Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/44hWThy0SQaOd4Kq-LaiKY0ucis.roa
File: 44hWThy0SQaOd4Kq-LaiKY0ucis.roa (raw, json)
Hash identifier: EnW4ozIjPnoxuPL8GsuFSrxEODlmtr8p/kgDAIn9JZY=
Subject key identifier: E3:88:56:4E:1C:B4:49:06:8E:77:82:AA:F8:B6:A2:29:8D:2E:72:2B
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 019E58A0D938003D496E7025DE1E5CB03624
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/44hWThy0SQaOd4Kq-LaiKY0ucis.roa
Signing time: Sun 24 May 2026 06:16:36 +0000
ROA not before: Sun 24 May 2026 06:16:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209596
IP address blocks: 87.107.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:58:a0:d9:38:00:3d:49:6e:70:25:de:1e:5c:b0:36:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 24 06:16:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e388564e1cb449068e7782aaf8b6a2298d2e722b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:43:a1:ca:9a:e8:67:cb:a2:33:ef:c4:b2:
e5:9f:16:3a:3f:98:7a:d3:bd:25:54:a5:f4:e7:f1:
e1:d7:1e:79:88:15:7c:a1:02:40:3c:e0:68:3e:13:
ca:2c:4a:fb:6f:5e:78:78:a9:4c:a8:70:35:23:19:
bc:e2:91:ad:32:32:5c:df:ce:09:ea:7e:8a:d2:7d:
4c:20:64:37:40:64:ff:ef:1d:58:ba:ca:42:fb:10:
f3:a5:9f:63:7d:4b:3f:87:98:de:a2:3e:1f:76:64:
4b:fd:6b:09:c8:35:f9:43:e8:38:29:d5:58:66:c7:
dc:15:32:96:f6:a8:69:80:30:e5:dc:53:d0:b9:84:
74:da:ee:b9:2f:b8:60:43:55:f0:45:ca:cd:51:2b:
a3:e0:53:53:63:96:4c:6b:c1:97:02:f7:08:a8:a8:
8b:05:f6:07:10:04:69:3d:13:e0:46:c0:2d:8d:f1:
33:f9:87:81:5e:1d:22:5a:25:16:53:2a:09:ff:65:
68:cc:60:37:f2:ce:70:29:a3:41:57:ea:19:64:d1:
6c:dd:e8:e4:ca:c0:89:dd:13:96:9b:f2:f1:f8:dd:
ce:87:8b:34:30:3a:f6:8e:0f:9a:0f:7a:26:c7:44:
2f:5a:6b:9a:50:0f:43:2b:9a:ea:8e:b3:58:d4:d5:
7f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:88:56:4E:1C:B4:49:06:8E:77:82:AA:F8:B6:A2:29:8D:2E:72:2B
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/44hWThy0SQaOd4Kq-LaiKY0ucis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.224.0/19
Signature Algorithm: sha256WithRSAEncryption
74:47:de:48:ef:61:a8:66:cf:3d:50:c3:ab:29:27:1f:94:50:
cc:b7:af:e3:6e:b2:08:b9:bb:14:f3:ee:5b:e1:66:71:92:5b:
7a:47:e2:3e:e2:81:30:a1:79:18:40:14:77:75:30:bf:c5:8a:
fe:e8:5b:06:ec:b8:fd:fc:e9:d8:57:f5:74:48:26:e6:9a:8d:
e9:03:84:6e:2b:8c:3b:be:c1:fc:15:ca:22:45:43:bc:ea:d6:
61:f1:3f:81:26:69:11:f1:9b:ce:41:1a:b2:a4:6b:2c:d4:c9:
ff:be:39:07:e3:36:95:6e:ed:24:3c:01:1d:52:22:48:64:ab:
61:67:ff:86:30:67:1b:1d:b7:04:88:b6:6f:46:56:1a:e3:66:
67:cc:e0:1f:80:7a:34:52:49:f2:7f:b8:b9:37:0c:c1:3a:4f:
a9:0a:55:6d:7a:32:43:74:1c:b7:aa:65:0b:8d:2f:b7:10:c9:
6a:c0:bf:b9:62:30:61:d6:4c:1c:f0:b0:d4:0a:86:24:10:12:
6c:48:df:fe:df:48:81:40:78:c6:da:c1:70:99:91:eb:48:16:
bb:69:de:f2:ea:19:d6:8d:bc:00:ad:f8:3d:1b:8f:f6:2e:3b:
3a:de:80:43:7f:00:68:ef:eb:b6:8d:ad:c5:20:37:d1:11:35:
11:bb:67:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:31:04 2026 by rpki-client