Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MuFKa5LR8w1be-Leqxrwpv4B1hU.roa
File: MuFKa5LR8w1be-Leqxrwpv4B1hU.roa (raw, json)
Hash identifier: 3I0LJsMCtD31vz4Nxnlr7mUG2IhvypYsG36iQAyxhHc=
Subject key identifier: 32:E1:4A:6B:92:D1:F3:0D:5B:7B:E2:DE:AB:1A:F0:A6:FE:01:D6:15
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019DD3CF45DFA14D920578C3AD748992B838
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MuFKa5LR8w1be-Leqxrwpv4B1hU.roa
Signing time: Tue 28 Apr 2026 11:17:49 +0000
ROA not before: Tue 28 Apr 2026 11:17:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213659
IP address blocks: 147.90.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d3:cf:45:df:a1:4d:92:05:78:c3:ad:74:89:92:b8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Apr 28 11:17:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=32e14a6b92d1f30d5b7be2deab1af0a6fe01d615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f9:35:01:8f:ee:5f:d1:fa:07:ce:f6:19:61:
f6:4d:97:ea:6e:cb:f7:ab:46:1a:cd:5e:4a:bc:e6:
c4:d1:07:08:23:dd:93:05:fc:ee:7b:9a:4d:aa:8a:
7d:b7:8b:e9:d2:29:6b:da:9e:43:28:55:0b:4d:3b:
b4:5e:14:0e:a6:64:08:92:01:5c:22:d5:1d:74:93:
fe:09:88:e1:2d:8d:56:2c:ee:ff:50:1e:d3:51:76:
b5:43:fd:6e:3d:37:01:b7:ef:43:fc:c4:68:57:00:
86:de:5d:7a:f0:dd:84:66:23:fa:53:92:4c:c6:ff:
f4:58:ec:54:37:40:c0:0a:d0:30:2e:18:fd:7d:74:
b9:95:20:c0:a9:8d:1c:85:e1:92:f8:85:8a:14:b9:
4e:59:34:a0:4e:25:e2:05:80:ad:cc:8b:cf:fb:98:
61:90:d1:8a:84:03:60:0c:a6:22:d7:7c:61:b5:4d:
cf:8e:68:89:dc:e6:f4:92:27:42:b2:5c:37:14:17:
c7:f7:87:9c:e3:f1:a7:45:7b:f8:8e:d7:bb:0f:32:
24:24:46:8c:67:15:49:c9:22:7e:e7:91:64:49:3d:
35:50:7f:28:e0:63:5d:a9:7d:d5:22:f1:9a:15:9c:
4b:0c:9a:ea:05:86:9a:13:f1:28:6f:67:66:c1:46:
ae:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E1:4A:6B:92:D1:F3:0D:5B:7B:E2:DE:AB:1A:F0:A6:FE:01:D6:15
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MuFKa5LR8w1be-Leqxrwpv4B1hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.90.218.0/24
Signature Algorithm: sha256WithRSAEncryption
68:72:f1:b2:a6:4e:57:be:17:64:53:17:6b:23:89:fb:51:0a:
57:e2:a4:34:40:69:dd:24:12:d7:55:5e:d5:a0:1e:61:69:75:
8c:c6:b1:26:e2:62:b2:e7:f8:f1:6a:16:47:e6:ee:78:27:a1:
30:12:2e:15:c8:2e:07:4f:8d:10:1f:a8:c1:5e:01:bf:19:42:
38:df:0c:f1:5d:2e:a6:2c:0e:34:eb:89:9e:e5:8c:7b:b1:f1:
ac:9e:99:5b:73:9b:ed:e2:2c:fe:f1:6b:43:58:18:5a:88:97:
f2:6b:f6:a9:d7:16:8f:b3:91:dd:1d:10:94:67:a2:0c:40:6f:
ed:f0:e1:8f:7c:bc:9e:88:35:5a:8a:25:ec:c1:b3:92:d1:b0:
91:04:83:2d:3f:40:43:3c:28:8c:02:3c:e5:cf:d5:75:96:45:
8b:94:a8:00:fa:78:2f:ea:09:b5:44:c8:f2:82:32:71:4b:ac:
01:58:bf:bd:09:85:8f:de:81:10:72:2a:0c:f3:f1:9e:fc:3c:
44:5c:c0:c1:aa:75:0c:46:0f:b8:c4:00:f6:d3:eb:52:95:c7:
31:87:80:f9:15:33:21:9d:e7:9f:b7:25:65:91:19:b5:07:94:
01:19:5c:eb:02:2a:fb:c0:35:01:23:01:9a:d9:e8:2f:3e:2c:
c5:0b:22:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:25:41 2026 by rpki-client