Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kjyr5Xq_ZiSIjgXnQAN8Uii6jgM.roa
File: kjyr5Xq_ZiSIjgXnQAN8Uii6jgM.roa (raw, json)
Hash identifier: gQK+c69hLtdPsv/zL0YJuqd0OfYkjKqUgZBCOyTHYnU=
Subject key identifier: 92:3C:AB:E5:7A:BF:66:24:88:8E:05:E7:40:03:7C:52:28:BA:8E:03
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 019EAC165B5186F975FCD136BDA4A234050D
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kjyr5Xq_ZiSIjgXnQAN8Uii6jgM.roa
Signing time: Tue 09 Jun 2026 11:13:26 +0000
ROA not before: Tue 09 Jun 2026 11:13:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 205634
IP address blocks: 2a0a:79c0:f00::/48 maxlen: 48
2a0a:79c0:f01::/48 maxlen: 48
2a0a:79c0:f02::/48 maxlen: 48
2a0a:79c0:f03::/48 maxlen: 48
2a0a:79c0:f04::/48 maxlen: 48
2a0a:79c0:f05::/48 maxlen: 48
2a0a:79c0:f06::/48 maxlen: 48
2a0a:79c0:f07::/48 maxlen: 48
2a0a:79c0:f08::/48 maxlen: 48
2a0a:79c0:f09::/48 maxlen: 48
2a0a:79c0:f0a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ac:16:5b:51:86:f9:75:fc:d1:36:bd:a4:a2:34:05:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jun 9 11:13:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=923cabe57abf6624888e05e740037c5228ba8e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e0:44:34:2f:d8:fa:aa:21:77:5d:ef:de:0a:
20:54:aa:f2:1a:a0:b7:48:7a:89:8c:3d:06:78:79:
83:30:25:d0:ce:24:51:18:09:5a:87:41:57:63:69:
a0:dd:e3:27:ad:3f:4c:9c:dd:a1:52:64:84:70:fa:
e6:37:fc:54:c9:ae:ea:a0:11:7e:72:75:a1:27:4c:
88:bf:40:21:9d:01:fe:8f:a8:a2:ca:33:49:04:5a:
33:e5:fc:1a:21:f7:25:c1:3c:6a:69:98:3f:90:be:
e0:77:e2:ae:4b:98:81:c8:ff:2f:b6:d5:0c:35:f5:
0b:f8:b8:80:54:0e:6d:4a:38:01:2f:fa:7b:72:11:
5f:91:04:28:ce:3f:0c:06:2d:df:67:e9:db:6e:f1:
10:b0:c5:df:7e:78:8a:5a:0e:6d:bf:fb:82:d6:11:
6d:b6:fe:5b:39:cd:06:e0:95:e5:64:7b:56:cc:49:
f1:c3:8c:f1:8e:2d:79:b1:a3:c9:88:86:ef:06:51:
d0:a9:f6:e1:23:88:81:a4:d9:d0:18:20:1d:0e:7c:
7f:f2:b8:6c:7f:d8:ac:42:06:31:20:23:af:bc:0c:
2f:2a:d3:ed:5c:5d:45:9e:a4:b5:db:10:86:05:e3:
75:43:d0:be:4b:5d:fa:03:62:a5:59:df:9a:c9:5d:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3C:AB:E5:7A:BF:66:24:88:8E:05:E7:40:03:7C:52:28:BA:8E:03
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kjyr5Xq_ZiSIjgXnQAN8Uii6jgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:79c0:f00::-2a0a:79c0:f0a:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
20:cb:c4:f3:8a:d2:58:1f:57:38:04:f5:2c:55:cd:a1:8d:07:
28:43:b3:8d:0f:36:2f:9f:f5:82:3b:bf:a2:4d:63:66:e3:f0:
70:25:8b:5a:f5:d6:6d:13:9c:f9:76:6d:55:1e:0f:1b:e7:af:
a2:db:dd:ca:cc:96:16:47:be:c3:ea:76:fc:54:2b:a1:85:f0:
a3:4c:62:46:90:32:46:11:95:2e:98:47:c9:f4:2c:87:da:9c:
28:e5:c2:c6:1a:fb:58:ec:08:9a:23:ad:32:3c:cb:53:e9:d3:
db:b3:57:07:8f:d4:20:cf:00:69:8e:11:09:87:d9:55:0d:e9:
28:22:d3:68:60:74:9f:7e:31:af:54:9d:42:bc:c2:8a:26:23:
6d:8c:24:ad:a7:5b:8c:55:43:05:bb:38:30:5e:99:35:b2:a0:
7b:47:1d:fb:0b:a2:95:7a:a1:de:70:c6:b4:17:e8:e1:81:6a:
3e:22:01:24:f0:ef:f2:86:87:76:8d:a1:b0:21:79:c5:01:0c:
18:3f:05:90:a8:99:16:9c:83:70:2d:b1:48:f6:74:17:fe:d6:
a3:ed:28:a5:63:e4:52:67:47:ac:a9:96:73:98:0d:e4:52:4c:
16:0c:77:3e:6b:77:e8:9a:ce:2f:47:24:9c:71:7b:62:10:26:
be:32:93:51
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 13 01:01:45 2026 by rpki-client