Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/4Uc22LPWnWUE2R7euaG4ZHnFv6s.roa
File: 4Uc22LPWnWUE2R7euaG4ZHnFv6s.roa (raw, json)
Hash identifier: RGTqZUMIJDCt8fg43m28f23pkWbeJCT3vhwBQSzMBNo=
Subject key identifier: E1:47:36:D8:B3:D6:9D:65:04:D9:1E:DE:B9:A1:B8:64:79:C5:BF:AB
Certificate issuer: /CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5
Certificate serial: 019DFE5873623F98E130D1D4581D8E2D20F4
Authority key identifier: 8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/4Uc22LPWnWUE2R7euaG4ZHnFv6s.roa
Signing time: Wed 06 May 2026 17:31:42 +0000
ROA not before: Wed 06 May 2026 17:31:42 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9304
IP address blocks: 212.66.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fe:58:73:62:3f:98:e1:30:d1:d4:58:1d:8e:2d:20:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5
Validity
Not Before: May 6 17:31:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e14736d8b3d69d6504d91edeb9a1b86479c5bfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:78:9b:8a:c6:b1:0d:84:65:97:b8:e5:98:06:
20:17:00:a1:13:a7:0e:96:10:b6:f5:1c:60:3f:89:
21:4d:dd:fd:e3:1d:1a:d0:d6:9c:48:a6:fe:44:74:
e9:05:54:e8:cf:22:09:d6:2d:97:d9:f8:7d:19:09:
4f:6d:3c:80:99:5f:f0:32:91:0f:6d:8d:17:21:cb:
62:fa:ff:94:78:4f:36:19:45:2a:f1:cc:d4:2d:30:
05:9b:9f:fd:92:7b:7e:05:4a:43:c8:a2:7e:10:18:
99:5b:ae:f8:e6:53:66:66:d6:56:7b:1b:91:34:9c:
b4:c9:31:1a:a2:6b:a1:f2:63:20:0b:88:1d:96:21:
bb:dc:65:05:99:a0:01:9b:7e:20:e4:00:43:6a:6b:
ad:be:00:fc:97:1e:6c:7e:34:0f:d9:a8:3f:e2:6a:
4e:e0:ee:a6:ac:9f:eb:17:1a:fe:b4:1b:96:81:6c:
6a:32:cb:2e:4f:47:4e:2f:68:e9:80:8f:8c:c1:d3:
88:8e:19:7c:aa:2b:d4:a9:37:cd:6f:28:36:d3:ac:
be:23:17:c3:c2:99:b3:f3:b1:d5:44:4a:2c:e2:bb:
41:bf:05:80:df:b0:2c:69:38:b2:bc:d7:0d:20:2f:
73:10:76:b7:9b:1d:b1:98:eb:ba:91:73:c7:6b:80:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:47:36:D8:B3:D6:9D:65:04:D9:1E:DE:B9:A1:B8:64:79:C5:BF:AB
X509v3 Authority Key Identifier:
keyid:8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/4Uc22LPWnWUE2R7euaG4ZHnFv6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.66.48.0/24
Signature Algorithm: sha256WithRSAEncryption
43:89:9b:37:5a:ee:d6:df:1c:39:8b:13:34:ca:fe:2a:50:2c:
12:74:7c:2e:fb:eb:31:2b:57:f2:61:ed:fc:61:b0:8a:e6:44:
5a:27:5c:0b:af:05:7e:50:bc:76:9e:b6:28:5e:17:fd:6c:06:
1d:6f:91:7d:28:d3:41:32:35:a5:ca:a7:79:cd:b5:bf:c2:ce:
ff:2b:2e:52:a8:6c:04:25:56:09:2c:9f:0c:f6:ad:49:b6:d0:
55:17:87:fa:7d:48:7e:fa:df:cc:08:0a:bd:9e:5a:1e:b1:e9:
5c:b3:33:98:42:b8:db:76:e1:ec:9c:34:33:ec:c2:5a:70:bb:
45:08:51:a8:d5:0a:e3:5e:d3:06:33:92:41:ca:8f:6b:14:3c:
2a:dc:6b:52:0f:fb:a8:ac:e1:6a:68:c4:f2:c5:77:97:c7:e0:
31:49:59:82:28:12:54:9f:92:68:fd:6b:fa:d9:8d:62:1e:0d:
ec:17:ce:b2:8d:40:7b:13:19:0f:d6:56:7d:aa:87:7c:1b:85:
a7:0d:f4:78:62:76:d7:c9:28:02:3b:d4:ef:e0:01:73:de:4c:
0c:86:7d:08:30:de:04:b9:f5:04:f6:cd:00:14:ed:63:65:02:
98:5b:e5:93:3f:a9:1e:09:68:f2:2f:fb:a5:0b:bb:4e:d0:59:
40:a9:fd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:05:55 2026 by rpki-client