Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/VnEaX5mEUnAqL58iO3BaPk6yzNM.roa
File: VnEaX5mEUnAqL58iO3BaPk6yzNM.roa (raw, json)
Hash identifier: ZWHoAuzzQVQpRM0/xRGctWUOCAv8SSA9CMTEvmewTtk=
Subject key identifier: 56:71:1A:5F:99:84:52:70:2A:2F:9F:22:3B:70:5A:3E:4E:B2:CC:D3
Certificate issuer: /CN=8ef7c09c1a3f73ebe61740ab65e589f91655bded
Certificate serial: 019E7F81653433C701CE24F15A28D5C97E49
Authority key identifier: 8E:F7:C0:9C:1A:3F:73:EB:E6:17:40:AB:65:E5:89:F9:16:55:BD:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvfAnBo_c-vmF0CrZeWJ-RZVve0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/VnEaX5mEUnAqL58iO3BaPk6yzNM.roa
Signing time: Sun 31 May 2026 19:27:26 +0000
ROA not before: Sun 31 May 2026 19:27:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42337
IP address blocks: 195.24.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/jvfAnBo_c-vmF0CrZeWJ-RZVve0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/jvfAnBo_c-vmF0CrZeWJ-RZVve0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jvfAnBo_c-vmF0CrZeWJ-RZVve0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7f:81:65:34:33:c7:01:ce:24:f1:5a:28:d5:c9:7e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef7c09c1a3f73ebe61740ab65e589f91655bded
Validity
Not Before: May 31 19:27:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=56711a5f998452702a2f9f223b705a3e4eb2ccd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:04:e8:1f:ca:34:c5:80:25:f0:a9:29:0b:
2f:17:79:f0:8f:75:e9:42:19:6c:f3:0c:fa:a5:9d:
01:86:cc:7a:e0:25:01:3b:1e:d4:2a:18:da:42:f4:
0c:a4:5e:f8:67:12:6f:9f:0c:d1:3b:51:67:9c:0d:
16:cb:08:81:a7:b2:15:cd:ec:c3:ff:7d:14:fa:aa:
5b:61:a3:89:16:da:8b:54:68:29:2d:da:71:65:bb:
16:e8:fa:25:39:1a:a6:56:de:a5:99:9f:e6:55:c2:
d8:60:10:45:78:96:77:2a:85:d9:3f:19:59:46:ab:
2b:d8:6f:b1:a3:d1:1c:28:89:eb:f5:4d:51:21:37:
4b:68:e1:ec:9c:b2:4c:47:72:af:49:10:b1:65:3e:
55:9d:e2:43:70:49:b2:2e:46:04:5e:8b:53:9a:be:
04:5f:7c:24:23:f7:a0:fd:f8:f5:ed:d5:7e:72:b9:
7c:46:88:88:e4:a0:d3:a2:40:d1:ad:d6:86:a8:15:
e7:4b:4e:a0:ca:2b:37:30:e7:29:a6:60:08:e2:00:
ed:10:c0:e2:ca:96:07:88:15:40:96:37:b7:9b:61:
3c:bd:ca:57:28:cb:ff:b4:1b:16:97:c6:e3:b9:f7:
6b:d6:39:43:b4:84:c5:1f:b0:e2:7b:36:a1:1f:55:
ea:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:71:1A:5F:99:84:52:70:2A:2F:9F:22:3B:70:5A:3E:4E:B2:CC:D3
X509v3 Authority Key Identifier:
keyid:8E:F7:C0:9C:1A:3F:73:EB:E6:17:40:AB:65:E5:89:F9:16:55:BD:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvfAnBo_c-vmF0CrZeWJ-RZVve0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/VnEaX5mEUnAqL58iO3BaPk6yzNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8c6d88-52c3-47e6-8009-f62be9e8a671/1/jvfAnBo_c-vmF0CrZeWJ-RZVve0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.24.236.0/24
Signature Algorithm: sha256WithRSAEncryption
88:0e:da:71:86:c7:86:c4:64:a8:df:d2:5d:18:de:c3:4a:18:
88:a7:2f:8f:96:bc:6c:bb:3b:47:9d:ce:45:86:18:45:08:42:
6e:02:8b:90:c9:3e:49:ab:2e:e9:08:0b:a9:83:2f:7b:37:4e:
af:78:d9:f5:be:98:78:e6:52:d6:d6:cd:2b:49:a1:d0:01:b4:
17:7c:a8:1a:3f:20:0d:2a:0f:97:5a:27:d8:47:76:b0:dd:4e:
66:52:4f:8a:7b:df:7d:5b:24:a7:8d:cd:81:2c:44:9e:54:e0:
2e:28:f8:52:dd:bf:8c:4f:3f:d0:0d:01:72:5f:5e:cf:a7:08:
65:4a:39:ac:8f:d4:0f:69:1e:2a:83:96:44:4a:31:cc:c0:be:
a3:61:5d:1c:5c:40:8b:5b:59:7d:72:8c:c8:11:e1:fd:bc:1a:
4d:f9:0b:89:1c:48:27:c8:8d:b7:84:eb:52:29:8c:68:0d:38:
02:02:68:ac:37:b7:d6:18:f8:37:6f:d2:60:27:8f:b8:75:0e:
07:62:51:55:ba:85:8c:4a:d3:58:cd:97:00:8e:46:fb:60:cf:
c9:03:d0:b3:b5:2e:fa:13:b7:e3:06:d9:74:b7:75:80:67:c5:
44:d2:69:24:15:c0:65:ad:87:9c:b1:bb:fb:9c:ec:7d:9b:a9:
c2:d8:0e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:09:12 2026 by rpki-client