Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/DGPg_6OySU-5_1CNaUhVpEnE0sA.roa
File: DGPg_6OySU-5_1CNaUhVpEnE0sA.roa (raw, json)
Hash identifier: Xsn77nVfWLOHF4Zu1CDTRjwh92V4w8afHTRpj+iO2WY=
Subject key identifier: 0C:63:E0:FF:A3:B2:49:4F:B9:FF:50:8D:69:48:55:A4:49:C4:D2:C0
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 019D0FE57891182D8C3C345060C6F34D2170
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/DGPg_6OySU-5_1CNaUhVpEnE0sA.roa
Signing time: Sat 21 Mar 2026 10:16:29 +0000
ROA not before: Sat 21 Mar 2026 10:16:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 16509
IP address blocks: 185.81.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0f:e5:78:91:18:2d:8c:3c:34:50:60:c6:f3:4d:21:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 21 10:16:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0c63e0ffa3b2494fb9ff508d694855a449c4d2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:4e:6c:5b:62:c3:2f:87:ec:57:63:a6:8e:
d2:94:ec:5f:b2:a6:ca:0d:be:99:ac:cf:e9:14:57:
83:a2:b5:a1:55:b2:13:0c:6b:80:99:60:9d:de:4f:
59:47:18:6d:94:46:aa:dd:40:fd:1e:db:35:7f:a9:
af:d6:bb:91:73:12:d1:0f:29:b3:80:84:24:12:05:
73:1e:48:88:4d:13:ec:b0:5a:db:eb:77:a4:cb:d1:
30:ba:f2:16:9f:50:74:83:1b:ae:0f:10:3a:87:b9:
da:8e:0f:31:ad:14:50:40:0a:fb:39:00:8a:fe:13:
8b:5e:e4:d8:37:53:f2:e1:68:ab:4c:e7:92:1f:02:
8f:e4:0f:1e:ae:04:70:05:c9:70:05:14:82:b0:f2:
a7:6f:1d:53:0e:6c:36:c9:45:57:47:f8:01:de:d0:
fd:87:5c:0f:03:41:12:4c:9b:d2:c5:38:9e:4b:ad:
8c:75:c9:f7:3a:ac:e4:aa:d2:a0:25:84:58:74:09:
d3:8e:96:c3:4d:79:89:99:df:2c:73:e4:9b:29:7a:
fe:8c:d6:fd:c2:6d:26:ce:d7:49:ab:a9:fe:78:49:
2d:c1:f9:56:e9:2b:69:7a:fc:9e:32:6f:e7:45:86:
48:8a:fc:7b:f8:1c:72:93:44:8d:cf:35:94:55:79:
2c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:63:E0:FF:A3:B2:49:4F:B9:FF:50:8D:69:48:55:A4:49:C4:D2:C0
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/DGPg_6OySU-5_1CNaUhVpEnE0sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.30.0/23
Signature Algorithm: sha256WithRSAEncryption
81:33:47:b5:1d:cf:d5:38:02:c4:a7:11:c2:0f:d2:4d:30:55:
9b:3a:a9:ac:19:85:6f:4f:b5:27:c0:0c:8f:03:a2:ac:54:e1:
d3:4d:93:32:67:de:64:34:ea:09:91:37:34:72:67:1a:63:1d:
bd:d4:cb:a1:2f:00:ff:4c:ca:16:a7:c9:66:bc:48:1f:2b:5f:
93:a6:62:ae:38:4f:a5:97:dc:6f:2c:25:0f:69:f2:f4:c8:c5:
dc:49:51:91:1e:f2:56:b7:ed:19:2d:2e:63:e5:f8:f2:46:b8:
56:9b:e2:a7:5a:b4:06:1d:71:e4:a7:8b:48:2c:a1:ba:80:60:
a3:9e:23:fe:91:95:1f:ab:1d:71:87:66:0e:6d:3f:cb:96:1a:
ba:1d:aa:8e:73:ed:59:ef:fa:02:cf:5c:0e:d4:a7:f2:1e:2b:
d4:ec:43:82:c5:bd:9f:0f:c3:56:7f:a8:5b:7e:28:d7:14:52:
7b:17:92:09:16:fd:39:a5:b8:aa:87:93:6c:67:e1:70:06:2a:
f0:0a:bc:4b:d7:1a:d1:ec:2c:26:13:65:aa:46:73:1d:30:b3:
2a:60:f0:65:f5:7e:2b:b4:84:fc:76:6d:31:c5:fc:64:8a:13:
10:3f:4e:5a:55:cf:d1:a2:16:bc:80:27:0d:cb:f1:c3:08:3a:
26:5f:d6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:13:13 2026 by rpki-client