Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/pybVDUEeCvsblptnYQVuwPBP54g.roa
File: pybVDUEeCvsblptnYQVuwPBP54g.roa (raw, json)
Hash identifier: ksKkqwvQlJKZlNzcCzp1jKIebCmM/r+y2vo0pAqFoD4=
Subject key identifier: A7:26:D5:0D:41:1E:0A:FB:1B:96:9B:67:61:05:6E:C0:F0:4F:E7:88
Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Certificate serial: 019DB60EA7BB1538B9965CF664525A842777
Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/pybVDUEeCvsblptnYQVuwPBP54g.roa
Signing time: Wed 22 Apr 2026 16:38:26 +0000
ROA not before: Wed 22 Apr 2026 16:38:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51665
IP address blocks: 178.237.192.0/24 maxlen: 24
178.237.193.0/24 maxlen: 24
178.237.194.0/24 maxlen: 24
178.237.195.0/24 maxlen: 24
178.237.196.0/24 maxlen: 24
178.237.197.0/24 maxlen: 24
178.237.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b6:0e:a7:bb:15:38:b9:96:5c:f6:64:52:5a:84:27:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Validity
Not Before: Apr 22 16:38:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a726d50d411e0afb1b969b6761056ec0f04fe788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fd:4f:3d:09:03:d6:12:6f:84:2b:b3:e6:c1:
3e:42:3b:70:33:49:6e:af:3e:d2:05:58:bf:71:7c:
84:0b:71:d2:f6:cd:37:33:cb:1c:38:c7:49:41:a1:
59:0a:bc:bc:e5:e6:e7:cf:3b:d5:41:68:95:d3:10:
9b:4d:0c:e1:34:73:f3:97:3d:29:98:47:51:64:f4:
e5:dd:db:28:42:71:fb:9b:d9:1c:ad:44:2f:01:27:
9e:1f:d2:fd:0b:2a:c4:2b:4f:50:5e:6c:b2:ed:20:
b7:4e:b8:38:0d:a2:f5:d8:00:df:05:e7:bd:98:ad:
97:a7:c9:0e:7b:e6:6c:07:ac:87:e4:d4:a4:eb:ea:
03:d5:d9:93:d9:50:89:ee:f3:cd:6c:78:dd:d4:49:
c0:d4:8c:1b:03:f4:ee:49:60:a9:41:50:0a:a1:c4:
69:6e:37:60:2c:69:c6:6f:14:24:d3:0a:14:a9:b2:
9d:cc:f4:69:98:cd:60:0a:1b:bc:5a:e1:b3:56:0c:
bc:c8:69:9d:76:08:c1:ef:cb:b0:6b:9f:96:47:12:
b1:df:63:f3:54:8d:8b:42:3a:94:cb:04:4f:c8:86:
3f:e3:da:1e:a9:81:e6:05:03:08:b9:ad:3a:bb:18:
12:45:0e:48:4f:7d:bd:58:95:40:80:d3:f0:c1:de:
f5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:26:D5:0D:41:1E:0A:FB:1B:96:9B:67:61:05:6E:C0:F0:4F:E7:88
X509v3 Authority Key Identifier:
keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/pybVDUEeCvsblptnYQVuwPBP54g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.192.0-178.237.198.255
Signature Algorithm: sha256WithRSAEncryption
4e:5b:3a:48:f5:1a:79:fc:3f:45:33:ba:54:71:91:cd:d5:22:
4c:7a:a7:6d:b9:56:ee:18:09:5f:3e:3f:4d:3b:ce:f5:ef:67:
6b:ba:97:93:8d:2d:60:ce:12:14:c0:56:99:25:37:ea:4f:16:
4c:ed:6d:a5:33:85:6a:62:80:df:c8:b0:bc:b6:cc:78:31:86:
b5:54:96:73:4b:b4:d3:63:67:d5:a5:cc:85:af:12:e7:c1:d5:
25:2d:37:4a:41:11:89:10:62:1c:85:47:64:17:fd:1a:59:04:
5a:9a:0c:68:11:12:f8:db:75:8d:bb:55:ac:50:2c:96:9e:48:
b9:5b:8b:31:77:1a:8d:75:c5:c8:d9:e0:a8:4e:07:0f:5f:e4:
e8:1b:6f:00:a9:7b:01:de:04:14:d6:6b:4f:ec:29:d5:04:64:
81:b2:ce:44:e8:89:65:25:62:2f:d8:f2:9d:ad:db:5e:f6:a5:
df:40:fb:08:e0:90:ee:dd:e3:55:66:3d:26:08:39:17:a6:a1:
ab:b8:69:0b:f9:cc:53:59:b0:4e:82:1a:0d:55:c8:4a:2d:1d:
b7:86:c5:b9:b3:57:bb:49:8f:b2:9d:67:41:7c:a8:8b:34:e8:
20:1d:6d:47:e0:f6:ac:3c:8e:ac:e1:9f:75:be:e5:d3:86:9e:
bd:d5:c1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:46:03 2026 by rpki-client