Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/y7V0gODGZ1tWjATLXizK58ziTV4.roa
File: y7V0gODGZ1tWjATLXizK58ziTV4.roa (raw, json)
Hash identifier: mZFnve1kVCtEozPR9Y4/ok/Ia5uPHqEbZdaJ8dj7y/Y=
Subject key identifier: CB:B5:74:80:E0:C6:67:5B:56:8C:04:CB:5E:2C:CA:E7:CC:E2:4D:5E
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EC75936E698863E1ACAF33ACA9F08EC0D
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/y7V0gODGZ1tWjATLXizK58ziTV4.roa
Signing time: Sun 14 Jun 2026 18:16:13 +0000
ROA not before: Sun 14 Jun 2026 18:16:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42337
IP address blocks: 94.183.151.0/24 maxlen: 24
94.183.215.0/24 maxlen: 24
217.60.236.0/24 maxlen: 24
217.60.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c7:59:36:e6:98:86:3e:1a:ca:f3:3a:ca:9f:08:ec:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 14 18:16:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cbb57480e0c6675b568c04cb5e2ccae7cce24d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:32:ca:dd:59:23:ea:1e:c4:0d:fe:bd:3c:b2:
ac:1d:8d:02:5a:8f:e4:90:ef:08:4b:0d:e6:73:0d:
36:83:c5:c3:70:45:0a:d8:fa:16:bd:d0:45:8f:8d:
ff:01:8a:d0:fb:01:ee:6f:08:7f:69:34:24:bf:a3:
f7:1b:70:60:8b:f2:9b:78:4e:f4:bb:d6:c0:5d:79:
0c:a8:15:61:86:7f:6a:15:3b:9b:2f:48:bb:d6:32:
7a:3c:0e:a1:d8:12:40:4a:89:6d:80:ca:76:d5:d7:
dd:b3:36:2e:8a:5a:99:eb:81:88:0f:cb:51:66:d1:
0c:4d:b4:cf:4c:7d:06:3f:9c:7c:b8:24:dc:0d:14:
bd:36:96:b9:dc:fd:39:f0:a6:27:85:91:ce:07:cc:
ad:e9:c0:59:b3:a0:59:5b:7e:89:39:c5:8b:09:ca:
7d:32:70:6f:2f:d1:9e:07:db:e0:fe:85:ef:02:20:
5b:61:da:2f:6c:f6:c4:98:2f:68:e1:a8:bd:7f:c7:
d6:b9:3e:88:3b:cf:5d:b7:1f:cb:18:ed:cb:12:a7:
9f:47:99:d2:ca:eb:4a:b6:5a:dd:aa:06:02:95:8e:
b1:a8:c9:c3:71:36:c3:62:ee:dd:fb:2c:71:42:9f:
91:d5:cf:91:41:75:9c:09:67:e5:57:84:5b:2b:8a:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B5:74:80:E0:C6:67:5B:56:8C:04:CB:5E:2C:CA:E7:CC:E2:4D:5E
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/y7V0gODGZ1tWjATLXizK58ziTV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.183.151.0/24
94.183.215.0/24
217.60.236.0/24
217.60.247.0/24
Signature Algorithm: sha256WithRSAEncryption
70:a4:12:90:59:09:b2:8c:88:c3:f6:f7:d2:aa:1d:a5:ce:d2:
e8:fe:8a:9a:80:9a:d6:39:5e:2f:03:38:19:41:e0:21:75:22:
46:2d:41:bf:f9:a0:15:74:fb:e8:70:44:b3:13:f7:9a:54:27:
c8:56:34:f8:33:69:fb:91:ed:66:7a:68:3a:95:b2:e7:62:5f:
72:9c:71:6d:f9:73:8c:d2:ad:95:3a:31:ea:76:5d:b0:e3:92:
10:8e:bb:c4:92:4d:3f:dc:2f:e0:53:42:b6:3c:2d:85:ae:ca:
6d:e4:be:1e:46:04:47:1b:63:41:11:52:1d:b4:5e:05:5c:0d:
76:cf:69:2b:5a:5c:a6:57:5a:6d:33:eb:87:e9:16:74:28:98:
ba:95:ff:c1:9c:74:42:da:83:f7:b0:56:b0:a6:56:a6:16:c1:
52:d3:bb:b8:be:3e:58:d8:cf:8c:cd:43:59:5f:fc:58:ca:fd:
0a:3b:e7:b6:76:69:2b:52:07:b0:5d:fe:52:2b:d1:b8:f9:81:
f8:f5:6c:00:b2:71:94:37:c5:75:36:75:51:b4:b4:db:e0:af:
7a:cf:1e:f8:9b:b9:79:68:51:eb:b5:09:47:a9:02:b3:4b:e9:
37:ac:05:df:7f:f9:39:fb:a0:52:7a:73:a0:5f:b6:d5:0c:e7:
2f:cf:af:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:05:52 2026 by rpki-client