Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/1-TT49rcizdqvLPJimvOy2wpPtYY.roa
File: 1-TT49rcizdqvLPJimvOy2wpPtYY.roa (raw, json)
Hash identifier: Mr8ZdwPM/IiY7ibw7JXGQfEO2ReyfLieMRNepnprPzE=
Subject key identifier: F9:34:F8:F6:B7:22:CD:DA:AF:2C:F2:62:9A:F3:B2:DB:0A:4F:B5:86
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 019DF34E50F8A884663C6B740BFDD782D80F
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/1-TT49rcizdqvLPJimvOy2wpPtYY.roa
Signing time: Mon 04 May 2026 14:04:49 +0000
ROA not before: Mon 04 May 2026 14:04:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9009
IP address blocks: 92.63.226.0/24 maxlen: 24
114.129.8.0/24 maxlen: 24
148.222.184.0/24 maxlen: 24
185.114.118.0/24 maxlen: 24
185.114.119.0/24 maxlen: 24
2a02:c6c1:4::/48 maxlen: 48
2a02:c6c1:5::/48 maxlen: 48
2a02:c6c1:6::/48 maxlen: 48
2a02:c6c1:7::/48 maxlen: 48
2a02:c6c1:8::/48 maxlen: 48
2a02:c6c1:9::/48 maxlen: 48
2a02:c6c1:a::/48 maxlen: 48
2a02:c6c1:b::/48 maxlen: 48
2a02:c6c1:143::/48 maxlen: 48
2a0c:6742::/48 maxlen: 48
2a0e:a7c1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f3:4e:50:f8:a8:84:66:3c:6b:74:0b:fd:d7:82:d8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: May 4 14:04:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f934f8f6b722cddaaf2cf2629af3b2db0a4fb586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7b:20:d1:32:ea:49:64:6a:ae:fd:7b:75:69:
90:77:22:9d:b1:a1:e4:eb:e7:56:7f:0e:45:a1:a7:
3a:45:fe:7f:a9:6e:b5:dd:39:83:89:60:10:9c:77:
27:9b:a3:9f:9a:13:2b:5c:5b:bd:e8:e8:d8:e0:70:
87:48:82:20:bf:8f:cb:52:7d:2e:cb:b1:98:9b:76:
1c:cc:f9:3c:aa:a8:f3:83:1e:d1:5b:ff:da:c5:de:
ee:6e:1f:24:1f:fd:82:87:3b:35:ff:98:40:9c:ca:
0f:60:eb:46:9f:21:1a:2a:67:db:1f:5a:f4:87:4d:
bc:2e:35:e9:e3:c0:a0:41:29:50:83:ba:ae:de:76:
ae:3a:82:99:28:47:39:e8:e3:77:9b:a5:64:f1:48:
e2:38:c8:10:bb:1d:82:23:c4:70:3f:f6:5a:02:57:
24:dc:9c:65:d2:83:2c:03:b2:a0:e4:89:29:46:76:
74:91:c4:80:86:07:0e:ff:d2:ca:84:80:c9:0d:f4:
e1:0b:6c:e1:d4:fe:88:76:31:1a:75:a5:45:1a:3b:
a8:29:71:2e:b0:91:7f:72:3b:d3:69:b4:72:e1:90:
dc:0a:f4:67:f0:d4:f5:e5:46:ea:51:c1:9d:d0:e7:
88:93:d1:a7:51:e9:22:91:81:b3:c6:05:c0:0b:bf:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:34:F8:F6:B7:22:CD:DA:AF:2C:F2:62:9A:F3:B2:DB:0A:4F:B5:86
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/1-TT49rcizdqvLPJimvOy2wpPtYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.226.0/24
114.129.8.0/24
148.222.184.0/24
185.114.118.0/23
IPv6:
2a02:c6c1:4::-2a02:c6c1:b:ffff:ffff:ffff:ffff:ffff
2a02:c6c1:143::/48
2a0c:6742::/48
2a0e:a7c1::/48
Signature Algorithm: sha256WithRSAEncryption
9c:4b:4d:03:62:9a:48:8b:8c:48:b2:5a:34:41:71:8f:d1:f1:
6a:0c:dc:cb:76:2a:c3:ac:57:a7:aa:55:b1:0f:28:83:e1:4f:
9a:06:7e:e3:f8:0b:ae:e7:fe:6d:84:de:d0:28:33:ed:1e:50:
e8:22:ee:06:f0:f8:d9:08:54:cd:16:c8:a0:e6:80:14:0d:1f:
ef:88:d9:63:6f:f4:4b:fc:47:b7:cb:56:44:71:e6:46:f5:b7:
2a:f1:bc:83:c4:32:f2:bb:a4:3f:66:20:a8:e6:84:3f:0b:25:
30:7f:7c:fb:06:59:e2:33:b5:21:04:3a:48:0d:c6:af:f8:97:
4f:12:e2:9f:91:85:53:66:47:1d:cd:34:b2:36:a7:cb:23:19:
00:75:32:a1:0e:e2:3f:0c:c5:23:cc:e6:47:85:25:61:f1:80:
7a:8a:73:6d:c9:fe:f2:f9:59:c6:d5:a4:b6:7d:ea:0e:35:4e:
69:dd:3a:2d:50:f9:71:f6:c0:5f:58:b1:92:34:61:31:0f:a6:
5a:1a:a6:bf:ae:b7:f5:70:0d:b2:07:d5:e5:e1:6e:c7:be:07:
89:b4:2c:d1:3d:15:30:16:da:43:7e:c3:6c:db:0c:3e:2e:71:
1f:26:f8:77:a5:d8:cb:74:76:d9:e9:15:8e:8f:a3:f1:2e:95:
a1:47:29:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:36:44 2026 by rpki-client