Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/vCi8y6cC59syWqt6lF2ZMzwpwdc.roa
File: vCi8y6cC59syWqt6lF2ZMzwpwdc.roa (raw, json)
Hash identifier: yVRlL7f8t7GGBZPTG8IPCwC2zG9oSEYadbTcCuaGPW8=
Subject key identifier: BC:28:BC:CB:A7:02:E7:DB:32:5A:AB:7A:94:5D:99:33:3C:29:C1:D7
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019CB5A443AF940047A41C96D6A596A5819E
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/vCi8y6cC59syWqt6lF2ZMzwpwdc.roa
Signing time: Tue 03 Mar 2026 21:39:27 +0000
ROA not before: Tue 03 Mar 2026 21:39:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216075
IP address blocks: 103.102.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b5:a4:43:af:94:00:47:a4:1c:96:d6:a5:96:a5:81:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Mar 3 21:39:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bc28bccba702e7db325aab7a945d99333c29c1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a4:99:f0:1f:f1:15:8c:5e:06:c8:b1:16:8d:
3b:e5:42:32:d1:03:39:95:e1:19:55:0e:29:92:5f:
0e:2c:6f:f9:6d:79:a1:da:4f:23:dc:cb:a9:3f:c9:
67:98:56:6a:fc:32:9f:cc:2f:01:4f:a3:72:31:1b:
69:33:a5:12:51:fd:60:8a:c2:2a:39:d9:55:31:5c:
bc:3f:ad:84:ab:2c:e1:a4:49:8b:0c:69:c6:e1:da:
79:fd:62:f0:04:bd:bf:03:46:43:d6:50:cc:79:cf:
a7:a8:37:b9:83:c6:68:8d:29:91:94:53:ed:f7:4b:
d8:f7:76:e5:d4:07:6f:94:e2:7a:b7:c6:f5:52:d3:
65:83:a6:b6:1f:55:11:8b:21:06:1d:bd:4f:50:82:
99:94:48:c8:70:49:17:e1:fb:f7:90:ea:5e:8c:11:
87:7b:f7:e9:16:a6:a9:34:ea:f7:b9:d0:ed:8f:f6:
eb:88:5f:43:de:03:30:3b:88:1f:f2:cd:81:84:03:
52:06:12:19:1f:d0:15:84:00:ea:25:ca:d1:0b:7d:
a4:ae:dc:0c:03:33:a6:0c:a2:07:28:3a:3f:7e:2d:
95:7d:e1:fd:f6:4c:70:7c:51:b9:75:d9:8e:1f:de:
e4:be:6b:6a:eb:c2:41:61:77:57:3b:db:87:22:87:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:28:BC:CB:A7:02:E7:DB:32:5A:AB:7A:94:5D:99:33:3C:29:C1:D7
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/vCi8y6cC59syWqt6lF2ZMzwpwdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.135.0/24
Signature Algorithm: sha256WithRSAEncryption
69:87:cc:00:c5:a9:27:86:c2:48:5b:3b:03:38:47:1d:92:7c:
36:cd:c3:a7:27:d1:70:8a:25:93:55:92:da:b4:b3:bb:92:23:
a5:f5:08:4e:84:ba:62:16:93:0e:69:06:4d:5a:96:85:19:69:
a9:3f:1a:a9:36:c4:a1:6c:84:8a:79:aa:0e:44:90:ab:66:30:
96:b7:eb:86:5a:c8:62:27:d2:95:0d:f1:b1:cb:f1:46:ab:41:
b2:a2:9c:f6:3f:e8:76:28:4d:5d:bf:a6:8f:d9:75:57:d9:df:
91:40:25:32:a2:2d:17:e9:08:d3:6f:d4:85:aa:d3:a5:16:7e:
0c:7b:68:d2:e0:a4:f5:50:d2:27:49:98:85:3d:8e:51:61:7b:
c0:ac:17:b3:8e:f5:b3:2f:b3:88:d6:a5:ce:89:a3:47:99:b2:
72:55:02:3b:e0:2d:07:58:b0:1a:f8:14:a4:65:47:16:5e:7e:
01:71:9f:20:37:10:1e:cd:33:2c:73:49:c4:48:4c:cc:a0:7c:
01:d8:e9:2c:7a:4d:4f:e8:f6:94:8f:3c:03:56:ee:22:0d:77:
6c:22:b4:ec:bd:0c:67:64:5c:a6:02:e9:ca:02:ab:5d:2d:40:
fc:d4:b2:43:24:c3:25:8b:e9:f9:a5:70:0d:47:d3:15:19:84:
1b:96:44:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZy1pEOvlABHpByW1qWWpYGeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjYwMzAzMjEzOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzI4YmNjYmE3MDJlN2RiMzI1YWFiN2E5NDVkOTkzMzNjMjljMWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aSZ8B/xFYxeBsixFo075UIy0QM5
leEZVQ4pkl8OLG/5bXmh2k8j3MupP8lnmFZq/DKfzC8BT6NyMRtpM6USUf1gisIq
OdlVMVy8P62EqyzhpEmLDGnG4dp5/WLwBL2/A0ZD1lDMec+nqDe5g8ZojSmRlFPt
90vY93bl1AdvlOJ6t8b1UtNlg6a2H1URiyEGHb1PUIKZlEjIcEkX4fv3kOpejBGH
e/fpFqapNOr3udDtj/briF9D3gMwO4gf8s2BhANSBhIZH9AVhADqJcrRC32krtwM
AzOmDKIHKDo/fi2VfeH99kxwfFG5ddmOH97kvmtq68JBYXdXO9uHIoeqlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLwovMunAufbMlqrepRdmTM8KcHXMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvdkNpOHk2Y0M1OXN5V3F0NmxGMlpNendwd2RjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2aHMA0G
CSqGSIb3DQEBCwUAA4IBAQBph8wAxaknhsJIWzsDOEcdknw2zcOnJ9FwiiWTVZLa
tLO7kiOl9QhOhLpiFpMOaQZNWpaFGWmpPxqpNsShbISKeaoORJCrZjCWt+uGWshi
J9KVDfGxy/FGq0Gyopz2P+h2KE1dv6aP2XVX2d+RQCUyoi0X6QjTb9SFqtOlFn4M
e2jS4KT1UNInSZiFPY5RYXvArBezjvWzL7OI1qXOiaNHmbJyVQI74C0HWLAa+BSk
ZUcWXn4BcZ8gNxAezTMsc0nESEzMoHwB2Oksek1P6PaUjzwDVu4iDXdsIrTsvQxn
ZFymAunKAqtdLUD81LJDJMMli+n5pXANR9MVGYQblkQY
-----END CERTIFICATE-----
Generated at Thu Mar 12 13:39:27 2026 by rpki-client