Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/vTbozc-knBlrFRGtoLDavXvjld4.roa
File: vTbozc-knBlrFRGtoLDavXvjld4.roa (raw, json)
Hash identifier: j51LPqTMepA1E62FjJ2amHRo1Mz3znMq8NbzZeTynLU=
Subject key identifier: BD:36:E8:CD:CF:A4:9C:19:6B:15:11:AD:A0:B0:DA:BD:7B:E3:95:DE
Certificate issuer: /CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Certificate serial: 019ECFA84CBED53F55F9959427F528240439
Authority key identifier: 49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/vTbozc-knBlrFRGtoLDavXvjld4.roa
Signing time: Tue 16 Jun 2026 08:59:33 +0000
ROA not before: Tue 16 Jun 2026 08:59:33 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 60262
IP address blocks: 2a04:ca80::/29 maxlen: 29
2a07:dd80::/29 maxlen: 29
2a09:8140::/29 maxlen: 29
2a0c:b140::/29 maxlen: 29
2a0c:b500::/29 maxlen: 29
2a11:2dc0::/29 maxlen: 29
2a11:4840::/29 maxlen: 29
2a11:4d00::/29 maxlen: 29
2a11:5a00::/29 maxlen: 29
2a11:5c00::/29 maxlen: 29
2a11:5e40::/29 maxlen: 29
2a11:76c0::/29 maxlen: 29
2a11:9f80::/29 maxlen: 29
2a11:a4c0::/29 maxlen: 29
2a11:a900::/29 maxlen: 29
2a11:bf40::/29 maxlen: 29
2a11:cf80::/29 maxlen: 29
2a11:fa00::/29 maxlen: 29
2a12:200::/29 maxlen: 29
2a12:3000::/29 maxlen: 29
2a12:4480::/29 maxlen: 29
2a12:7500::/29 maxlen: 29
2a12:a680::/29 maxlen: 29
2a12:e600::/29 maxlen: 29
2a12:f700::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 19:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:cf:a8:4c:be:d5:3f:55:f9:95:94:27:f5:28:24:04:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Validity
Not Before: Jun 16 08:59:33 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bd36e8cdcfa49c196b1511ada0b0dabd7be395de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:c4:83:96:70:d9:60:05:3c:61:a9:e3:8c:
76:84:41:7c:57:a5:ab:0d:c4:a6:db:15:6c:fd:fe:
30:ec:45:95:12:57:d3:1d:b7:ba:68:36:33:49:55:
be:8d:53:db:13:a1:57:b6:68:f2:d0:3a:ce:01:e0:
62:ac:5e:0e:d9:fe:bd:15:dc:d5:52:d4:cf:2e:28:
ff:c7:4d:bf:60:95:6e:99:3e:b0:76:85:45:de:b0:
62:7e:db:e0:e3:fe:83:91:71:e3:1a:f1:73:0e:2c:
0a:fd:69:39:b5:73:cd:2b:59:36:1c:29:cb:8e:d4:
df:8f:7d:d1:11:51:73:88:42:81:95:0e:53:1f:d1:
b0:78:44:cb:a9:96:73:04:aa:2c:43:f7:98:be:eb:
45:7d:17:55:6a:56:63:c2:05:48:06:9b:80:0c:91:
e2:8b:b1:8f:32:75:d5:d5:1a:7f:d1:58:f3:c1:d1:
46:a3:c5:b3:a0:c8:15:18:f3:60:88:ca:33:a8:c8:
24:12:6e:b1:51:e7:7e:6d:d1:bb:28:4d:99:74:52:
81:80:61:ca:d2:15:61:8b:34:97:3f:8c:81:ed:e6:
99:57:4f:10:93:bd:6a:0e:dc:c7:73:f3:d5:98:ce:
44:34:ea:2e:27:aa:f5:13:0c:13:4c:db:e4:c2:69:
cb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:36:E8:CD:CF:A4:9C:19:6B:15:11:AD:A0:B0:DA:BD:7B:E3:95:DE
X509v3 Authority Key Identifier:
keyid:49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/vTbozc-knBlrFRGtoLDavXvjld4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ca80::/29
2a07:dd80::/29
2a09:8140::/29
2a0c:b140::/29
2a0c:b500::/29
2a11:2dc0::/29
2a11:4840::/29
2a11:4d00::/29
2a11:5a00::/29
2a11:5c00::/29
2a11:5e40::/29
2a11:76c0::/29
2a11:9f80::/29
2a11:a4c0::/29
2a11:a900::/29
2a11:bf40::/29
2a11:cf80::/29
2a11:fa00::/29
2a12:200::/29
2a12:3000::/29
2a12:4480::/29
2a12:7500::/29
2a12:a680::/29
2a12:e600::/29
2a12:f700::/29
Signature Algorithm: sha256WithRSAEncryption
48:60:48:38:13:24:fa:d5:db:58:d7:1d:ed:c2:25:f9:70:79:
5e:ff:7d:6c:40:e2:75:c7:42:3f:65:63:f6:29:08:38:3c:ec:
b1:a3:f0:ec:76:ca:3f:34:8e:d9:1a:85:70:24:06:f4:62:22:
94:7c:59:b6:3b:e9:38:e6:f9:46:2e:21:3c:6a:f5:4b:c8:d9:
39:9f:37:51:44:ea:16:5c:1f:de:99:ec:b7:2a:66:23:60:c4:
7a:36:3d:67:40:c9:5e:fa:f9:9b:42:5b:42:06:30:00:32:04:
d1:d4:d7:01:eb:5b:cb:0c:53:d6:5b:61:bd:27:04:b2:fd:c4:
39:6d:4e:01:cf:c6:df:73:15:f2:74:f6:69:fa:6a:9b:71:b3:
b9:d2:bb:5c:e0:15:b1:0d:90:3f:e0:12:a2:a5:c8:4a:06:c1:
e0:b3:89:18:38:f3:89:83:b8:04:54:e2:ce:ed:e8:73:4b:bd:
f5:f5:e1:f0:9b:de:f3:52:00:9b:12:e0:b8:7f:b9:b8:bb:66:
14:11:b4:98:8e:0a:e8:42:20:22:93:17:cd:06:3e:23:79:dd:
04:b0:dd:dc:56:97:b6:67:94:30:12:56:fa:85:eb:4b:14:93:
c6:68:d3:b6:f3:7c:27:96:4d:f7:8e:fd:59:52:9c:a4:9b:67:
c5:42:94:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 06:12:36 2026 by rpki-client