Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/3DayZInlpCng2LjdqaK2o4E1lt8.roa
File: 3DayZInlpCng2LjdqaK2o4E1lt8.roa (raw, json)
Hash identifier: 55bCle765DxtS3imH/01djboah5uSEuHS5mv+0u8br4=
Subject key identifier: DC:36:B2:64:89:E5:A4:29:E0:D8:B8:DD:A9:A2:B6:A3:81:35:96:DF
Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Certificate serial: 019E17F6486AFD28EAA44AD78769B377A7C3
Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/3DayZInlpCng2LjdqaK2o4E1lt8.roa
Signing time: Mon 11 May 2026 16:54:36 +0000
ROA not before: Mon 11 May 2026 16:54:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 45430
IP address blocks: 80.174.144.0/22 maxlen: 22
80.174.160.0/22 maxlen: 22
202.58.110.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:17:f6:48:6a:fd:28:ea:a4:4a:d7:87:69:b3:77:a7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Validity
Not Before: May 11 16:54:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=dc36b26489e5a429e0d8b8dda9a2b6a3813596df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:94:43:c9:ab:c5:60:f0:93:25:ef:91:ab:
ee:50:20:08:6f:c1:8e:d0:e8:78:d6:7b:5b:67:b6:
b8:19:21:a4:04:6b:c6:6f:7e:2d:15:bf:df:09:b1:
63:3f:d3:84:7a:f2:24:24:32:2a:7b:89:86:31:90:
54:bd:75:85:d7:04:ce:70:c3:12:85:b8:8a:07:d1:
5a:eb:78:07:58:3a:da:34:72:ee:f9:cc:b2:cd:95:
e8:57:09:a8:5f:5c:f2:37:f9:0d:49:29:94:d2:15:
13:eb:8d:39:e8:7d:ea:fc:5a:53:5c:30:b1:9b:5a:
cb:c8:8a:5b:82:8d:55:5a:16:85:4f:ca:48:39:f5:
4b:33:b7:e0:4d:a4:48:89:80:11:b7:58:2e:76:2a:
8a:78:fb:90:85:0a:53:89:f2:07:43:a7:f0:43:0e:
f9:2b:58:02:bb:29:d3:66:a5:51:8e:74:83:a7:51:
68:f1:e7:17:38:e5:4a:24:6f:80:34:57:31:50:61:
fd:56:dd:1b:c3:74:a7:ad:d6:d7:75:7a:ef:e2:b1:
82:bb:2d:5e:5e:f8:09:8b:03:b3:26:36:0c:cb:c2:
b9:c6:0a:8c:7d:60:2a:0b:21:3c:e1:51:aa:d2:78:
b6:63:b3:5f:a6:0c:8b:a3:4d:33:aa:04:88:e3:88:
ff:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:36:B2:64:89:E5:A4:29:E0:D8:B8:DD:A9:A2:B6:A3:81:35:96:DF
X509v3 Authority Key Identifier:
keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/3DayZInlpCng2LjdqaK2o4E1lt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.174.144.0/22
80.174.160.0/22
202.58.110.0/23
Signature Algorithm: sha256WithRSAEncryption
93:82:99:2c:74:2a:d2:ca:f1:6d:d0:4f:76:c8:69:3d:51:a1:
71:97:a8:0e:c9:7f:61:c1:b6:f3:ff:e7:86:0b:42:a5:5a:c9:
ba:e4:49:3e:67:86:1c:b3:35:0b:a7:5b:4b:b3:49:d6:95:73:
34:0b:05:80:24:2c:ae:db:85:8c:88:0c:0e:3c:2d:38:fa:4f:
9c:6f:b1:7c:9c:9f:1a:f1:56:60:da:cb:c8:ec:02:b2:dd:dd:
38:07:ed:39:19:d9:a1:90:eb:57:1a:9c:6a:3c:96:8b:28:4b:
0a:be:fa:4d:89:82:75:5f:62:57:c8:78:53:a8:7c:b3:b9:e0:
1a:74:c7:14:4f:b3:8c:08:11:06:17:26:82:d6:42:15:45:0e:
9d:9f:b3:cf:66:dc:66:66:07:3d:c9:4d:bc:94:1b:20:40:bb:
aa:c5:db:d2:3e:99:9c:a5:98:6f:cd:c1:87:a4:8b:b6:83:ad:
14:30:55:18:95:d7:0b:c4:30:5c:3b:5e:1f:cc:26:42:b4:25:
a7:49:50:97:b0:0c:e6:37:2f:97:22:9c:64:c9:1e:85:8d:73:
bb:bd:8b:b9:9f:75:8a:8b:8a:72:be:ad:35:2a:8a:3a:60:7d:
53:7f:e0:2b:57:d3:4c:db:a5:f0:da:fa:b4:14:4e:fc:df:dd:
70:af:69:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:08:17 2026 by rpki-client