Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UOMlEsrGUJRUV-Pi6fp6RGInekw.roa
File: UOMlEsrGUJRUV-Pi6fp6RGInekw.roa (raw, json)
Hash identifier: cWgpFQXkuK9N+bnE5mJC2iq1pMqe42LsJ1XUxl+Mmco=
Subject key identifier: 50:E3:25:12:CA:C6:50:94:54:57:E3:E2:E9:FA:7A:44:62:27:7A:4C
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 019F02D3B3E5CD8F6E8851BE394CA3D7CF0D
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UOMlEsrGUJRUV-Pi6fp6RGInekw.roa
Signing time: Fri 26 Jun 2026 07:27:36 +0000
ROA not before: Fri 26 Jun 2026 07:27:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 46.37.98.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:02:d3:b3:e5:cd:8f:6e:88:51:be:39:4c:a3:d7:cf:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jun 26 07:27:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=50e32512cac650945457e3e2e9fa7a4462277a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:eb:8f:8d:3d:d3:93:fa:97:9f:04:02:af:00:
13:00:b1:bf:02:8a:83:58:1d:78:45:e9:e3:30:57:
3a:6a:14:2f:62:80:53:f2:f6:1a:cb:4d:42:ec:c8:
a3:62:70:c9:14:90:5b:30:de:22:3b:bf:02:df:fb:
22:bf:a4:d7:69:57:49:30:70:35:89:95:a5:d0:b0:
32:66:cc:7c:27:e8:8b:33:90:4f:f3:55:1a:8c:bb:
39:bc:b4:68:a3:5a:eb:9a:21:7e:7f:c7:56:32:3d:
53:76:fc:35:ea:e0:9e:c3:02:d4:08:c9:a1:65:77:
95:14:76:ca:e1:13:7d:f5:e2:3c:54:18:e6:a8:7d:
ca:61:18:14:c9:ee:64:53:12:8c:90:52:9f:ac:77:
97:ea:06:77:be:82:75:ad:d6:61:08:1c:e8:a2:18:
aa:82:57:6d:aa:72:47:4a:52:8c:b7:25:7b:e8:5f:
c4:68:3b:b0:6d:e3:fd:50:2f:3a:2a:6f:86:6c:35:
a6:33:a5:bf:12:13:9c:81:bb:39:c6:a1:c8:90:89:
3b:54:0b:d3:8e:db:95:59:d6:f0:88:07:81:ee:59:
7d:42:b2:68:ad:52:cb:c1:57:d3:31:2f:91:d7:b6:
1c:e8:d6:2d:3d:fb:e3:ba:d2:0a:7c:14:1e:7d:87:
35:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E3:25:12:CA:C6:50:94:54:57:E3:E2:E9:FA:7A:44:62:27:7A:4C
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UOMlEsrGUJRUV-Pi6fp6RGInekw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.98.0/24
46.37.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:3c:22:d7:2d:7b:65:c0:1e:23:da:79:17:08:1f:74:f2:d7:
2a:0e:c1:e6:c3:ae:40:26:b7:31:a8:7c:3c:a9:3f:ec:e9:2a:
a9:de:2c:d6:74:e8:e1:1a:36:94:3f:8e:bc:db:27:e4:61:66:
b7:de:aa:e7:f8:9e:e1:7b:65:8c:9c:1f:33:54:8b:d9:e0:a0:
54:8b:51:c6:e6:3d:8b:d3:fb:4d:71:32:7b:3f:33:cc:01:74:
a9:6f:25:bc:1f:e8:4e:59:ce:ca:fa:6b:d4:4a:d4:85:a9:71:
77:51:f5:61:1b:7a:75:bf:86:1a:6e:4d:ff:45:61:1f:a8:08:
52:35:34:cc:7f:c9:13:58:6f:8e:d6:56:52:c0:43:38:7e:10:
32:43:90:6b:1f:f3:7e:e1:d3:b3:6d:d9:4e:ea:b4:51:34:24:
0f:c9:24:e9:93:c8:39:11:18:6a:dc:e8:56:65:7a:20:18:9c:
e4:7d:a1:65:4b:af:fa:74:64:d6:85:ca:18:26:2a:d7:94:23:
b9:95:9f:ac:52:af:de:ad:60:39:50:a9:92:9f:99:f9:be:cb:
c3:7a:f9:35:d5:39:a9:1b:af:ec:c3:98:64:ff:d5:22:87:ea:
4c:31:51:2d:19:20:4c:3b:e0:e0:2f:a9:16:bb:cd:93:fc:38:
21:12:65:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:00:07 2026 by rpki-client