Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/n8t_q3ldutHBa0_a23qWau6GJNo.roa
File: n8t_q3ldutHBa0_a23qWau6GJNo.roa (raw, json)
Hash identifier: GdNo1IC/sCy6tUXdUa/SUF/nLxc231ClZF6UXGBynLY=
Subject key identifier: 9F:CB:7F:AB:79:5D:BA:D1:C1:6B:4F:DA:DB:7A:96:6A:EE:86:24:DA
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 019DFCD24766211541AD21F22EA04662B7A3
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/n8t_q3ldutHBa0_a23qWau6GJNo.roa
Signing time: Wed 06 May 2026 10:25:32 +0000
ROA not before: Wed 06 May 2026 10:25:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20879
IP address blocks: 46.102.16.0/20 maxlen: 20
46.102.32.0/19 maxlen: 19
89.42.148.0/23 maxlen: 23
93.113.90.0/23 maxlen: 23
176.223.0.0/18 maxlen: 18
176.223.2.0/24 maxlen: 24
176.223.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:d2:47:66:21:15:41:ad:21:f2:2e:a0:46:62:b7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: May 6 10:25:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9fcb7fab795dbad1c16b4fdadb7a966aee8624da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bd:96:7f:a6:d1:1f:18:f9:13:da:f3:68:a8:
75:0e:e6:7e:2c:3b:bf:64:a7:f6:f8:9f:9a:d0:70:
49:c4:e0:3e:45:eb:78:97:57:8f:8b:a6:ac:d2:ac:
d3:fa:43:cb:c5:8b:0b:91:ef:cf:33:ef:0a:8b:8a:
3a:50:e7:7f:08:01:eb:a5:e7:33:c1:6d:f1:d8:9e:
a4:44:c0:86:9f:f0:29:39:f6:fe:27:3b:32:74:0a:
6e:d2:ad:2a:84:0e:2d:3c:9a:f8:72:d8:8a:32:ac:
d0:3e:40:87:ac:f7:d1:13:87:19:e2:d1:6a:3d:b7:
ac:fb:18:b0:0d:78:fc:d9:ce:c4:0a:d8:a3:52:20:
5a:3e:25:3d:2d:3b:fc:ef:8a:b7:af:7f:cc:a4:ca:
b2:a1:5c:ac:43:31:d0:a3:b9:dc:82:6b:1e:b8:57:
f8:7b:2c:80:12:ed:33:fa:a2:44:cf:7b:bf:23:46:
d4:09:24:28:ba:a2:c6:56:16:77:17:cd:2c:6a:ec:
f6:dc:ca:d7:46:4a:c0:e3:b4:28:25:80:ba:6d:53:
72:c9:c0:c3:24:bd:92:c1:0c:7a:e2:96:4b:86:37:
eb:35:86:88:0b:61:8c:4c:d1:bf:2b:11:7f:46:cf:
c1:34:8e:ce:20:2c:4f:1b:9b:c7:f4:2c:b0:c8:f7:
ed:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CB:7F:AB:79:5D:BA:D1:C1:6B:4F:DA:DB:7A:96:6A:EE:86:24:DA
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/n8t_q3ldutHBa0_a23qWau6GJNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.16.0-46.102.63.255
89.42.148.0/23
93.113.90.0/23
176.223.0.0/18
Signature Algorithm: sha256WithRSAEncryption
57:ce:7b:22:b7:4d:f0:97:3f:ac:25:3f:14:69:d8:48:84:15:
94:4a:62:b9:7c:94:3b:0f:28:cd:5b:55:2f:8f:ae:30:60:e1:
a3:e5:27:43:83:c2:45:f4:9e:da:39:b8:2e:1a:f6:ad:df:2c:
bb:80:bb:1b:f1:bc:3d:3a:07:89:2e:1a:fe:c9:f4:b3:12:da:
22:f6:8d:cd:ec:fa:eb:ff:31:15:b1:e9:3e:ae:3a:c6:a3:81:
15:49:17:e1:e6:79:ca:a2:4c:dd:32:4d:16:7c:a3:35:c5:e4:
f2:44:bd:39:4f:0c:ef:81:5b:5c:5f:c6:1d:ac:e7:b4:f0:fc:
ff:cd:e7:47:bc:60:30:79:a4:99:0d:b6:49:71:7f:6f:64:15:
1c:98:99:e8:cf:97:fe:18:9a:40:69:ba:26:ae:18:b3:8c:c5:
a2:f5:2b:96:10:9b:48:bb:f9:ef:18:7e:b1:cd:45:7a:89:b5:
54:77:d2:66:e0:c0:a7:a2:1e:22:51:11:7d:9e:cf:98:e6:59:
26:18:2c:c7:da:4f:ee:8a:10:ff:70:f4:4c:c8:f1:71:84:1e:
36:73:1a:ea:8d:29:ac:c7:21:8d:9c:2a:35:19:c0:4d:84:08:
f8:bb:05:c0:3a:c4:bd:3a:fe:eb:f8:fd:5e:07:90:93:dc:fb:
16:58:58:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:59:55 2026 by rpki-client