Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/RAxw54vmH8QYGgx6QYMX9ARoGHE.roa
File: RAxw54vmH8QYGgx6QYMX9ARoGHE.roa (raw, json)
Hash identifier: zSnmrpE0QX2gs4I/yaUCIJqNmsZNk7bgWwgW7HcXVts=
Subject key identifier: 44:0C:70:E7:8B:E6:1F:C4:18:1A:0C:7A:41:83:17:F4:04:68:18:71
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 019DAA8E518B45E589EA74FD92E1F565B9DD
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/RAxw54vmH8QYGgx6QYMX9ARoGHE.roa
Signing time: Mon 20 Apr 2026 11:02:26 +0000
ROA not before: Mon 20 Apr 2026 11:02:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402215
IP address blocks: 85.232.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:aa:8e:51:8b:45:e5:89:ea:74:fd:92:e1:f5:65:b9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Apr 20 11:02:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=440c70e78be61fc4181a0c7a418317f404681871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:27:14:79:ef:33:8c:2d:ac:0d:01:c5:d6:28:
95:d8:4d:ff:c8:00:f2:5b:23:4d:e8:db:19:d2:75:
27:a2:1d:c9:0c:a2:aa:33:31:12:d1:6b:7d:28:1d:
09:21:f3:20:26:5d:65:b6:cf:5f:27:4a:11:1f:81:
87:d2:b6:37:2d:2e:0f:f7:58:3e:27:74:78:e4:c5:
cf:d9:e5:60:9f:3c:5f:a4:0a:06:8a:c4:ad:0a:34:
2b:f8:c0:1c:f3:94:f8:2d:ce:a9:ee:84:1a:15:3d:
bd:5d:96:e2:3a:95:72:7e:d3:5f:1a:5f:5b:64:00:
a6:44:e9:24:1d:59:23:b2:48:b1:46:f0:33:6c:15:
7a:21:73:4d:79:87:c2:80:da:68:53:90:7d:c1:40:
3c:13:9f:56:e4:92:b6:c4:8b:13:3d:47:04:62:42:
bd:87:d8:b7:83:aa:ba:b9:ec:ea:b7:7a:bb:b7:f2:
48:ed:8f:ca:05:a4:89:36:d5:94:45:85:5d:9f:e0:
7f:38:0b:dc:9c:93:aa:62:a7:e6:cf:33:d5:8c:6d:
26:cd:14:0b:eb:e5:4f:79:6b:15:00:c3:46:3c:b0:
41:05:2e:21:eb:44:6b:9d:78:85:5e:82:3e:e8:70:
01:50:98:f9:a0:46:1d:02:5c:d5:b7:51:ef:6e:fa:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0C:70:E7:8B:E6:1F:C4:18:1A:0C:7A:41:83:17:F4:04:68:18:71
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/RAxw54vmH8QYGgx6QYMX9ARoGHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.183.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:8d:3d:42:82:16:be:46:3e:2a:80:d3:a9:69:59:d6:ab:e1:
a6:38:d7:fd:c8:03:2f:30:15:ba:60:42:20:5b:5c:9d:83:29:
3c:5b:43:09:09:60:61:cc:86:e4:91:65:fc:2f:32:a9:fe:01:
ec:38:97:3f:ba:28:87:c6:da:68:13:ac:73:7a:d3:c1:f6:91:
d6:22:b1:20:34:01:77:f2:d6:74:9a:9a:4e:50:95:2e:09:8a:
8c:8c:71:ec:fe:a7:f6:ab:c5:83:dc:85:aa:10:4c:e5:8b:1f:
e5:a9:a8:cb:29:83:04:38:cc:61:20:79:2d:89:ae:88:46:aa:
a1:06:04:d1:6a:dd:4f:15:57:52:5d:00:b4:ed:cd:23:44:93:
a7:89:bd:93:5f:0d:55:8a:dc:4e:de:f2:f3:2b:1f:20:7c:b2:
34:ef:0b:11:d2:e3:56:07:5b:01:d0:ae:7e:e6:2d:c0:bd:7f:
1f:20:fe:58:5c:d9:e3:c1:c2:2b:03:66:55:3c:02:25:7e:13:
41:0f:af:4b:12:50:fd:60:ef:10:e4:03:74:b6:5d:12:2a:2d:
a9:d6:67:ab:b6:d5:1d:3d:86:2d:b9:ad:f4:34:45:12:90:f5:
4d:f1:39:12:b9:eb:0d:56:2e:c5:28:85:66:0b:42:5d:c2:4e:
47:07:f9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:14:46 2026 by rpki-client