Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/dwGFnzj7nYsuPG8RkOHJh8bbE_g.roa
File: dwGFnzj7nYsuPG8RkOHJh8bbE_g.roa (raw, json)
Hash identifier: c08/d7CCDJNkt1/vTopIZtHMWd2jyJnltlA5ygocuYQ=
Subject key identifier: 77:01:85:9F:38:FB:9D:8B:2E:3C:6F:11:90:E1:C9:87:C6:DB:13:F8
Certificate issuer: /CN=46d94477c8b54d12ec8b3f7b6d9ae78e510b23d8
Certificate serial: 019CF6BED7E8E2E42FD75A12BFBE60E0D06D
Authority key identifier: 46:D9:44:77:C8:B5:4D:12:EC:8B:3F:7B:6D:9A:E7:8E:51:0B:23:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RtlEd8i1TRLsiz97bZrnjlELI9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/dwGFnzj7nYsuPG8RkOHJh8bbE_g.roa
Signing time: Mon 16 Mar 2026 13:03:47 +0000
ROA not before: Mon 16 Mar 2026 13:03:47 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401857
IP address blocks: 185.205.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/RtlEd8i1TRLsiz97bZrnjlELI9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/RtlEd8i1TRLsiz97bZrnjlELI9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/RtlEd8i1TRLsiz97bZrnjlELI9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f6:be:d7:e8:e2:e4:2f:d7:5a:12:bf:be:60:e0:d0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46d94477c8b54d12ec8b3f7b6d9ae78e510b23d8
Validity
Not Before: Mar 16 13:03:47 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7701859f38fb9d8b2e3c6f1190e1c987c6db13f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9a:a8:83:92:fe:67:3e:8c:bd:8d:6f:a7:f2:
da:5f:09:7c:39:2e:8a:84:55:aa:40:60:a3:ca:09:
cb:55:3c:42:a9:74:9c:ef:54:75:0f:9e:3b:a8:4e:
b6:62:6c:87:fc:6b:69:98:f1:f8:5b:8d:2e:4b:d3:
43:28:96:5a:39:45:9f:96:da:8e:14:40:d4:ba:1a:
74:7d:1b:92:e4:3c:d5:6a:f6:c2:4f:12:56:8a:04:
f6:18:a2:45:03:3e:d1:2f:9a:71:3c:e7:03:6b:13:
5d:58:fe:fe:28:05:59:1f:25:ce:f5:60:24:39:6c:
34:a0:82:e8:81:05:77:2b:d7:ac:c4:c7:6f:8e:d4:
bb:60:5e:f5:2e:45:dc:17:24:d6:fc:01:ec:1a:fc:
5e:fb:20:52:a5:e2:6d:86:53:f2:64:f5:b1:c6:72:
d4:a2:93:6f:51:7e:ac:00:78:c4:52:64:a0:4b:13:
d1:26:f4:34:88:cf:f4:06:9c:a4:29:d1:30:e9:e4:
97:ce:7c:8f:5f:0f:4e:d7:19:23:78:74:33:ba:63:
af:67:cb:1b:f2:7c:96:62:1a:84:05:d5:f0:9f:ef:
9c:8d:e2:ce:40:f6:81:00:06:5c:e1:f6:80:af:4b:
8b:b1:63:29:91:cb:33:ba:08:16:39:a1:73:b0:b5:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:01:85:9F:38:FB:9D:8B:2E:3C:6F:11:90:E1:C9:87:C6:DB:13:F8
X509v3 Authority Key Identifier:
keyid:46:D9:44:77:C8:B5:4D:12:EC:8B:3F:7B:6D:9A:E7:8E:51:0B:23:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RtlEd8i1TRLsiz97bZrnjlELI9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/dwGFnzj7nYsuPG8RkOHJh8bbE_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/54a457-3c48-4e01-90b0-5eb75c2318aa/1/RtlEd8i1TRLsiz97bZrnjlELI9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.32.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:8a:19:06:2b:46:95:04:da:a1:56:6b:62:12:9d:12:7d:7b:
a8:27:d7:29:44:19:a1:bb:af:09:d9:c7:7f:17:90:9c:1d:0f:
11:96:1e:05:0b:80:6e:da:d9:bd:d9:ca:aa:a9:20:99:71:e7:
a7:f5:e9:54:0a:a1:66:03:4f:54:30:73:0f:6a:72:7c:77:6f:
91:3b:7a:67:a5:56:db:af:37:ac:ca:45:34:c3:e7:74:6c:28:
56:a7:1d:87:a6:14:2b:32:48:cf:d7:e3:70:0a:19:bb:5a:b4:
18:39:8c:3d:e3:f9:57:5e:d3:97:89:b0:7d:ae:ea:a3:96:0e:
3b:17:ac:b2:6b:c4:e1:46:32:89:40:3d:7a:5a:90:1b:c6:3d:
6d:31:a5:9d:70:20:0c:76:e8:30:da:82:9c:3e:92:3d:7f:4b:
fe:c4:de:d2:06:31:93:ce:9c:0f:f3:46:df:0b:d7:62:b5:55:
4d:22:e6:0d:48:69:51:76:f6:fe:0b:1a:a6:42:e7:38:41:71:
ba:85:38:93:c3:38:f2:17:67:61:2a:7c:7d:51:f4:6f:b4:7f:
8c:8a:26:5f:34:2a:d5:63:d7:22:2e:b9:ab:7f:f7:6f:86:97:
15:f6:c9:6a:96:11:41:bd:9d:06:16:5b:61:35:a7:ff:53:ff:
69:42:ce:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:33:57 2026 by rpki-client