Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/JoRZb6wnnFqboc1Hfworo-INSTo.roa
File: JoRZb6wnnFqboc1Hfworo-INSTo.roa (raw, json)
Hash identifier: 3kFMMmmewFn/VnOgm6ByD7QgvC9zd1GMeXvRH0/hyaw=
Subject key identifier: 26:84:59:6F:AC:27:9C:5A:9B:A1:CD:47:7F:0A:2B:A3:E2:0D:49:3A
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 019DD52B13BC02E5961554AC0D2AA54E2913
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/JoRZb6wnnFqboc1Hfworo-INSTo.roa
Signing time: Tue 28 Apr 2026 17:37:43 +0000
ROA not before: Tue 28 Apr 2026 17:37:43 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 45.11.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 May 2026 17:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d5:2b:13:bc:02:e5:96:15:54:ac:0d:2a:a5:4e:29:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Apr 28 17:37:43 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2684596fac279c5a9ba1cd477f0a2ba3e20d493a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:89:64:94:09:01:53:a3:16:5b:20:07:c9:eb:
7c:f7:2c:84:40:6d:b2:55:6b:47:b4:27:3e:4e:34:
90:63:3c:ea:5d:e9:fd:13:d7:30:af:ff:0f:69:26:
82:6c:21:da:b3:2c:93:e8:4e:c0:1a:c4:43:a9:6a:
a9:89:d8:9b:88:02:e5:6a:45:0f:6d:59:a3:65:e0:
09:72:9b:18:c7:d5:dd:ee:cb:39:56:6d:7e:be:9b:
d5:1a:42:aa:fe:56:fb:97:80:53:e3:2a:38:7c:22:
25:7e:95:57:51:01:fd:f8:de:b8:40:80:7a:84:95:
3e:b2:56:25:8d:1f:11:8e:57:d2:a1:70:6b:e9:f1:
1c:df:f1:2e:9b:6f:5c:f7:c7:50:9d:98:9c:65:74:
94:af:b2:b2:18:88:b9:21:5c:ee:2f:82:86:23:15:
d2:32:78:1c:2f:58:3f:04:41:91:b8:7a:32:ae:29:
c7:83:08:18:c5:ba:8a:b0:88:67:d7:28:3c:23:32:
5e:c9:ba:35:1d:e2:e9:22:33:40:1b:25:62:d8:66:
45:ea:cd:dc:3b:80:9c:3a:8d:23:88:65:7c:9b:d7:
6a:d8:00:c3:fb:1e:8b:23:99:9e:22:f3:e7:4a:d0:
b1:c8:14:f9:87:53:16:fd:b8:e3:84:86:c1:15:af:
c2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:84:59:6F:AC:27:9C:5A:9B:A1:CD:47:7F:0A:2B:A3:E2:0D:49:3A
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/JoRZb6wnnFqboc1Hfworo-INSTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.186.0/24
Signature Algorithm: sha256WithRSAEncryption
be:f6:33:3d:8b:08:18:6a:53:14:6b:81:d9:f3:26:c2:88:3c:
13:34:69:f5:0f:32:29:aa:af:bd:09:e9:25:53:24:cf:71:43:
3c:78:d3:b6:ed:e7:c9:ae:7d:5d:45:47:18:e3:d1:3d:33:fb:
41:e8:96:61:79:94:34:58:fa:50:41:88:a9:e6:bd:02:f0:ce:
bf:ef:c5:04:20:cb:56:0f:29:26:9a:66:ce:b7:aa:5e:bd:7c:
1c:ba:e5:55:d1:b0:64:83:b1:58:ec:4a:63:af:65:ba:ea:21:
fc:4f:49:a6:87:ab:7f:f6:84:9c:c3:42:ab:2d:0a:ec:4b:6d:
60:fa:af:de:7c:0b:8f:b0:5a:2a:e4:49:86:ba:ae:98:81:64:
8d:ae:8a:21:be:be:3a:56:5a:2b:8a:43:bf:59:5d:8a:9b:38:
04:20:cb:69:dd:e6:43:db:29:84:ae:4d:34:0e:4a:d7:11:58:
ed:5d:c0:a3:15:80:4b:b8:c0:bd:34:11:c6:1e:e9:08:ad:6a:
c7:1c:57:fe:4b:19:bd:d9:42:30:d8:7e:4b:09:d2:62:25:c0:
24:6d:1e:b0:f8:2e:3c:85:bb:d6:dc:36:19:c2:fa:c2:a4:1b:
36:14:f0:db:c1:2a:a1:eb:fc:98:98:c4:b8:a4:f1:87:30:8e:
e2:91:cd:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ3VKxO8AuWWFVSsDSqlTikTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2QwMjJhMjQwY2U3MWUwYTZlMWU5YWFlMDExMmRhODQw
Y2MzNGIwHhcNMjYwNDI4MTczNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjg0NTk2ZmFjMjc5YzVhOWJhMWNkNDc3ZjBhMmJhM2UyMGQ0OTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoolklAkBU6MWWyAHyet89yyEQG2y
VWtHtCc+TjSQYzzqXen9E9cwr/8PaSaCbCHasyyT6E7AGsRDqWqpidibiALlakUP
bVmjZeAJcpsYx9Xd7ss5Vm1+vpvVGkKq/lb7l4BT4yo4fCIlfpVXUQH9+N64QIB6
hJU+slYljR8RjlfSoXBr6fEc3/Eum29c98dQnZicZXSUr7KyGIi5IVzuL4KGIxXS
MngcL1g/BEGRuHoyrinHgwgYxbqKsIhn1yg8IzJeybo1HeLpIjNAGyVi2GZF6s3c
O4CcOo0jiGV8m9dq2ADD+x6LI5meIvPnStCxyBT5h1MW/bjjhIbBFa/CFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCaEWW+sJ5xam6HNR38KK6PiDUk6MB8GA1UdIwQY
MBaAFHw9AiokDOceCm4emq4BEtqEDMNLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYt
MDk0ODk4OWU2ZDU1LzEvSm9SWmI2d25uRnFib2MxSGZ3b3JvLUlOU1RvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYtMDk0ODk4OWU2ZDU1
LzEvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQu6MA0G
CSqGSIb3DQEBCwUAA4IBAQC+9jM9iwgYalMUa4HZ8ybCiDwTNGn1DzIpqq+9Cekl
UyTPcUM8eNO27efJrn1dRUcY49E9M/tB6JZheZQ0WPpQQYip5r0C8M6/78UEIMtW
DykmmmbOt6pevXwcuuVV0bBkg7FY7Epjr2W66iH8T0mmh6t/9oScw0KrLQrsS21g
+q/efAuPsFoq5EmGuq6YgWSNroohvr46VlorikO/WV2KmzgEIMtp3eZD2ymErk00
DkrXEVjtXcCjFYBLuMC9NBHGHukIrWrHHFf+Sxm92UIw2H5LCdJiJcAkbR6w+C48
hbvW3DYZwvrCpBs2FPDbwSqh6/yYmMS4pPGHMI7ikc1u
-----END CERTIFICATE-----
Generated at Sat May 2 01:25:32 2026 by rpki-client