Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/6iQfTYqoXvmViLJLe7e0ImnPEoU.roa
File: 6iQfTYqoXvmViLJLe7e0ImnPEoU.roa (raw, json)
Hash identifier: bmzgQ+lo0I+77ZI600dSAP/2C2bN9eOhU3VKZg/+e1w=
Subject key identifier: EA:24:1F:4D:8A:A8:5E:F9:95:88:B2:4B:7B:B7:B4:22:69:CF:12:85
Certificate issuer: /CN=338c1868b56380e08c45f81ffe61dd3281d6697e
Certificate serial: 019C81BC4D33C478F3F1EBDC2139E200301F
Authority key identifier: 33:8C:18:68:B5:63:80:E0:8C:45:F8:1F:FE:61:DD:32:81:D6:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M4wYaLVjgOCMRfgf_mHdMoHWaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/6iQfTYqoXvmViLJLe7e0ImnPEoU.roa
Signing time: Sat 21 Feb 2026 19:45:27 +0000
ROA not before: Sat 21 Feb 2026 19:45:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213507
IP address blocks: 2a13:a740::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/M4wYaLVjgOCMRfgf_mHdMoHWaX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/M4wYaLVjgOCMRfgf_mHdMoHWaX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/M4wYaLVjgOCMRfgf_mHdMoHWaX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Feb 2026 15:05:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:81:bc:4d:33:c4:78:f3:f1:eb:dc:21:39:e2:00:30:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338c1868b56380e08c45f81ffe61dd3281d6697e
Validity
Not Before: Feb 21 19:45:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ea241f4d8aa85ef99588b24b7bb7b42269cf1285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8e:d0:54:67:13:5e:89:6f:90:71:2a:e2:a4:
7d:78:4d:9c:3e:f8:a2:f8:be:4a:d2:55:2a:4b:89:
47:49:98:6b:fa:9c:1c:3e:00:d2:eb:1f:31:aa:30:
cb:be:a9:46:d2:b3:df:e8:5d:b2:a0:0d:04:58:1a:
26:f9:d2:33:27:8c:e9:14:40:72:f4:8b:56:a7:a0:
6e:96:47:ef:24:11:af:58:dc:fc:d2:d5:92:5c:62:
3c:c2:37:0d:7f:a3:ad:93:8d:4e:f4:a1:1a:12:97:
3d:6c:f5:a0:5f:5c:6b:25:8d:bf:52:97:01:11:00:
c8:2c:46:fc:a9:fd:de:ea:4b:a4:ac:db:81:93:c3:
82:82:74:12:e9:b5:a2:19:db:39:ba:f6:b1:f3:04:
6b:89:fc:27:80:53:5a:6f:19:60:47:35:45:d7:8b:
02:cc:fd:fc:2c:cd:e5:dc:fd:d5:74:03:1b:3f:c3:
20:11:79:75:28:d7:07:d0:41:3c:c2:72:bb:87:2d:
50:d2:df:5d:7d:f6:87:0d:62:20:46:cd:41:51:ea:
44:72:8e:0f:0a:c9:e8:81:11:2f:74:e7:62:52:cd:
ae:4f:8b:34:27:94:9f:c3:36:ba:64:79:7d:0c:f6:
06:9d:b1:8e:dc:14:2b:2d:d3:66:49:b8:6c:dd:06:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:24:1F:4D:8A:A8:5E:F9:95:88:B2:4B:7B:B7:B4:22:69:CF:12:85
X509v3 Authority Key Identifier:
keyid:33:8C:18:68:B5:63:80:E0:8C:45:F8:1F:FE:61:DD:32:81:D6:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M4wYaLVjgOCMRfgf_mHdMoHWaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/6iQfTYqoXvmViLJLe7e0ImnPEoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/42411e-e7ab-4645-9a4b-16dba543b558/1/M4wYaLVjgOCMRfgf_mHdMoHWaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a740::/29
Signature Algorithm: sha256WithRSAEncryption
7e:a7:49:ea:e3:56:ba:32:ba:c2:55:74:5f:96:6b:2e:b4:37:
ec:73:3c:34:f5:19:ef:26:65:7c:6d:0f:d3:76:81:a8:02:82:
79:47:9b:33:04:75:03:42:1d:ee:53:cc:9c:aa:a8:04:bc:6c:
03:f1:8c:7c:f9:f7:fd:82:36:95:7c:b9:da:7a:c9:d6:0d:df:
a1:a1:79:f0:81:7e:9d:84:aa:4e:69:e1:d4:f9:71:4b:eb:98:
40:72:00:46:85:65:54:30:45:1a:06:23:ee:1d:4c:74:e6:6a:
60:20:5e:8f:05:ca:ed:a4:58:b8:d2:57:a6:ea:af:04:7d:6e:
ea:e2:ff:71:92:84:ea:69:9d:08:59:4d:7b:23:ec:9b:70:48:
51:90:cd:ad:94:c8:f3:9a:89:57:5a:a4:34:a5:1f:34:e2:27:
4d:2f:1c:0f:25:2d:e9:31:60:87:6b:96:5a:a5:db:d1:31:15:
c0:81:a1:10:d9:44:bb:74:41:fc:8d:98:1a:6b:a1:7d:3b:68:
dd:93:d4:fa:3a:08:0f:ab:2b:86:5f:51:04:6f:4f:b3:6a:2b:
f4:8a:13:af:ef:f6:5f:c7:4e:61:92:3c:d5:66:84:d2:aa:1a:
a7:3c:7e:4a:0d:00:88:b8:4e:61:6c:96:fd:db:3e:c7:15:a5:
b4:fa:a3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 26 18:51:20 2026 by rpki-client