Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tdwhGs_VceTnHwYNDkk98pIKLSQ.roa
File: tdwhGs_VceTnHwYNDkk98pIKLSQ.roa (raw, json)
Hash identifier: ymyQE6YiJDq4R4useFmB+px7IJvcwTi3pc1MK7iMPNc=
Subject key identifier: B5:DC:21:1A:CF:D5:71:E4:E7:1F:06:0D:0E:49:3D:F2:92:0A:2D:24
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019DAA4F0F088901DB787D6BC2D7CCB02E87
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tdwhGs_VceTnHwYNDkk98pIKLSQ.roa
Signing time: Mon 20 Apr 2026 09:53:21 +0000
ROA not before: Mon 20 Apr 2026 09:53:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9123
IP address blocks: 93.190.244.0/24 maxlen: 24
2a0e:f206::/32 maxlen: 32
2a0f:e1c3::/32 maxlen: 32
2a0f:e6c7::/32 maxlen: 32
2a0f:e840::/32 maxlen: 32
2a0f:ea40::/32 maxlen: 32
2a10:68c5::/32 maxlen: 32
2a13:9287::/32 maxlen: 32
2a13:e103::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 22:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:aa:4f:0f:08:89:01:db:78:7d:6b:c2:d7:cc:b0:2e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 20 09:53:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b5dc211acfd571e4e71f060d0e493df2920a2d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:58:76:db:54:a5:d4:8f:71:16:cd:3e:f4:f6:
4f:ab:0d:0e:29:9e:78:7b:85:c1:7f:06:2f:bb:a5:
eb:3a:2e:63:a2:b1:fd:d2:82:81:14:54:20:98:7e:
ef:b5:9f:f1:26:02:b0:56:19:9a:c7:f3:2a:8a:b5:
7c:ac:82:54:e0:39:19:00:f0:a8:34:9f:b6:d3:22:
d1:cd:45:14:f8:75:2b:82:55:8e:f8:c9:be:89:2e:
e6:5c:c9:0b:2b:48:f8:da:0c:cd:53:77:6f:a6:f4:
71:f1:f8:e5:eb:40:3d:bf:1e:2e:91:d3:e6:97:61:
0e:59:4e:d5:e3:d3:5b:3a:51:f8:4a:0f:0e:f9:fd:
3a:2b:27:4b:1b:66:4a:d7:4e:47:b3:a6:d3:ca:21:
d1:8a:6f:92:c0:87:f8:18:48:8b:68:b0:20:35:64:
2a:df:be:a3:ad:cb:5a:9f:4d:30:28:8d:e8:01:c7:
0e:75:35:0d:30:13:c6:60:5b:1b:ff:25:d9:64:f9:
de:04:ce:e4:04:75:6a:d4:62:19:27:15:a9:4e:cf:
d4:09:82:e7:d1:a2:5e:16:47:9a:64:c5:2c:9d:c3:
8f:72:cf:3a:c4:c4:30:18:ea:60:f1:c9:c5:0e:37:
07:1e:12:66:59:56:ac:20:58:8e:aa:07:5d:62:e8:
7c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DC:21:1A:CF:D5:71:E4:E7:1F:06:0D:0E:49:3D:F2:92:0A:2D:24
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tdwhGs_VceTnHwYNDkk98pIKLSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.244.0/24
IPv6:
2a0e:f206::/32
2a0f:e1c3::/32
2a0f:e6c7::/32
2a0f:e840::/32
2a0f:ea40::/32
2a10:68c5::/32
2a13:9287::/32
2a13:e103::/32
Signature Algorithm: sha256WithRSAEncryption
7c:1d:c7:56:c4:b4:c4:3f:9c:ca:4f:60:88:99:69:be:5a:4d:
d6:9b:d3:13:58:1e:f4:77:c1:f4:ca:c7:ad:7b:9e:11:8a:46:
ed:de:b0:a5:94:ed:8f:9a:cd:dc:a6:d3:df:f1:f7:b9:82:ae:
18:80:9f:19:ef:47:be:3a:60:73:e4:76:16:6b:86:eb:08:b8:
71:2d:a9:68:cf:2d:0e:d0:37:3b:61:67:a2:3a:7b:7f:10:e0:
20:f6:5d:eb:17:03:f2:db:01:1a:97:0a:dc:73:e1:03:3f:e8:
44:1f:44:af:d2:40:53:5d:fd:c8:c6:71:32:47:64:7f:b9:7b:
14:68:1b:87:5a:31:98:36:47:e6:6b:ca:1c:7e:dd:54:37:f7:
ed:6d:31:46:6c:3e:f3:a1:41:05:f7:6d:05:ae:19:5a:b9:53:
04:15:c7:96:19:fb:5c:72:7f:1b:3c:59:b6:c9:45:87:0d:c9:
db:78:e6:fb:f5:f2:51:8d:55:27:5b:8a:02:ef:5a:46:e8:13:
6f:26:ab:64:a2:17:2f:eb:e7:67:d2:b9:39:c1:9c:18:73:08:
2f:a0:8b:1b:8e:5e:89:ec:41:6b:5f:2e:b2:ff:88:b2:64:32:
c4:dc:c6:ff:0c:2b:55:86:1d:2f:4a:51:3e:24:16:11:57:f3:
ea:ca:cc:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 09:25:36 2026 by rpki-client