Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/NyVt7USxMdVWumVZIuI6fFoU-nM.roa
File: NyVt7USxMdVWumVZIuI6fFoU-nM.roa (raw, json)
Hash identifier: JrTDs0Alcy6xh02FG8/osf7yxdPgrgUMAPjrFSJhhv0=
Subject key identifier: 37:25:6D:ED:44:B1:31:D5:56:BA:65:59:22:E2:3A:7C:5A:14:FA:73
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 019E735D2E0854F02AFD5373BC92D4BF0387
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/NyVt7USxMdVWumVZIuI6fFoU-nM.roa
Signing time: Fri 29 May 2026 10:52:26 +0000
ROA not before: Fri 29 May 2026 10:52:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 39707
IP address blocks: 92.39.96.0/24 maxlen: 24
92.39.97.0/24 maxlen: 24
92.39.98.0/24 maxlen: 24
92.39.99.0/24 maxlen: 24
92.39.100.0/24 maxlen: 24
92.39.101.0/24 maxlen: 24
92.39.102.0/24 maxlen: 24
92.39.103.0/24 maxlen: 24
213.234.24.0/24 maxlen: 24
213.234.25.0/24 maxlen: 24
213.234.26.0/24 maxlen: 24
213.234.27.0/24 maxlen: 24
213.234.28.0/24 maxlen: 24
213.234.29.0/24 maxlen: 24
213.234.30.0/24 maxlen: 24
213.234.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:73:5d:2e:08:54:f0:2a:fd:53:73:bc:92:d4:bf:03:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: May 29 10:52:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=37256ded44b131d556ba655922e23a7c5a14fa73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3e:de:0b:79:c3:c5:e9:9b:db:4b:e2:40:9c:
25:ee:2f:a9:57:4b:01:5b:b9:24:ec:46:db:14:63:
6f:f2:44:74:10:1a:52:73:71:3e:24:4d:78:3c:ee:
b5:66:cb:0d:08:32:43:d0:10:17:ef:1a:08:f1:16:
34:e8:1e:38:90:bb:68:f5:e9:bb:60:cd:2e:9d:f6:
0f:69:2b:ed:e0:37:2d:5e:2f:8c:fa:57:0d:ed:84:
fe:11:da:57:ad:d1:12:3a:1f:3e:8b:ee:88:39:c3:
98:94:26:61:36:33:f9:f0:91:16:73:e6:7d:d6:35:
b2:13:76:84:b9:14:b6:90:33:fe:47:26:2e:de:78:
b3:68:75:6d:30:a3:cf:ab:73:fa:95:75:75:5e:ab:
19:96:29:4d:75:08:e0:a0:59:60:a0:57:d4:47:e0:
20:e8:df:df:fc:2e:33:c1:89:34:10:47:06:a8:6b:
5e:a9:4d:9e:52:7a:f5:a4:82:95:bd:73:f1:7b:d2:
64:2f:99:e1:94:06:11:d1:72:e8:5a:b6:36:84:3a:
88:15:61:75:73:2e:ed:80:1c:98:61:9f:23:17:eb:
69:a6:78:75:9e:a8:3c:80:c0:32:f4:c7:b9:9f:de:
7f:2e:cc:65:cd:7e:0a:fc:99:87:a0:23:39:fe:4b:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:25:6D:ED:44:B1:31:D5:56:BA:65:59:22:E2:3A:7C:5A:14:FA:73
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/NyVt7USxMdVWumVZIuI6fFoU-nM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.96.0/21
213.234.24.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:cd:99:d7:7e:2a:d3:18:88:0e:d0:cc:8c:03:4a:a5:29:d8:
fc:0c:5b:ee:b4:cc:60:97:ca:ab:55:50:6c:9c:a8:0b:80:55:
f4:f3:66:e1:a7:af:67:44:14:94:f1:ac:e0:88:19:d2:ba:ad:
54:21:18:1e:6b:d4:11:39:6c:1a:ab:dc:ba:77:00:eb:ec:0d:
e4:5f:11:14:6a:c3:6a:83:6d:33:15:0c:28:db:e1:5b:d9:9a:
39:f7:d0:6f:d6:ac:b7:24:67:73:d5:a9:e6:2a:86:92:fb:79:
e4:d0:13:9b:a8:3f:68:cc:ee:72:8d:0f:84:62:f6:42:13:96:
87:2c:d7:99:dd:2c:44:6b:74:44:8c:53:c1:fa:76:db:b0:81:
5a:9c:56:79:f2:95:36:64:ad:2d:42:ef:50:a0:36:38:60:c6:
90:d0:d5:fc:67:bc:e4:57:e7:f2:db:81:ef:42:7e:95:88:82:
52:55:0d:14:63:ec:39:21:57:e1:62:76:ac:d3:4f:d9:d7:bb:
82:48:ba:42:98:cb:40:5f:88:ad:38:82:fa:06:1d:af:0b:bf:
92:7f:9b:a7:56:44:61:1b:68:07:7f:34:81:c1:4b:14:d2:9f:
a6:f9:5f:be:4d:a4:1c:1f:a4:32:58:28:7b:f4:ec:83:46:6f:
b4:cf:49:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 00:05:41 2026 by rpki-client