:69:54:1b:59:06:
6b:83:f5:eb:bd:8f:60:42:9f:51:c6:31:98:4e:78:09:25:ab:
d1:c4:5c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:00:08 2026 by rpki-client