Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/DjUu4xBDiSIME5G3YoS7qdXwuIc.roa
File: DjUu4xBDiSIME5G3YoS7qdXwuIc.roa (raw, json)
Hash identifier: tIgCNBq60UP6njhx1ZZfpB5x7uoWyfJccaMF4fPZI+A=
Subject key identifier: 0E:35:2E:E3:10:43:89:22:0C:13:91:B7:62:84:BB:A9:D5:F0:B8:87
Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Certificate serial: 019CE1F7F9E3AD6D9D18936D9127A335E1FD
Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/DjUu4xBDiSIME5G3YoS7qdXwuIc.roa
Signing time: Thu 12 Mar 2026 12:14:10 +0000
ROA not before: Thu 12 Mar 2026 12:14:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 200192
IP address blocks: 94.20.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.mft
rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e1:f7:f9:e3:ad:6d:9d:18:93:6d:91:27:a3:35:e1:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Validity
Not Before: Mar 12 12:14:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0e352ee3104389220c1391b76284bba9d5f0b887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:da:39:ee:60:5d:81:ae:1b:fe:e9:a0:4c:26:
7b:9a:8b:eb:a1:4f:3b:b4:30:05:27:7c:21:a2:fb:
83:84:8f:6c:7b:ab:b3:a2:1d:16:24:d6:74:78:47:
18:22:cb:d2:70:96:65:9f:a7:1b:b2:aa:78:eb:89:
c5:c2:1d:fb:54:1d:a0:72:b8:de:d0:52:47:32:86:
3d:42:16:19:4a:9b:e9:cd:1e:75:f9:33:3d:f5:03:
09:63:aa:30:e7:a4:f0:be:7b:32:21:1f:5b:4b:0e:
f1:df:ba:d8:6b:99:df:cd:42:1a:2c:fb:0a:ed:f6:
23:f8:56:a4:2a:2b:23:76:fb:49:0d:e0:27:d6:50:
34:00:77:09:23:e7:ed:ab:23:97:83:93:61:49:2f:
fd:c1:75:ea:e4:c5:95:07:b6:ed:3d:87:97:12:c8:
72:c5:cf:06:de:66:d0:be:5c:52:46:f8:8a:a8:86:
db:c3:5f:3d:2e:1c:f2:e2:d0:96:59:d6:00:99:30:
3f:4e:47:3f:f4:4b:aa:d7:ab:4f:bf:d8:ab:66:06:
64:fe:91:69:54:b6:3d:b2:8b:00:23:43:af:67:4f:
e9:f3:fa:6a:7a:75:a3:d6:e9:0d:69:75:44:6a:6f:
36:94:8f:8d:b1:9d:12:28:00:2b:f4:93:c1:dd:36:
c8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:35:2E:E3:10:43:89:22:0C:13:91:B7:62:84:BB:A9:D5:F0:B8:87
X509v3 Authority Key Identifier:
keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/DjUu4xBDiSIME5G3YoS7qdXwuIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.20.46.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:12:3c:b4:f8:d5:e9:76:1d:ee:38:23:7b:e1:7f:42:93:fe:
c2:92:01:26:3b:52:42:3f:a7:0a:60:3a:20:08:ff:d4:23:05:
ab:bb:3d:5c:e3:fd:d5:c7:8b:6c:de:52:6d:fe:a7:25:4a:5f:
25:5f:90:a1:02:61:ad:b9:dd:7c:34:b8:ad:9e:c7:8f:bc:3c:
f0:58:a1:6c:61:89:89:4e:66:3f:4e:f9:87:fa:b7:73:05:0f:
d2:3c:88:fc:e8:9d:8b:6f:53:cf:40:88:7d:d8:ef:f5:89:9f:
63:42:e5:54:9c:32:78:b0:06:12:be:61:e4:7a:0d:6a:53:6f:
04:59:b8:4b:34:35:2d:a7:db:3b:f9:8e:3f:6f:97:a4:3e:d6:
1c:56:d0:4c:89:44:fe:d9:15:8a:24:c2:dd:0a:df:b0:f2:76:
07:28:58:8e:6a:ea:96:ec:9f:07:91:39:0b:97:ea:e8:37:6b:
2b:09:d8:df:8a:9f:82:94:82:3f:3a:d0:20:0f:71:4a:8c:8d:
df:0a:ee:1a:de:01:99:b2:17:d1:68:e2:75:0b:0b:d2:71:fb:
62:e8:77:d6:16:7f:62:16:6a:ae:d0:ea:48:f5:84:dd:ea:b1:
de:48:91:df:51:fa:e4:83:18:57:a8:8c:fc:47:2f:59:8a:03:
6c:59:1d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:27:19 2026 by rpki-client