Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/C_cPbxCN-EKMPp9FV8Z2F54NvZU.roa
File: C_cPbxCN-EKMPp9FV8Z2F54NvZU.roa (raw, json)
Hash identifier: JjlxCyL/RNdfPBsTT3/T/lg6c8C+v3XJYNvmY/MrU8s=
Subject key identifier: 0B:F7:0F:6F:10:8D:F8:42:8C:3E:9F:45:57:C6:76:17:9E:0D:BD:95
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019ED810EF2915500D3EC0D96BB0EF50839C
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/C_cPbxCN-EKMPp9FV8Z2F54NvZU.roa
Signing time: Thu 18 Jun 2026 00:10:48 +0000
ROA not before: Thu 18 Jun 2026 00:10:48 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201988
IP address blocks: 2.26.122.0/24 maxlen: 24
2.26.123.0/24 maxlen: 24
2.26.224.0/24 maxlen: 24
2.26.225.0/24 maxlen: 24
2.26.226.0/24 maxlen: 24
2.26.227.0/24 maxlen: 24
31.76.30.0/24 maxlen: 24
31.76.94.0/24 maxlen: 24
31.76.100.0/23 maxlen: 24
31.76.102.0/23 maxlen: 24
31.76.244.0/24 maxlen: 24
31.76.245.0/24 maxlen: 24
31.76.251.0/24 maxlen: 24
31.76.252.0/24 maxlen: 24
144.31.53.0/24 maxlen: 24
144.31.148.0/24 maxlen: 24
144.31.169.0/24 maxlen: 24
144.31.223.0/24 maxlen: 24
144.31.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 19:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d8:10:ef:29:15:50:0d:3e:c0:d9:6b:b0:ef:50:83:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Jun 18 00:10:48 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0bf70f6f108df8428c3e9f4557c676179e0dbd95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0b:e1:f4:c7:a4:b8:32:e4:9e:af:83:72:80:
68:0e:70:50:7a:f5:86:75:8b:25:ed:47:75:20:db:
c7:88:69:62:94:65:3b:2d:3c:c1:8e:9f:64:9c:30:
69:04:07:17:52:8f:e0:40:1f:2f:60:db:ab:af:9e:
ee:be:a2:13:f9:4a:5f:2e:9c:69:2a:96:00:97:c7:
cf:0d:18:6e:df:aa:4f:da:01:53:bd:e2:b0:3e:e0:
de:dc:46:32:3e:e0:ff:91:f0:66:9a:ce:97:80:1e:
9f:93:51:9b:94:22:0b:45:7b:41:e5:a6:88:85:45:
12:43:4a:fb:85:70:5d:d0:bc:4a:cd:d9:62:eb:d8:
4d:79:bc:a9:b3:6b:8c:6a:3c:51:3a:f7:33:5f:c2:
7d:20:3a:2c:13:4c:4a:40:81:a6:ad:b3:6d:91:6c:
8a:3d:42:24:c4:7f:6b:02:9f:79:db:02:e4:5a:c9:
3a:2b:2c:b8:27:4e:8e:04:6a:3b:0d:73:1d:98:61:
ca:17:43:9b:8b:8e:8d:d4:fb:18:be:82:46:44:ea:
ff:b0:22:b4:d2:e6:e4:a5:2f:ff:97:68:b4:bd:81:
06:fc:06:d1:8f:6d:39:62:76:86:c8:13:cb:c3:79:
13:bf:c3:64:01:e5:b8:9e:05:5e:5e:52:d2:be:94:
e4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F7:0F:6F:10:8D:F8:42:8C:3E:9F:45:57:C6:76:17:9E:0D:BD:95
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/C_cPbxCN-EKMPp9FV8Z2F54NvZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.26.122.0/23
2.26.224.0/22
31.76.30.0/24
31.76.94.0/24
31.76.100.0/22
31.76.244.0/23
31.76.251.0-31.76.252.255
144.31.53.0/24
144.31.148.0/24
144.31.169.0/24
144.31.223.0/24
144.31.238.0/24
Signature Algorithm: sha256WithRSAEncryption
14:d4:f1:ec:a8:26:c5:08:30:e9:ad:6f:5e:14:19:b3:2c:17:
86:0f:2b:dd:26:1d:ad:27:da:32:7c:d3:33:01:14:86:33:cd:
b8:56:c6:63:1f:6f:60:14:1d:55:81:65:44:f9:5e:dd:31:0b:
48:cd:ad:f9:5e:de:ad:c6:24:1b:77:95:6a:28:31:13:b2:f6:
f5:02:18:96:4c:68:75:03:ad:30:26:68:82:3e:1b:95:ad:46:
fa:d1:a3:d8:bf:54:8e:97:6d:cb:c9:0c:13:6d:d4:f8:0d:e4:
82:4b:72:fa:50:26:45:7b:92:2b:61:a1:45:cd:80:47:a2:e3:
cb:52:ce:36:14:02:90:03:36:a4:66:20:eb:fa:85:21:6f:f9:
81:8a:7b:14:f3:11:97:ec:df:79:cc:b4:1c:95:23:c7:40:e2:
8d:8c:af:3e:be:aa:0f:85:3c:ad:68:28:c0:0b:fe:66:f2:c3:
19:cc:ed:68:aa:36:1a:09:b8:c5:5d:4e:3a:4d:c4:2d:4d:d7:
4b:65:17:13:6d:24:be:10:62:4b:e5:b4:63:c8:a1:20:fc:a9:
f9:47:09:12:48:d3:e3:6d:9f:78:07:c7:89:51:ce:a2:0f:92:
6f:d2:e8:6b:ff:11:1d:2f:e7:ea:d3:a6:f3:c3:ad:39:20:0a:
cc:f3:4e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 04:04:32 2026 by rpki-client