Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/g3rj1feFI579DF7ShVQW-lT6Zug.roa
File: g3rj1feFI579DF7ShVQW-lT6Zug.roa (raw, json)
Hash identifier: G5utfgoFuxIGy3HwQVTB/1ke+9dFwIk6CwFOywky+eE=
Subject key identifier: 83:7A:E3:D5:F7:85:23:9E:FD:0C:5E:D2:85:54:16:FA:54:FA:66:E8
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019DD15E896B87C16942C52EC63FC711E319
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/g3rj1feFI579DF7ShVQW-lT6Zug.roa
Signing time: Mon 27 Apr 2026 23:55:26 +0000
ROA not before: Mon 27 Apr 2026 23:55:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215844
IP address blocks: 2a06:9801:215::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:5e:89:6b:87:c1:69:42:c5:2e:c6:3f:c7:11:e3:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: Apr 27 23:55:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=837ae3d5f785239efd0c5ed2855416fa54fa66e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:07:de:60:0d:8e:0b:30:ee:9f:f8:3b:01:a5:
73:91:61:b0:40:35:39:37:2b:22:88:1c:59:0a:e6:
c9:2a:7c:e3:85:b4:d8:0e:09:a5:70:09:af:d5:0a:
bd:8b:1e:df:bb:5b:e4:27:de:70:d2:b5:a7:32:1d:
02:0a:01:3e:39:95:4e:0f:5a:13:71:96:5a:a3:a8:
91:3a:af:17:ff:0c:b3:74:58:48:c5:9c:60:44:07:
1e:1c:86:4b:a0:72:56:3c:0e:e5:9b:b9:09:4d:8e:
bc:9a:cc:e0:c1:fa:ae:25:e9:00:d1:61:82:95:64:
4c:37:b8:e4:33:5c:20:d8:9d:da:f0:06:d2:99:5d:
30:dd:ff:b8:23:6c:d4:26:88:e8:6b:17:53:46:67:
d4:9c:f1:16:54:4b:aa:b5:f8:65:3c:19:2b:ca:7e:
de:e3:e2:e0:5b:9a:8b:65:c8:2c:ea:ef:ee:9c:2c:
aa:bd:2c:b9:e4:55:ad:92:ad:0a:38:8d:a4:eb:9d:
c2:f0:2a:8b:19:b6:49:a3:f4:89:d0:16:48:cb:41:
ac:66:e5:0b:3d:00:5b:3b:34:e7:2e:d2:e4:53:cc:
ff:ec:2e:34:64:74:3b:40:b3:0f:c2:8a:ed:2d:9a:
89:11:17:19:b4:ae:9d:63:29:3e:7e:08:5a:cd:d5:
c2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7A:E3:D5:F7:85:23:9E:FD:0C:5E:D2:85:54:16:FA:54:FA:66:E8
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/g3rj1feFI579DF7ShVQW-lT6Zug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:215::/48
Signature Algorithm: sha256WithRSAEncryption
c5:79:da:28:79:44:21:03:8e:27:24:86:32:c7:ee:69:d1:11:
6a:ee:60:7a:7a:8e:51:fc:35:45:e2:93:33:56:cd:eb:f1:42:
8b:3c:8d:e6:68:0a:6a:5f:08:d5:74:97:9f:9b:6b:57:2a:0d:
2f:bc:97:52:8b:6e:89:ce:eb:8a:8c:6d:ea:ba:e8:76:67:a3:
81:5f:bc:76:32:97:ce:25:10:24:7c:78:4c:68:88:25:c7:2f:
9e:b1:52:92:fe:3f:28:f6:34:4b:72:ea:01:39:12:2c:bd:f1:
a0:6a:9d:6b:2e:8c:04:6b:0f:1f:4b:f8:26:28:0f:b1:aa:21:
41:48:66:c2:5a:5f:b9:2c:c7:94:c5:9e:86:5f:b5:07:8b:63:
ff:98:6d:f5:66:3f:d3:df:c6:6c:62:eb:32:d3:e8:9f:d9:80:
88:b1:5f:0a:d5:00:11:71:eb:49:ea:9a:6c:48:b7:2b:2f:23:
4b:63:fc:6e:c3:b0:09:d2:76:32:10:74:46:7b:cb:7c:4f:53:
45:22:dd:54:08:88:67:14:ab:40:c8:32:86:21:c7:dd:34:42:
6f:44:9d:81:f4:72:80:0e:c5:8f:bf:01:09:b3:65:2f:3d:a4:
72:f8:2b:de:29:c1:dd:34:6e:42:3c:81:1a:c2:2f:eb:d7:f0:
e0:29:57:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:20:52 2026 by rpki-client