Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/hArmSNbdGOWTCB88yZcFmdYTlh4.roa
File: hArmSNbdGOWTCB88yZcFmdYTlh4.roa (raw, json)
Hash identifier: 7xymzSJN5yrlSsnHKXxLCTdMfGJHdPCknvmy4DP+pt0=
Subject key identifier: 84:0A:E6:48:D6:DD:18:E5:93:08:1F:3C:C9:97:05:99:D6:13:96:1E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 019DF352E5928FBB066C2057CE318BB2EA29
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/hArmSNbdGOWTCB88yZcFmdYTlh4.roa
Signing time: Mon 04 May 2026 14:09:49 +0000
ROA not before: Mon 04 May 2026 14:09:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 28753
IP address blocks: 148.222.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f3:52:e5:92:8f:bb:06:6c:20:57:ce:31:8b:b2:ea:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: May 4 14:09:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=840ae648d6dd18e593081f3cc9970599d613961e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0c:96:2b:50:9c:42:2f:66:6e:21:e2:1d:6a:
7e:8f:4b:f6:5b:d9:4b:a0:80:36:af:c7:5c:61:7a:
72:89:fa:7d:ba:42:f3:fe:56:b2:34:3a:97:5f:37:
e9:66:ff:82:db:eb:0c:ec:2c:3a:32:82:6c:d1:88:
1b:e8:86:17:c5:2c:ad:3a:af:ae:ba:d3:e6:f2:4f:
db:2d:f7:4b:79:07:3c:5f:76:af:9c:34:90:a7:7a:
f9:06:c6:a3:ad:d1:af:43:45:cf:7f:b3:ce:aa:c8:
76:67:11:43:db:98:32:8e:80:02:c0:16:c3:aa:a9:
6d:a0:92:f0:64:05:b4:08:46:ae:ea:e4:b8:7d:61:
52:85:98:1a:b0:5f:8c:31:bc:0d:04:ee:a6:7b:b7:
dc:c4:31:8e:10:1b:6a:79:13:6a:5b:bc:59:3e:96:
31:41:77:99:73:ba:95:95:6a:2f:08:7a:f4:68:34:
0b:0e:3a:5d:a9:66:86:50:5b:8a:d4:a5:4d:b2:f4:
b2:f6:ef:8e:f6:fd:0b:3e:80:9b:2e:3c:b5:87:4f:
01:ec:12:cf:90:4b:a5:6b:1e:ff:7b:ba:31:c5:d9:
d9:26:a5:dc:e7:ad:52:87:89:9b:dd:0b:fc:0c:1c:
0a:bb:01:50:2f:ad:ae:28:4d:a1:7c:01:a6:5f:65:
7d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0A:E6:48:D6:DD:18:E5:93:08:1F:3C:C9:97:05:99:D6:13:96:1E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/hArmSNbdGOWTCB88yZcFmdYTlh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.187.0/24
Signature Algorithm: sha256WithRSAEncryption
be:95:34:a2:05:7e:5a:44:32:8e:d2:36:46:72:21:fe:3e:57:
57:72:c9:be:28:b4:f8:83:13:06:c7:3e:66:d0:19:ca:8f:a5:
da:af:1d:87:20:95:4a:33:c5:ed:63:fb:95:9c:74:50:85:8a:
91:c4:f9:82:d8:65:a0:17:61:d2:10:24:11:22:34:0e:7d:c9:
4e:79:81:de:8c:83:75:7b:38:63:e9:34:63:47:88:0a:66:18:
a2:c1:b4:0c:01:80:25:31:0f:7e:fb:be:79:1b:d6:9c:4b:e1:
ea:7a:9b:d0:8f:ab:3e:7e:96:5c:ad:d0:ab:6f:57:c9:b9:18:
05:c2:5a:bb:e1:90:0e:e8:f3:bf:29:4c:0e:bc:ae:85:50:a7:
f4:33:b5:b4:94:26:96:ed:4f:79:6d:6b:08:05:8e:db:58:2f:
fb:6a:35:82:45:9a:00:fe:a0:10:97:6b:03:cd:c1:60:76:8a:
a2:55:0d:f8:9d:6c:b5:9f:01:14:2f:28:0e:af:72:0d:cd:20:
f9:9e:f4:df:81:83:c0:a6:37:1a:11:5e:16:cc:db:b9:81:15:
a0:47:d6:b1:c4:0d:0a:e5:76:69:c5:21:a1:83:49:e4:91:fd:
cc:73:2c:4a:0f:53:5d:f8:0e:84:14:ab:1c:fc:65:ee:5e:5d:
af:75:1f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:15 2026 by rpki-client