Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/94dyBOLbRDpnRcB1TDzaqi0P_7E.roa
File: 94dyBOLbRDpnRcB1TDzaqi0P_7E.roa (raw, json)
Hash identifier: 4anumJNiQjV3dDe2I41pvRC721HOGi/G29AUYm2u5e4=
Subject key identifier: F7:87:72:04:E2:DB:44:3A:67:45:C0:75:4C:3C:DA:AA:2D:0F:FF:B1
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019E9349D80D8A33870C0D3AC81B1A4A9C53
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/94dyBOLbRDpnRcB1TDzaqi0P_7E.roa
Signing time: Thu 04 Jun 2026 15:39:10 +0000
ROA not before: Thu 04 Jun 2026 15:39:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214024
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:93:49:d8:0d:8a:33:87:0c:0d:3a:c8:1b:1a:4a:9c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jun 4 15:39:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f7877204e2db443a6745c0754c3cdaaa2d0fffb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:de:11:a2:d1:c8:6d:57:78:2a:41:83:95:62:
4c:eb:ec:9b:4c:d7:37:4b:f4:96:ab:a5:2b:43:d3:
22:e0:c3:10:45:12:84:99:f0:7f:fd:04:b1:ce:7a:
f6:a3:40:a7:4b:98:f4:16:7b:ff:25:9e:c5:d5:2e:
a6:28:85:39:7f:ae:16:9c:82:75:62:84:c5:5b:68:
59:c6:6c:b1:40:6c:62:d9:cb:10:b1:af:b6:00:00:
c5:1c:a9:ee:b3:2f:b0:9f:26:0d:59:06:43:3c:d9:
d3:33:16:07:6d:43:1b:ce:8c:76:a6:f4:dd:a4:de:
c2:e2:cb:93:41:c2:71:8a:f2:e0:ca:ce:23:90:bd:
71:df:97:dc:a5:dc:a3:83:b5:a9:1e:88:04:d6:cf:
fb:d2:4c:93:b8:1d:6e:ca:b1:5f:a2:ea:e2:17:6a:
23:fb:9f:84:2b:b9:1e:d8:f3:1a:53:d6:be:e1:3b:
a6:e7:0e:ca:7e:1a:8e:99:b2:8e:58:ad:fc:52:76:
63:9f:40:e0:19:82:46:64:3f:02:43:ac:3d:a7:81:
41:dd:ca:42:46:15:39:37:26:d2:f2:98:0a:c5:8e:
77:73:de:15:a8:69:64:18:e5:84:87:99:3e:df:e5:
61:68:db:63:1a:f1:97:f7:4d:50:74:9a:cc:da:2c:
18:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:87:72:04:E2:DB:44:3A:67:45:C0:75:4C:3C:DA:AA:2D:0F:FF:B1
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/94dyBOLbRDpnRcB1TDzaqi0P_7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:08:27:22:5a:ac:d0:8d:c0:ec:c2:65:5d:23:51:3e:ec:a9:
c4:79:42:4f:e6:e9:45:18:1a:f1:a7:a7:7b:48:e6:21:78:6b:
83:38:fa:4e:4b:8c:66:cc:4c:92:00:57:aa:63:72:8c:63:72:
ac:e8:15:81:ee:69:db:d0:e5:fd:0e:bb:18:c6:e1:75:65:69:
f5:7b:17:1a:73:0e:1a:2b:3f:00:e7:1a:e8:79:16:96:fe:c5:
b9:c5:38:3b:2e:9c:30:d9:02:a7:49:1b:d5:06:24:63:75:c0:
ad:14:3e:f4:f6:70:80:6b:b9:cf:d4:79:57:af:9b:d0:88:b6:
b3:8e:35:e4:ba:48:ce:4f:bf:44:c6:cf:45:5b:c7:bb:47:0b:
8c:ab:56:9f:59:8f:47:2e:dc:fd:47:8f:88:5b:b8:81:ea:35:
52:42:dd:d1:2f:a7:42:3f:d2:ee:42:ed:bd:0d:6d:8d:0b:fb:
33:10:a1:d7:c1:b5:ca:13:23:cf:04:04:f0:6c:6e:b2:2a:a4:
e4:48:ab:7a:c7:df:62:00:6f:7d:05:45:a6:ba:23:4b:ed:ed:
34:d2:9a:24:54:6b:6c:07:4d:60:71:48:75:af:ac:e4:eb:17:
f5:ae:77:eb:63:da:3d:c1:67:c4:66:9c:f7:48:e7:ba:8a:65:
94:f4:2e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 00:05:42 2026 by rpki-client