Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/GzOvk8lHsu4BYLj1d10xgx8tglU.roa
File: GzOvk8lHsu4BYLj1d10xgx8tglU.roa (raw, json)
Hash identifier: qwnpR7TfGpJqvG2MvNeXDUXWtBVeH7xIX0oA5goxnbs=
Subject key identifier: 1B:33:AF:93:C9:47:B2:EE:01:60:B8:F5:77:5D:31:83:1F:2D:82:55
Certificate issuer: /CN=00a1912fdd53f2f19fe9bcdae7544966815933cc
Certificate serial: 019E0853DD4FBFA3E320479D1878AAA2A4B9
Authority key identifier: 00:A1:91:2F:DD:53:F2:F1:9F:E9:BC:DA:E7:54:49:66:81:59:33:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AKGRL91T8vGf6bza51RJZoFZM8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/GzOvk8lHsu4BYLj1d10xgx8tglU.roa
Signing time: Fri 08 May 2026 16:02:54 +0000
ROA not before: Fri 08 May 2026 16:02:54 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213657
IP address blocks: 185.10.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/AKGRL91T8vGf6bza51RJZoFZM8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/AKGRL91T8vGf6bza51RJZoFZM8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/AKGRL91T8vGf6bza51RJZoFZM8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:08:53:dd:4f:bf:a3:e3:20:47:9d:18:78:aa:a2:a4:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00a1912fdd53f2f19fe9bcdae7544966815933cc
Validity
Not Before: May 8 16:02:54 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1b33af93c947b2ee0160b8f5775d31831f2d8255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:62:13:05:18:c0:6a:ac:6f:7e:4a:54:58:
53:02:7b:ab:38:30:1b:31:8a:0b:4c:c9:e8:6a:ac:
af:6c:42:0f:c2:5b:c1:65:e4:6a:86:29:48:4e:89:
ac:eb:6f:bc:39:d2:c6:ea:7a:53:5f:05:99:05:bb:
d0:86:d3:6b:5c:19:8d:bd:f1:0f:cf:5d:2b:c4:42:
44:78:8f:03:79:c2:29:cb:d2:d7:08:00:f1:bf:91:
81:9b:56:df:48:f3:3f:d4:6a:51:c0:5f:8a:11:2e:
50:a3:c5:63:80:06:46:6b:8c:e1:50:d3:6f:1f:50:
60:bb:a5:0f:f9:46:52:91:8c:ac:e2:20:79:c6:15:
4a:f8:2d:84:ea:a0:72:76:81:ad:74:cd:99:c4:5d:
c0:b5:a3:24:f5:06:ae:59:74:84:25:02:8f:6d:1c:
52:fd:c5:c5:58:5a:18:d5:f9:73:2b:39:30:cd:09:
0b:4a:6f:42:06:a8:c6:d3:cd:5e:3a:e7:29:b7:e8:
6e:57:a9:55:3c:03:8c:8a:6b:ae:30:25:c5:30:04:
2d:b3:ec:48:70:e2:15:da:69:cf:f2:c4:c0:29:c9:
07:b1:b8:bf:de:59:ee:e6:1d:6e:de:c3:90:54:9a:
71:7d:6f:8a:71:4f:14:7e:ac:80:6f:37:57:15:08:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:33:AF:93:C9:47:B2:EE:01:60:B8:F5:77:5D:31:83:1F:2D:82:55
X509v3 Authority Key Identifier:
keyid:00:A1:91:2F:DD:53:F2:F1:9F:E9:BC:DA:E7:54:49:66:81:59:33:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AKGRL91T8vGf6bza51RJZoFZM8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/GzOvk8lHsu4BYLj1d10xgx8tglU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f4ca3b-a99a-4c72-96af-136dad97d0da/1/AKGRL91T8vGf6bza51RJZoFZM8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.93.0/24
Signature Algorithm: sha256WithRSAEncryption
de:b7:c0:12:f4:ae:1f:e3:6c:23:92:fd:12:88:dd:44:1d:fe:
2c:9e:de:8c:c8:16:85:b4:c6:02:f2:42:39:19:d7:a0:a9:4e:
5e:ef:60:7b:a0:9b:8d:76:fa:a1:09:1e:43:d3:38:0b:86:05:
4b:04:72:0c:02:db:00:50:e0:b1:d1:08:25:01:e6:0e:4d:f0:
53:d9:5d:98:04:21:9e:42:3c:21:8f:01:b8:7c:4b:57:0b:bd:
31:c4:d4:c6:cb:eb:14:ab:c9:d5:0f:74:88:8c:e8:cf:84:8f:
60:be:29:5a:64:c2:4d:7f:0f:0e:2d:ad:34:8f:90:2a:4e:62:
02:e7:73:c5:60:05:ce:d1:37:6f:1c:2b:b0:9f:cf:87:a7:50:
79:45:6b:36:79:f6:c0:cf:2c:ff:97:3f:5a:92:2c:d2:f4:35:
30:c2:2b:4d:ed:a0:64:50:b2:4e:a9:25:96:f2:69:79:d9:ca:
05:a9:65:91:b6:43:08:5e:8f:4d:29:51:c5:e8:32:22:95:d3:
d5:58:93:ce:11:df:15:61:88:fc:b8:fb:d1:82:dd:2f:24:10:
ef:29:9a:74:27:b1:fe:f8:bd:86:03:64:d5:26:87:52:56:46:
2c:58:c7:d7:20:af:d5:24:95:68:1a:6b:ad:6a:65:f1:0b:5c:
db:a8:b2:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:25:19 2026 by rpki-client