Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yrGe1giYiFqb8KNEn95n_cEAV4g.roa
File: yrGe1giYiFqb8KNEn95n_cEAV4g.roa (raw, json)
Hash identifier: PqbsR8D4YGwmFWmv31QqoUBTUMq86kqCaK+pMgxowcs=
Subject key identifier: CA:B1:9E:D6:08:98:88:5A:9B:F0:A3:44:9F:DE:67:FD:C1:00:57:88
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019E98A376FAACCDB70675DDBD1397F84F58
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yrGe1giYiFqb8KNEn95n_cEAV4g.roa
Signing time: Fri 05 Jun 2026 16:35:10 +0000
ROA not before: Fri 05 Jun 2026 16:35:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203516
IP address blocks: 194.146.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:98:a3:76:fa:ac:cd:b7:06:75:dd:bd:13:97:f8:4f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 5 16:35:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cab19ed60898885a9bf0a3449fde67fdc1005788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3c:e1:3d:78:b1:4d:9a:c8:2c:11:0a:88:99:
46:28:25:fe:54:45:6b:3e:65:39:c5:02:f1:aa:54:
57:d7:ab:68:c8:83:78:1b:22:6b:35:c1:2b:ab:58:
e1:2d:39:f0:56:f4:cc:54:96:f0:c5:54:bd:b7:b7:
b8:6b:05:c2:80:50:50:14:02:ff:88:b6:5c:86:c5:
14:ff:c5:9b:ff:39:1c:e6:c0:4a:9b:12:47:83:d6:
19:85:25:48:f0:53:ed:88:e5:6f:8a:0c:15:fe:a9:
04:99:60:5b:ad:7f:56:73:ac:20:57:ac:72:19:ca:
23:40:9e:9f:e4:ed:07:75:0c:0f:f6:93:a3:52:95:
c5:9d:b6:a6:b0:b8:4d:4d:b1:34:22:81:fa:ab:c6:
14:91:ec:7b:8c:4a:78:31:38:6e:2a:da:d9:b7:6f:
64:d2:4e:e8:9d:d9:cf:e5:f6:4d:dc:da:87:22:ab:
13:c9:3d:c4:5e:8b:68:c9:58:a4:fb:6d:52:8c:b0:
74:f6:49:18:02:aa:a7:aa:8c:00:13:3c:f1:06:84:
e7:d6:8d:e8:54:15:69:bd:3b:4f:69:63:0f:4e:4e:
09:5e:ee:44:f6:1e:24:7f:19:fa:27:fd:72:59:ea:
c9:bf:6a:8e:a3:41:cd:99:f8:57:91:de:97:aa:87:
f0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B1:9E:D6:08:98:88:5A:9B:F0:A3:44:9F:DE:67:FD:C1:00:57:88
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/yrGe1giYiFqb8KNEn95n_cEAV4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.47.0/24
Signature Algorithm: sha256WithRSAEncryption
36:cd:c5:2d:98:01:87:ff:0b:0b:50:3f:ec:16:c9:53:04:a5:
36:c7:81:e6:b5:d4:8c:d8:4d:2a:86:f1:c2:f4:a6:87:1f:8d:
c7:2f:0d:8e:75:54:a3:57:42:8f:e1:6d:8c:64:2c:65:17:94:
f5:0e:13:58:be:8a:7e:4d:b8:ae:39:aa:35:35:85:6c:09:3d:
ae:98:72:e9:1f:67:3e:f6:42:22:a2:b9:66:3a:82:97:17:99:
fb:f5:eb:e1:9a:6b:33:ca:e7:6c:e3:dd:28:6c:15:6a:78:c2:
6a:2b:1b:9e:c4:d3:86:b6:b7:83:ed:cd:b5:30:af:a7:f5:bd:
54:f2:33:ad:03:e8:61:b9:bb:3d:0d:7a:33:7f:81:bc:1d:52:
92:69:bb:f0:37:7f:ae:33:60:64:31:11:b4:30:e6:c6:0e:eb:
68:bd:04:3e:66:4b:88:bd:34:8d:ff:42:b1:4e:38:83:7d:88:
34:5a:71:45:f4:76:01:4a:14:4a:05:89:32:a6:4d:e6:1b:81:
52:64:0a:59:5f:5d:c7:7a:72:e4:46:01:45:f0:46:3f:0d:3c:
8f:e9:1a:d4:0c:af:f4:53:af:a7:ab:76:05:e4:ba:87:93:d9:
7d:3a:a9:1b:b6:f3:88:5a:50:21:27:a3:a7:c7:72:28:78:51:
37:bf:f5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 21:48:54 2026 by rpki-client