Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/cLC0p6-XG2FZMMpLJsOZClmvLWw.roa
File: cLC0p6-XG2FZMMpLJsOZClmvLWw.roa (raw, json)
Hash identifier: 919ET0x31WtL1Oi+M/KDLBIxuGLU5wVMsTEFapY150I=
Subject key identifier: 70:B0:B4:A7:AF:97:1B:61:59:30:CA:4B:26:C3:99:0A:59:AF:2D:6C
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019E88F5231386ADB91BFD0A9A63082D864B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/cLC0p6-XG2FZMMpLJsOZClmvLWw.roa
Signing time: Tue 02 Jun 2026 15:30:27 +0000
ROA not before: Tue 02 Jun 2026 15:30:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 77.246.211.0/24 maxlen: 24
77.246.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:88:f5:23:13:86:ad:b9:1b:fd:0a:9a:63:08:2d:86:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jun 2 15:30:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=70b0b4a7af971b615930ca4b26c3990a59af2d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f4:90:cb:26:60:e6:47:c2:ce:df:fd:5b:a2:
4f:e3:1d:3b:98:5b:4f:7b:87:c7:19:cc:ba:ee:a2:
f4:a7:c2:72:ed:e3:f5:33:4c:ff:66:0f:6d:62:dc:
d6:89:08:37:73:1d:79:71:ed:9f:7a:c3:54:73:f0:
d2:2b:d0:7e:6f:71:41:52:d0:b6:ef:cc:be:ec:50:
ee:45:0a:a3:d0:3a:de:c7:d0:29:75:e7:01:59:38:
8f:6f:7e:6a:60:b7:95:1e:6d:0d:c3:98:29:01:1c:
7c:78:17:f0:e5:a8:32:45:68:74:a7:5d:12:ba:c7:
e5:ef:60:bb:ea:55:d3:f7:02:3a:f1:b0:41:c3:fe:
9d:eb:67:6d:1a:a4:04:4b:ca:0b:61:f0:a2:f1:2d:
42:6b:1c:49:2d:03:e0:5a:cc:5f:af:3a:9a:e4:64:
13:7f:a2:f0:4d:80:7e:5b:97:af:a6:36:bf:73:30:
ab:0d:8c:5b:8f:53:5a:6c:95:cd:89:e0:f4:e1:db:
6f:fb:5c:21:39:62:2c:10:6e:93:35:6d:ff:95:26:
44:8f:12:d6:6a:f1:40:a6:20:27:e3:72:76:51:d3:
5c:9e:a4:69:3e:f3:e3:99:50:ff:25:85:e8:0d:a5:
e6:24:14:7b:3e:55:f2:40:a1:78:15:de:5f:6b:7d:
e8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B0:B4:A7:AF:97:1B:61:59:30:CA:4B:26:C3:99:0A:59:AF:2D:6C
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/cLC0p6-XG2FZMMpLJsOZClmvLWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.211.0/24
77.246.221.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:27:a1:60:29:cb:2f:5a:cd:46:4f:ab:72:75:78:9e:bc:dc:
51:dc:38:8c:f8:dc:fb:9e:99:3d:21:ca:23:18:65:9b:da:0f:
d7:5a:f5:a5:cd:94:48:88:d9:db:da:6c:73:f7:9b:de:35:cf:
c3:c9:1e:15:64:55:90:e5:0f:83:84:83:7c:db:ca:3f:ff:19:
13:56:c6:4d:d1:ef:23:de:fb:57:a1:eb:c6:0b:f1:a8:3b:31:
bf:1c:59:f1:cc:de:35:0f:20:ff:81:07:e3:41:4d:75:e1:a3:
9d:27:3f:30:7d:e9:bd:b6:ca:e7:5b:61:98:fd:b6:ef:86:ce:
b9:39:64:41:49:88:9f:1e:da:9a:ec:60:8d:05:94:50:3a:96:
26:e5:e8:92:f3:24:e8:79:cf:30:4f:69:af:28:bc:fb:34:88:
53:39:6e:d3:5f:db:a1:61:ed:9b:f5:41:1d:07:ad:77:a4:14:
2a:b2:14:15:1c:da:15:98:3e:8d:75:aa:83:75:0f:fc:71:8c:
35:2d:18:46:19:99:ed:15:83:16:1a:59:9a:ea:46:ed:e7:b7:
75:4c:92:7a:65:06:01:dc:2c:42:91:77:8b:2b:63:1b:52:e8:
d4:19:d5:b8:a6:74:90:16:26:1a:26:55:48:fb:49:70:ef:a3:
10:cf:e9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 09:59:29 2026 by rpki-client