Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/PXUEThXrMGouCYgr_yi3-daiDvE.roa
File: PXUEThXrMGouCYgr_yi3-daiDvE.roa (raw, json)
Hash identifier: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=
Subject key identifier: 3D:75:04:4E:15:EB:30:6A:2E:09:88:2B:FF:28:B7:F9:D6:A2:0E:F1
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019EA60388EE5C9430C7EA29D7CA0614134C
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/PXUEThXrMGouCYgr_yi3-daiDvE.roa
Signing time: Mon 08 Jun 2026 06:55:09 +0000
ROA not before: Mon 08 Jun 2026 06:55:09 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 80.93.192.0/24 maxlen: 24
80.93.198.0/24 maxlen: 24
80.93.204.0/24 maxlen: 24
80.93.205.0/24 maxlen: 24
80.93.206.0/24 maxlen: 24
80.93.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 23:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a6:03:88:ee:5c:94:30:c7:ea:29:d7:ca:06:14:13:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jun 8 06:55:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3d75044e15eb306a2e09882bff28b7f9d6a20ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:dc:31:9c:ba:aa:6a:5a:78:c5:1f:01:1c:
d5:fa:5d:b8:55:ed:19:24:33:cf:43:c9:ce:0d:34:
45:95:31:b2:3f:8d:80:60:f8:e8:78:9b:c7:cc:af:
e1:e1:4c:1c:28:f0:65:ff:ce:e5:0c:1f:8f:72:6e:
ee:92:8c:73:fd:8a:99:4e:d2:4d:32:a8:5e:05:a4:
04:14:30:24:ba:e2:9d:55:f0:73:99:98:6c:ee:2b:
3e:ec:eb:d0:41:6a:a4:cd:2f:ae:1e:49:83:e4:3e:
43:d5:22:4a:ce:5d:61:fc:64:10:87:36:c6:43:cf:
64:ed:92:04:57:ce:4d:7c:ef:84:c8:ea:54:3f:f5:
8f:73:04:1d:18:00:1d:4d:6c:a3:a5:c3:f5:0b:31:
66:78:3e:64:b5:82:de:04:5e:ce:1d:3a:1d:c6:65:
28:45:18:e6:97:34:df:6e:0f:17:77:07:0c:60:bd:
fa:fd:fb:54:ec:16:39:07:ff:fd:40:05:98:55:e7:
7d:12:5a:f2:0d:d9:48:b1:9c:79:31:a7:73:d8:77:
25:77:9b:48:87:2c:f8:4e:c0:78:f8:96:55:c6:43:
5f:c1:dc:29:cd:cb:5b:c8:69:76:7c:30:d6:4d:a5:
2b:33:36:a8:80:68:46:1f:e8:36:c8:ef:d9:f6:f3:
3d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:75:04:4E:15:EB:30:6A:2E:09:88:2B:FF:28:B7:F9:D6:A2:0E:F1
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/PXUEThXrMGouCYgr_yi3-daiDvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.192.0/24
80.93.198.0/24
80.93.204.0/22
Signature Algorithm: sha256WithRSAEncryption
11:02:d1:9f:f7:f1:5c:af:5f:8b:45:84:fb:d3:95:5d:51:04:
20:fd:8e:49:73:3b:2f:95:58:db:5a:36:c7:0c:57:06:01:a7:
e7:42:f6:e3:5e:2d:b6:de:71:9f:0e:3c:ac:68:e2:ad:7f:49:
01:c1:0b:74:89:36:6d:64:9c:e5:49:91:b9:ff:4b:3c:f5:49:
f1:04:ee:cc:a4:38:1d:d7:87:df:97:5c:ac:3e:67:ee:01:ac:
59:73:07:e5:68:3e:53:9a:7f:86:97:3c:ae:70:a3:26:20:45:
8f:bb:f2:78:11:6b:f1:95:5a:8c:c9:6c:94:b0:6e:7e:8a:5e:
d3:76:d9:a1:7e:dd:4d:96:50:25:00:a2:dd:82:bb:d0:a7:5a:
aa:61:2d:fd:b4:d5:dd:47:3e:5e:8d:ec:41:a8:05:be:70:10:
05:8f:6e:88:25:62:b5:95:ae:66:59:e5:ef:64:5a:5c:6b:ee:
1a:3c:81:f7:fb:62:4f:56:cc:06:4a:b2:6c:43:3f:34:80:88:
a4:19:87:9b:99:27:27:25:c3:74:47:50:64:b9:d3:10:66:c9:
79:aa:5d:72:1c:59:e9:21:58:59:7b:85:17:8b:48:9b:0c:e3:
a9:4d:07:f6:8a:63:8c:05:f4:0e:15:1c:4c:a0:cc:15:6a:85:
8d:7e:0b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 07:18:23 2026 by rpki-client