Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/nSvRGDhStfe0EXVwF_OtD5-X5tI.roa
File: nSvRGDhStfe0EXVwF_OtD5-X5tI.roa (raw, json)
Hash identifier: PZw2TNUjT5XiLSwX1IWnu0Kjsx7wHqyx3bL+SYLnLtE=
Subject key identifier: 9D:2B:D1:18:38:52:B5:F7:B4:11:75:70:17:F3:AD:0F:9F:97:E6:D2
Certificate issuer: /CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Certificate serial: 019DD89F90C235F588563F37C1707F6628F9
Authority key identifier: B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/nSvRGDhStfe0EXVwF_OtD5-X5tI.roa
Signing time: Wed 29 Apr 2026 09:43:49 +0000
ROA not before: Wed 29 Apr 2026 09:43:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 39707
IP address blocks: 92.39.96.0/21 maxlen: 21
92.39.96.0/24 maxlen: 24
92.39.97.0/24 maxlen: 24
92.39.98.0/24 maxlen: 24
92.39.99.0/24 maxlen: 24
92.39.100.0/24 maxlen: 24
92.39.101.0/24 maxlen: 24
92.39.102.0/24 maxlen: 24
92.39.103.0/24 maxlen: 24
213.234.24.0/21 maxlen: 21
213.234.24.0/24 maxlen: 24
213.234.25.0/24 maxlen: 24
213.234.26.0/24 maxlen: 24
213.234.27.0/24 maxlen: 24
213.234.28.0/24 maxlen: 24
213.234.29.0/24 maxlen: 24
213.234.30.0/24 maxlen: 24
213.234.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d8:9f:90:c2:35:f5:88:56:3f:37:c1:70:7f:66:28:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Validity
Not Before: Apr 29 09:43:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9d2bd1183852b5f7b411757017f3ad0f9f97e6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:73:e4:0a:9b:0d:47:82:8f:d8:1c:be:75:
5c:64:27:fa:e7:cf:ca:63:25:6d:1d:57:cc:ea:f0:
22:91:8d:ef:40:f7:2f:61:48:4b:74:d8:88:9d:0e:
fa:95:4e:4b:9f:e2:03:44:02:d6:c1:f9:77:d8:68:
7e:8b:dd:39:0a:f5:0d:21:30:6e:93:6e:13:b5:41:
74:3f:9b:f8:ad:fd:e5:57:7d:44:39:69:5c:02:08:
55:74:52:9c:87:cd:a9:90:a8:7e:f7:95:c3:6a:f3:
25:3a:29:ed:07:92:e5:18:cc:26:f1:89:33:f2:a9:
e4:f9:5e:ef:2f:bf:dc:9e:70:b3:d6:8d:26:7d:b4:
84:ad:df:b3:c2:16:71:05:13:d3:8c:2b:89:52:7c:
eb:9c:25:37:5c:c8:ef:35:0f:73:38:0a:fe:5f:ff:
c5:2a:f8:e6:3d:a9:c5:4a:2b:f2:2a:4c:1d:39:f6:
46:21:88:f6:4e:00:b7:f0:0d:02:e3:2c:02:7d:6e:
e7:a7:e1:ff:1c:df:1b:d7:a7:21:bb:31:a7:d3:aa:
7a:80:20:49:a7:52:7f:2c:97:64:df:12:47:18:01:
22:e6:25:95:4f:87:5b:6f:49:f9:3c:e7:57:79:b4:
f0:e3:22:3d:e2:9b:2a:ce:f5:41:c5:f9:1b:61:a8:
d8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2B:D1:18:38:52:B5:F7:B4:11:75:70:17:F3:AD:0F:9F:97:E6:D2
X509v3 Authority Key Identifier:
keyid:B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/nSvRGDhStfe0EXVwF_OtD5-X5tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.96.0/21
213.234.24.0/21
Signature Algorithm: sha256WithRSAEncryption
84:48:04:44:c7:3c:2a:14:70:e8:6a:67:28:3f:0b:d8:97:38:
58:94:a0:89:0b:bb:5a:93:87:6a:ee:d1:ee:2b:72:4a:ca:6b:
e9:cf:10:2a:a5:e8:d0:28:1e:4e:99:0e:4b:9d:7c:86:73:e6:
f2:d1:e3:1b:f0:80:78:f7:33:b4:10:e0:cc:66:54:f0:38:03:
c2:a2:f4:64:ab:43:a7:db:5c:25:b1:e6:ae:c3:db:d0:49:ec:
86:a7:46:d7:3e:7a:bb:f0:e4:e0:16:d6:96:17:f8:04:bd:53:
96:62:a4:9a:4e:32:f6:f3:13:12:31:f3:83:c7:e9:84:ad:96:
7d:36:40:03:b4:1d:21:0c:3f:43:e7:54:2e:93:6a:01:4d:fc:
f4:f8:49:15:8d:7a:06:e6:76:7c:90:5a:89:6c:25:9a:38:16:
72:12:c6:57:2e:9e:8a:e1:14:e9:18:1b:59:be:fc:5a:f2:95:
2a:4b:fd:78:a0:61:ca:f3:e0:05:17:d1:60:f1:05:bd:65:e5:
da:f6:4a:22:31:96:ff:8f:87:59:5a:17:a3:39:ab:dd:0c:e4:
cb:8a:ef:d8:4b:13:63:fd:17:73:e6:6f:87:52:b6:4b:14:60:
5c:a0:c0:b8:04:f9:18:07:3d:4b:c6:05:4a:83:6d:4f:ae:b4:
30:37:f6:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:46:42 2026 by rpki-client