Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/eWt51NtuPNvIS6HxDaX9L2BrBjA.roa
File: eWt51NtuPNvIS6HxDaX9L2BrBjA.roa (raw, json)
Hash identifier: 10KwVSGDSftJHeU/pZbCFDl2bTnuaPigGssxY4rv+DM=
Subject key identifier: 79:6B:79:D4:DB:6E:3C:DB:C8:4B:A1:F1:0D:A5:FD:2F:60:6B:06:30
Certificate issuer: /CN=2b388cd8125687c296c005e3fc7582f0d2d5f430
Certificate serial: 019E3F03D897D9A8776EFB01123D3C84B0C5
Authority key identifier: 2B:38:8C:D8:12:56:87:C2:96:C0:05:E3:FC:75:82:F0:D2:D5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KziM2BJWh8KWwAXj_HWC8NLV9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/eWt51NtuPNvIS6HxDaX9L2BrBjA.roa
Signing time: Tue 19 May 2026 06:54:36 +0000
ROA not before: Tue 19 May 2026 06:54:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198433
IP address blocks: 195.225.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/KziM2BJWh8KWwAXj_HWC8NLV9DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/KziM2BJWh8KWwAXj_HWC8NLV9DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KziM2BJWh8KWwAXj_HWC8NLV9DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:03:d8:97:d9:a8:77:6e:fb:01:12:3d:3c:84:b0:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b388cd8125687c296c005e3fc7582f0d2d5f430
Validity
Not Before: May 19 06:54:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=796b79d4db6e3cdbc84ba1f10da5fd2f606b0630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:02:e5:6a:79:46:10:a9:53:d4:51:23:61:
51:98:76:42:8f:3c:bc:fc:3f:6d:62:b6:2b:bf:17:
76:1c:d1:5f:3d:46:c3:52:bf:0d:72:ad:f9:95:6d:
b4:3e:f9:07:c7:ae:37:14:6b:cd:22:8f:69:aa:a9:
68:9e:4a:bf:02:f2:29:6c:e0:37:fd:cf:d8:84:5b:
c3:8c:fe:2a:3f:ef:e6:6b:4e:bd:51:40:d5:4c:fc:
81:9f:09:61:98:71:48:ca:33:be:77:48:be:d6:33:
dc:72:8b:fc:00:a3:01:ea:63:d3:f7:e6:ee:49:83:
0f:a4:a7:b4:fe:5d:bd:e9:12:ed:e5:25:d9:ce:fe:
28:a3:3e:76:4e:d1:fe:65:2e:a0:56:20:ce:39:c0:
cf:0f:b1:37:bf:f1:77:d4:f5:bb:57:1c:00:d6:ff:
99:5d:b2:a9:83:09:55:c3:10:42:96:ac:09:9f:1b:
cd:71:3d:fb:b7:73:8c:ca:5e:c7:f8:49:a0:39:b9:
5f:9e:34:c5:9e:aa:58:cb:52:bb:e3:30:2b:0c:58:
1d:ee:e1:a3:a9:28:fc:f8:77:24:15:8d:91:df:f3:
ed:01:dc:c9:34:84:4a:cd:2b:4c:1f:31:83:fb:d9:
14:b1:1d:3a:6f:76:76:06:45:e7:cf:2b:56:e8:25:
c9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6B:79:D4:DB:6E:3C:DB:C8:4B:A1:F1:0D:A5:FD:2F:60:6B:06:30
X509v3 Authority Key Identifier:
keyid:2B:38:8C:D8:12:56:87:C2:96:C0:05:E3:FC:75:82:F0:D2:D5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KziM2BJWh8KWwAXj_HWC8NLV9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/eWt51NtuPNvIS6HxDaX9L2BrBjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7caf72-f042-4ef8-8339-eb360c418e53/1/KziM2BJWh8KWwAXj_HWC8NLV9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:17:65:be:80:36:bc:ee:67:6b:f2:2b:6f:c6:cd:17:35:8d:
65:9e:86:56:63:fe:44:ec:bd:06:7a:c8:e7:e8:18:59:00:53:
2d:90:32:34:f5:f4:ed:6a:dc:e1:cc:3e:db:2a:f0:2f:95:f8:
79:3c:5f:28:96:db:a3:de:a0:24:7a:d5:b0:fb:31:a0:cc:a8:
9a:c1:4a:a9:20:00:53:b8:42:12:68:71:eb:a8:26:34:02:1f:
7f:94:88:55:c4:0e:ff:99:37:4b:a8:b5:6c:65:87:82:9d:0e:
21:57:7c:be:89:cd:0b:e8:a0:81:4e:f6:46:69:34:20:86:a0:
dd:71:5e:4b:4b:8b:7e:38:77:ea:91:3c:ac:83:45:fb:ac:2d:
fa:79:5c:86:b7:3a:c6:df:20:19:d5:e2:ad:ae:68:ba:a5:b1:
cd:cc:f2:46:cb:8c:ae:8e:b8:96:92:77:10:d4:d7:11:32:3b:
0a:1c:ed:db:f1:9f:83:f1:5b:c2:96:4f:a0:ed:5d:ee:ac:0e:
3a:84:29:f2:59:a1:b0:58:c2:ce:d7:35:33:2d:c0:b3:91:2f:
85:c0:10:37:3e:8f:3f:00:d9:cc:9c:7b:95:89:66:f6:5c:55:
a5:74:0b:ec:5a:c5:f6:15:c4:aa:ab:f8:83:b3:e7:10:2f:a5:
b3:32:83:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 00:15:38 2026 by rpki-client