Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/b00r-C00VApdAyGGHdGjq8_xqlQ.roa
File: b00r-C00VApdAyGGHdGjq8_xqlQ.roa (raw, json)
Hash identifier: 3lE5wp4oa3gPUYx4JZOCOotO54fgFCaF3zjBZWsfchg=
Subject key identifier: 6F:4D:2B:F8:2D:34:54:0A:5D:03:21:86:1D:D1:A3:AB:CF:F1:AA:54
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019DB479161FAE44F7B699A5DFF8AB05897D
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/b00r-C00VApdAyGGHdGjq8_xqlQ.roa
Signing time: Wed 22 Apr 2026 09:15:27 +0000
ROA not before: Wed 22 Apr 2026 09:15:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43793
IP address blocks: 46.183.80.0/21 maxlen: 21
109.205.144.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b4:79:16:1f:ae:44:f7:b6:99:a5:df:f8:ab:05:89:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 22 09:15:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6f4d2bf82d34540a5d0321861dd1a3abcff1aa54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:3b:b5:ba:f9:ad:fc:3f:4e:95:2b:60:fd:
df:9a:46:95:f3:44:49:71:97:6b:11:fb:6a:fb:ab:
10:bc:1b:2c:8e:f6:fc:fb:ca:e6:d1:60:70:ad:af:
3e:13:aa:fe:cc:21:5a:d5:be:3a:ea:72:69:a6:a2:
0a:b9:f1:1a:40:63:a3:a5:69:cd:3a:a7:ac:89:90:
8c:84:53:c8:22:96:45:99:cb:31:e8:20:41:0a:ed:
4f:fc:83:55:00:33:76:5a:76:ac:8f:97:5b:ff:bc:
21:8f:6c:1d:8d:b5:d7:e5:08:61:b7:04:44:08:da:
34:06:c3:22:93:2b:07:62:9f:88:79:52:5d:b4:4b:
f6:be:08:0a:75:c2:af:df:3f:94:52:dd:00:5a:ef:
3e:08:ea:4f:ec:cc:15:71:72:41:43:08:b2:c8:35:
1b:25:61:97:61:b4:44:48:71:3b:cf:cf:35:1e:6f:
89:9a:2a:ea:e3:fd:3f:af:99:23:eb:8f:6b:8a:2f:
a6:05:0e:6f:90:30:38:b0:6e:02:c3:a1:54:60:2c:
4e:c4:42:5c:81:c8:11:c4:57:b3:62:a4:7e:72:b1:
14:70:45:d6:04:e0:0e:a3:5e:cf:69:f8:e9:c6:f7:
1f:5f:49:69:77:d5:81:93:42:3f:66:f9:8b:f1:db:
2e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4D:2B:F8:2D:34:54:0A:5D:03:21:86:1D:D1:A3:AB:CF:F1:AA:54
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/b00r-C00VApdAyGGHdGjq8_xqlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.80.0/21
109.205.144.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:95:56:7a:16:2d:a3:c1:c7:ed:6d:a4:19:e2:c0:1e:11:f5:
7c:d5:71:e9:6d:0a:94:0e:97:ef:d1:d1:df:1f:08:43:ec:de:
0c:1f:fb:fb:d7:da:5b:68:92:16:17:a4:cb:67:6a:6d:84:55:
9a:47:c3:45:99:5b:c8:5d:de:98:9a:2e:91:f1:a3:2d:3d:44:
40:a9:fd:42:c2:79:93:db:ce:7b:0c:e2:29:40:67:79:02:31:
9b:98:11:4d:64:f9:a5:10:d3:ed:af:b9:dd:9b:00:c1:85:34:
05:41:e2:51:95:61:b9:70:fa:12:84:83:55:b9:46:e0:a7:8f:
ed:db:e2:ea:97:8e:6f:c8:fb:32:84:53:81:76:72:f7:22:4a:
ea:93:15:4d:b2:ea:90:d3:25:f2:d1:24:9e:dd:f3:73:ae:1c:
c2:76:d3:74:41:fe:5b:21:93:e7:79:13:f3:78:dc:17:3d:27:
47:15:cc:2f:1e:7a:75:f1:07:45:48:01:f8:49:5f:78:2f:80:
44:38:80:00:14:9e:e9:5b:41:b2:83:b3:c0:b9:62:65:cc:61:
19:a0:f5:f3:87:ea:65:32:15:ee:01:3e:da:50:96:5b:93:3e:
44:99:63:ba:46:06:3f:d8:09:72:30:31:13:ca:31:85:ac:9b:
2a:07:c8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 13:58:30 2026 by rpki-client