Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Izs5SZyuYEyOW_DWkVOTCpKG4Xk.roa
File: Izs5SZyuYEyOW_DWkVOTCpKG4Xk.roa (raw, json)
Hash identifier: cI8FZTIbnFqlcKZ5JizitOe7aN1SsE0zEt5aPEVGwPs=
Subject key identifier: 23:3B:39:49:9C:AE:60:4C:8E:5B:F0:D6:91:53:93:0A:92:86:E1:79
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 019E8CC2573DAE6E7312EA0E66D5AA1CFD47
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Izs5SZyuYEyOW_DWkVOTCpKG4Xk.roa
Signing time: Wed 03 Jun 2026 09:13:27 +0000
ROA not before: Wed 03 Jun 2026 09:13:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/24 maxlen: 24
46.34.40.0/24 maxlen: 24
46.34.44.0/24 maxlen: 24
46.34.54.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.mft
rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8c:c2:57:3d:ae:6e:73:12:ea:0e:66:d5:aa:1c:fd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jun 3 09:13:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=233b39499cae604c8e5bf0d69153930a9286e179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c2:77:2b:79:b9:1b:2b:1b:be:18:04:6d:5d:
fe:62:74:e3:58:c7:13:e1:02:80:60:a1:d0:1c:6c:
a6:77:d7:bb:e2:75:d5:0e:e7:06:10:b6:ac:a6:31:
98:c7:d4:16:e8:80:60:1e:52:74:3f:84:e9:90:cc:
7f:4d:22:76:45:4a:13:66:80:35:5c:c6:dc:c6:5d:
bf:ff:97:ba:02:bb:58:6c:11:54:8a:cd:c5:54:d5:
a7:4a:f3:78:b6:36:9a:c9:49:5a:e0:68:73:6d:8a:
13:ee:f7:64:d8:70:0d:eb:9e:85:7d:42:b0:4e:f4:
c3:b0:40:7b:a9:86:f6:fc:9f:ba:85:23:5c:23:72:
c7:68:8f:80:31:09:ef:b4:7e:89:3e:73:f9:ad:f2:
24:65:59:38:05:df:86:3e:0d:b3:31:59:57:a7:3c:
f8:99:d2:1c:5c:06:b6:22:a5:8c:4f:c4:6a:53:f7:
78:77:40:ad:fe:39:71:22:8d:a8:7e:f1:ba:bc:29:
f9:30:4e:8d:72:d7:93:d3:4b:58:a1:11:d5:d3:06:
13:b5:81:15:b2:e1:62:ec:5d:b2:2f:77:0c:0c:3c:
c0:7f:04:5a:43:de:1a:fb:93:a5:85:60:41:a4:21:
a3:5d:f0:c8:b0:87:59:09:c1:e5:3e:58:35:01:62:
4b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3B:39:49:9C:AE:60:4C:8E:5B:F0:D6:91:53:93:0A:92:86:E1:79
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Izs5SZyuYEyOW_DWkVOTCpKG4Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.40.0/24
46.34.44.0/24
46.34.54.0/24
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:77:2f:58:50:b2:8a:20:ed:37:2c:1a:3b:55:86:17:82:89:
a7:69:6c:f1:3d:03:24:ca:b8:8e:c5:da:2e:33:09:2d:97:73:
93:9f:c0:72:e8:43:91:1b:b8:e8:08:39:30:ad:f1:c1:ab:0e:
15:4f:e5:eb:73:65:42:ed:d6:11:7e:56:3a:10:aa:53:79:fb:
cb:1c:5f:80:5f:94:b0:33:04:63:28:f8:97:6f:96:f4:6f:b2:
a4:03:fe:70:06:50:f7:89:28:64:ed:39:84:49:55:a0:a7:ad:
7f:c3:4d:b3:ea:92:a5:06:05:14:7d:8b:86:80:c2:16:7c:d7:
2f:76:46:1d:6b:ec:09:fb:af:70:20:80:60:aa:d0:27:c1:a3:
d3:d6:93:46:5d:d1:0d:e6:e5:4b:5b:f1:05:de:86:9c:89:75:
75:a2:98:4e:5c:f8:f1:f6:30:e4:9b:1c:ed:8f:cf:53:52:6e:
b2:59:ed:29:01:82:b2:1f:b5:00:be:a7:6c:2d:e2:d8:e0:85:
bc:11:45:05:39:8d:2f:18:26:84:ff:0b:11:0d:8d:fe:ab:fd:
14:ab:f4:a5:b3:1f:98:d0:72:b9:c9:99:77:3a:62:d6:7d:d5:
c5:99:ef:96:5b:af:f2:11:53:e2:65:45:e2:bf:34:2c:a9:0b:
e0:80:c5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:29:10 2026 by rpki-client