Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/mwNV34QjzCFWqYc8d6ZMOvEUTno.roa
File: mwNV34QjzCFWqYc8d6ZMOvEUTno.roa (raw, json)
Hash identifier: 7woiOxLaax5t0W8vaDYj41Tk61gjyep9JeZa0x1K7GA=
Subject key identifier: 9B:03:55:DF:84:23:CC:21:56:A9:87:3C:77:A6:4C:3A:F1:14:4E:7A
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 019E1BF05900EEB50128ED176DF1542B368A
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/mwNV34QjzCFWqYc8d6ZMOvEUTno.roa
Signing time: Tue 12 May 2026 11:26:36 +0000
ROA not before: Tue 12 May 2026 11:26:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207977
IP address blocks: 74.122.24.0/24 maxlen: 24
74.122.26.0/23 maxlen: 24
104.167.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:f0:59:00:ee:b5:01:28:ed:17:6d:f1:54:2b:36:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: May 12 11:26:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9b0355df8423cc2156a9873c77a64c3af1144e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:40:84:d3:8d:76:8c:0d:4e:40:df:e9:60:50:
51:20:7c:67:27:c1:0c:09:26:9c:25:01:bc:30:d4:
3d:57:db:27:93:50:99:38:ed:96:ff:44:09:3f:5b:
fc:72:8b:a4:b3:77:22:b3:17:68:75:c1:17:84:6b:
06:2a:67:b0:bd:fd:67:22:b2:2a:d9:20:b9:54:bc:
17:a4:c3:74:01:db:89:87:3e:bc:d8:4f:fe:a8:27:
ea:af:33:d1:aa:bd:20:d0:e2:9b:29:84:80:a2:58:
a6:8b:81:9f:78:5a:cd:d9:e7:f9:7b:a0:01:d3:90:
85:99:5d:4a:79:07:34:ec:cf:92:57:54:5e:f5:c8:
49:31:5f:5e:c2:64:d5:98:0a:32:cc:02:6d:20:c9:
3f:d0:26:47:21:00:19:60:39:ea:b4:db:af:bc:35:
a6:86:e7:fb:cc:0a:12:3a:6e:52:2b:82:74:94:61:
da:50:29:94:67:f7:8f:e4:20:57:27:32:9d:5b:55:
52:d1:25:87:37:93:a0:37:bc:6e:76:86:59:f4:78:
6c:51:10:bd:95:89:39:84:73:29:20:0d:af:f4:32:
f7:9c:71:6a:88:e2:25:a4:f4:3b:0c:bb:bf:34:55:
15:52:ab:b6:a1:b1:86:4b:ac:4c:e6:2f:8a:15:9e:
71:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:03:55:DF:84:23:CC:21:56:A9:87:3C:77:A6:4C:3A:F1:14:4E:7A
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/mwNV34QjzCFWqYc8d6ZMOvEUTno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.122.24.0/24
74.122.26.0/23
104.167.17.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e6:ab:a5:68:1c:6b:d5:64:2d:ef:37:25:4c:d3:20:9a:6b:
f7:6f:b9:f9:79:45:05:16:28:e0:87:b9:c4:f5:97:ab:02:d4:
62:c9:b4:8d:4c:8f:7e:26:b9:30:74:4d:4e:01:4c:56:52:54:
ee:a9:9e:07:90:b3:77:38:61:d9:25:37:64:c4:af:93:06:84:
34:cb:1a:71:0e:03:2e:b4:74:08:37:cb:df:3c:40:24:41:c1:
a2:e8:ff:80:f0:0f:de:9c:91:6c:6e:14:e0:19:4d:a6:67:80:
48:10:ed:aa:43:46:33:d3:e0:ab:3a:89:2f:12:1e:2b:26:16:
02:a3:8e:02:a4:85:34:bb:5b:31:0c:27:14:df:3e:45:3f:be:
ad:bf:12:b4:ba:80:5c:ed:a0:b8:4f:62:25:36:8a:f2:3d:02:
9d:d0:74:39:ef:8d:8c:a8:fa:3e:6e:51:e0:4b:41:b9:82:f0:
27:3e:da:c4:56:5c:5a:4e:f3:64:c3:0d:2d:f5:ad:77:5e:ea:
e2:c0:c7:d6:be:61:99:a5:7c:eb:4e:dd:83:1c:c9:fe:74:2b:
e5:11:18:0e:31:5e:80:4c:78:d6:0b:89:f9:9d:2d:41:9b:8a:
c5:91:28:87:44:a2:99:fd:bd:c7:64:68:19:34:5f:03:28:3e:
4f:b1:47:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:36:44 2026 by rpki-client