Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/t_ByAeaBQNIrFb5bhmau53EuKWA.roa
File: t_ByAeaBQNIrFb5bhmau53EuKWA.roa (raw, json)
Hash identifier: AwzAqExXrWOFnUsxmRE0E2eT/V7WcGMDYvuPQOqWltg=
Subject key identifier: B7:F0:72:01:E6:81:40:D2:2B:15:BE:5B:86:66:AE:E7:71:2E:29:60
Certificate issuer: /CN=a1b527580582c07f0c676f5b423e7ba7d0349af3
Certificate serial: 019CD718C5FED8E32F56C764E7017D3BF1F0
Authority key identifier: A1:B5:27:58:05:82:C0:7F:0C:67:6F:5B:42:3E:7B:A7:D0:34:9A:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obUnWAWCwH8MZ29bQj57p9A0mvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/t_ByAeaBQNIrFb5bhmau53EuKWA.roa
Signing time: Tue 10 Mar 2026 09:34:10 +0000
ROA not before: Tue 10 Mar 2026 09:34:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 680
IP address blocks: 134.94.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/obUnWAWCwH8MZ29bQj57p9A0mvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/obUnWAWCwH8MZ29bQj57p9A0mvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/obUnWAWCwH8MZ29bQj57p9A0mvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d7:18:c5:fe:d8:e3:2f:56:c7:64:e7:01:7d:3b:f1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b527580582c07f0c676f5b423e7ba7d0349af3
Validity
Not Before: Mar 10 09:34:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b7f07201e68140d22b15be5b8666aee7712e2960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c0:34:78:7e:29:9e:0b:b9:35:56:aa:1b:52:
f5:db:e1:11:71:bb:5c:85:ad:b5:3d:4a:75:16:7b:
34:43:6a:b9:51:6d:84:7d:7b:58:f6:b9:ac:1a:23:
79:43:b7:aa:e4:c7:7b:2d:57:fc:23:84:63:71:be:
0c:0d:ac:1f:ae:cc:6a:78:eb:1b:32:48:d0:de:f4:
af:22:4b:f5:56:67:4a:26:e5:ac:2d:95:3c:36:08:
f2:e4:71:7c:53:a8:35:63:4d:8d:ab:f9:6c:7a:75:
bd:75:00:d8:3a:36:9f:11:8a:8e:69:00:fa:4e:e0:
0e:49:39:a7:45:b5:41:75:62:60:bb:39:76:70:50:
6f:b7:0a:83:1d:20:23:1c:91:2a:4a:7f:69:2b:1c:
b6:c8:63:5a:3e:85:ea:00:74:fa:de:cf:a9:0b:37:
65:5f:84:4f:ae:9f:93:76:95:fe:de:e8:70:82:92:
c9:0b:7c:4e:bb:0c:1d:6a:79:f3:cc:3f:8c:86:b4:
18:ea:05:9b:af:8c:54:f3:f5:f7:9b:8f:7c:87:b7:
42:39:ac:2a:a2:fb:19:54:c1:e5:d2:57:70:bf:95:
b3:5c:e4:bd:07:ef:ae:71:86:4e:a6:a4:c3:db:39:
54:f5:a0:4c:62:09:0c:97:95:a5:82:47:24:eb:f4:
c0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F0:72:01:E6:81:40:D2:2B:15:BE:5B:86:66:AE:E7:71:2E:29:60
X509v3 Authority Key Identifier:
keyid:A1:B5:27:58:05:82:C0:7F:0C:67:6F:5B:42:3E:7B:A7:D0:34:9A:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obUnWAWCwH8MZ29bQj57p9A0mvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/t_ByAeaBQNIrFb5bhmau53EuKWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/6b31ee-24fb-4c03-be2e-3776fd47dc65/1/obUnWAWCwH8MZ29bQj57p9A0mvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.94.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:5f:ec:75:05:29:1d:79:7e:27:a2:cb:0a:31:75:42:c2:86:
a6:44:71:7b:78:d2:21:99:68:39:66:d2:40:44:16:83:b3:4d:
60:77:fe:30:4f:25:84:b2:4d:04:c6:e6:00:56:90:67:67:8f:
6b:f7:57:26:5e:a4:81:2d:a2:e9:09:e6:ac:39:f6:1c:c7:31:
c8:90:7f:e8:4d:ff:00:14:25:22:18:76:29:55:97:42:b3:a3:
34:08:42:1e:1e:79:5c:eb:a0:3e:5c:05:bf:f6:5d:89:07:b4:
3d:f2:23:b7:42:77:ec:48:43:ab:06:e7:93:e5:58:a4:47:e6:
09:14:ed:c0:9f:5a:22:97:6a:1d:80:06:75:70:9f:46:9c:a0:
0e:7d:10:4c:da:f1:55:91:87:b8:fb:53:6a:d0:51:81:78:24:
63:9e:49:6f:e8:32:98:a5:92:8f:c1:a3:ab:39:19:3a:b6:6c:
fb:5d:ab:fe:cf:09:72:97:bc:0a:d7:76:9f:fb:03:9b:bf:b5:
ee:75:c8:73:e5:83:6d:40:cd:61:f6:37:d1:02:6b:96:92:a8:
29:b6:24:34:61:fd:74:a2:71:4a:44:63:37:91:83:1d:ad:69:
b7:88:5e:be:df:15:6c:dc:7c:9a:68:a4:2d:1c:29:bf:3e:f7:
d9:75:4a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:26:57 2026 by rpki-client