Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/xByyab3Vrz3Ef2rAb6P2eDrMVOE.roa
File: xByyab3Vrz3Ef2rAb6P2eDrMVOE.roa (raw, json)
Hash identifier: kIu292fLCuL6Bxl5IG18vmja0jYF3hwZuE7UgYdGv/Y=
Subject key identifier: C4:1C:B2:69:BD:D5:AF:3D:C4:7F:6A:C0:6F:A3:F6:78:3A:CC:54:E1
Certificate issuer: /CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Certificate serial: 019DFF752E2F7632B8209015E3C3FDD336A1
Authority key identifier: 6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/xByyab3Vrz3Ef2rAb6P2eDrMVOE.roa
Signing time: Wed 06 May 2026 22:42:42 +0000
ROA not before: Wed 06 May 2026 22:42:42 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215638
IP address blocks: 185.225.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ff:75:2e:2f:76:32:b8:20:90:15:e3:c3:fd:d3:36:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3006dcd289c47f9f58e128eb29757239144bb6
Validity
Not Before: May 6 22:42:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c41cb269bdd5af3dc47f6ac06fa3f6783acc54e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:93:a0:ed:6b:26:82:47:b9:2d:1f:3a:ad:9c:
1c:0a:b6:37:87:04:c6:d9:29:18:61:84:0b:a7:a7:
11:11:c4:08:e2:85:67:ec:7a:62:99:7e:9e:4c:a6:
c7:ce:0b:32:61:d2:11:56:1c:6a:26:42:80:19:01:
87:cb:b8:49:27:ab:86:ff:d2:1c:1f:d6:47:e5:ff:
ad:57:8b:c2:f2:05:71:db:0f:7a:86:86:66:c9:31:
62:19:fd:14:e3:af:dd:87:87:58:ef:f8:94:c2:fc:
de:c7:72:46:a4:9b:29:b6:d1:89:ce:26:b6:04:89:
9f:36:88:20:9f:74:70:87:ee:b2:60:ff:1d:0c:75:
9b:60:87:81:98:ca:7a:1b:53:4b:d2:a4:03:1f:90:
07:98:56:3e:d8:68:d4:ef:73:b7:4e:27:b0:3f:97:
13:a9:78:e0:af:ef:02:1f:bb:26:81:bf:f6:cc:7d:
f0:f4:ee:c3:e8:c0:f3:16:a4:88:ba:8b:3e:a8:58:
22:d3:2d:6d:a9:64:da:97:aa:ee:e6:36:2e:a1:69:
fc:36:00:19:6a:3f:25:97:dc:76:9c:14:0a:85:9c:
4a:f6:2a:e1:36:39:4f:f7:50:3d:89:6b:04:98:9a:
e8:bb:ee:d2:b5:a2:a4:ec:f5:d3:c3:a6:76:2d:b3:
71:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1C:B2:69:BD:D5:AF:3D:C4:7F:6A:C0:6F:A3:F6:78:3A:CC:54:E1
X509v3 Authority Key Identifier:
keyid:6D:30:06:DC:D2:89:C4:7F:9F:58:E1:28:EB:29:75:72:39:14:4B:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/xByyab3Vrz3Ef2rAb6P2eDrMVOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/bf9e51-cc2b-4ff4-86ac-2f7e52fb8bd3/1/bTAG3NKJxH-fWOEo6yl1cjkUS7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.124.0/24
Signature Algorithm: sha256WithRSAEncryption
62:5a:ab:b9:6c:3b:83:fc:05:97:4f:07:a6:18:a1:8a:d2:aa:
55:29:90:6d:61:5b:6e:88:5b:60:e6:54:1f:6b:b7:74:d2:cd:
ec:14:1b:cf:01:e6:25:c3:59:e2:2a:29:96:f0:33:74:a8:9d:
9f:ac:98:85:a3:75:73:aa:7d:ec:2b:71:2d:66:81:32:d4:0f:
49:0b:d4:9d:02:cc:95:c7:2a:3d:6f:f4:70:07:c5:1c:b3:27:
3e:fc:df:35:94:eb:1c:b2:14:36:d8:83:ea:6b:bf:e2:f3:12:
ae:b2:05:0d:4e:85:52:75:ea:78:0a:2a:3e:ed:8d:66:4c:70:
65:85:c5:70:e8:06:b6:ca:29:84:8a:cf:77:db:f8:ba:6b:13:
1f:78:41:27:d0:75:ab:e3:51:4b:a7:af:23:b1:87:b6:3a:27:
4f:79:ec:87:80:71:e5:62:01:59:31:ba:11:80:eb:a7:04:68:
b2:3c:a9:3e:bd:ad:69:cd:d8:df:7e:53:f9:a1:e4:9a:6a:1e:
89:93:0f:e5:6e:3a:6b:d4:7e:cf:bb:ff:c7:14:e8:10:12:96:
78:78:6c:9c:04:51:0a:21:93:93:c3:61:a4:92:ce:08:47:bb:
ec:c1:fe:39:a7:ed:5a:be:af:78:2e:80:7e:58:c7:23:41:ed:
2e:03:c1:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:45:17 2026 by rpki-client