Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/jRC7SDxZqowcGpwaIpWoX9q5Blc.roa
File: jRC7SDxZqowcGpwaIpWoX9q5Blc.roa (raw, json)
Hash identifier: dv26YCMIYxVA1BmLx4nbyabWyLlsh6ES9EV3E7FK0QU=
Subject key identifier: 8D:10:BB:48:3C:59:AA:8C:1C:1A:9C:1A:22:95:A8:5F:DA:B9:06:57
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 019DDEEE9026079F87D048EF3F85602D7C4D
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/jRC7SDxZqowcGpwaIpWoX9q5Blc.roa
Signing time: Thu 30 Apr 2026 15:07:49 +0000
ROA not before: Thu 30 Apr 2026 15:07:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 57043
IP address blocks: 213.182.202.0/24 maxlen: 24
213.182.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:de:ee:90:26:07:9f:87:d0:48:ef:3f:85:60:2d:7c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Apr 30 15:07:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8d10bb483c59aa8c1c1a9c1a2295a85fdab90657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e5:58:09:fe:29:3e:01:66:71:f2:bd:3c:c2:
06:68:b4:dd:9c:d2:4e:ea:05:1f:53:2d:f0:a4:63:
54:50:09:b4:96:1f:e0:84:52:f7:54:9e:66:52:63:
23:93:17:a2:db:ba:47:43:d1:9a:05:44:2d:98:b2:
49:d1:08:71:85:05:63:b8:38:ec:18:01:85:7e:9e:
05:00:5f:41:67:42:a2:3d:a6:bc:08:e6:3a:66:35:
1e:f5:a7:7d:0b:cd:9a:9f:7d:07:64:e9:a4:89:1c:
40:0c:fd:e7:6c:dd:30:82:ca:7f:f8:ed:41:0e:ae:
a0:35:a6:95:d7:10:ea:2d:2b:f6:27:5c:f7:6f:8a:
a4:1a:04:e1:e5:41:66:9e:cf:f2:95:98:1e:87:2f:
10:cd:26:09:a2:bf:69:dc:e4:a1:19:40:f2:4e:c7:
f7:c4:37:32:55:2e:00:93:57:81:f3:57:a7:6d:00:
80:2e:ad:e0:ae:15:39:9e:b2:02:5b:07:9a:13:36:
c2:7c:9b:e5:8b:20:4c:0e:4e:c8:62:58:5c:26:44:
3d:80:b9:60:bd:6b:f0:eb:05:b0:25:d6:b6:4b:b3:
40:d0:c7:dd:38:5d:26:dd:ff:1b:73:bd:30:e9:67:
f6:be:9d:45:c3:68:fd:7c:6d:24:2d:8b:37:19:7c:
08:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:10:BB:48:3C:59:AA:8C:1C:1A:9C:1A:22:95:A8:5F:DA:B9:06:57
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/jRC7SDxZqowcGpwaIpWoX9q5Blc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.202.0/24
213.182.220.0/24
Signature Algorithm: sha256WithRSAEncryption
62:46:e0:c6:ca:c8:ff:7c:02:29:be:f0:be:f0:9f:bd:2e:ab:
27:b5:c0:d7:df:ff:f1:db:b6:65:c2:a0:a1:50:37:ac:b8:da:
62:c0:47:40:34:29:4f:5a:21:6b:67:94:3e:25:f9:12:13:d2:
3d:5b:78:c6:3f:35:ac:4b:de:e9:5a:13:e3:dc:32:55:c7:47:
37:1e:29:95:7d:a0:7e:d5:e5:3a:72:35:a2:91:29:64:55:69:
16:a2:c8:9e:9d:22:c4:43:52:cf:49:b6:04:61:90:ca:11:da:
1b:06:20:ed:e8:ae:6a:ad:2a:50:0e:75:05:80:0e:03:3e:3b:
b1:a1:06:d5:4e:cf:ba:9f:f0:0f:f5:af:ea:cc:6d:80:23:88:
ba:3f:3b:e9:c2:de:e1:4d:3f:17:d0:83:6f:69:0e:ec:3c:41:
08:7a:20:09:4b:c0:f9:1c:98:40:58:bd:ec:5f:9a:6c:9f:b7:
9f:f3:89:37:26:0c:8e:8a:1b:ed:30:cb:31:39:d8:9b:80:08:
d1:bc:7e:3b:33:77:ae:d0:9e:89:26:5a:f3:a9:ef:5f:7b:18:
b5:9c:ce:fb:ad:66:b0:b1:6e:c7:13:58:92:ea:03:be:54:10:
8c:c5:da:86:4b:b3:62:f8:25:4b:8f:fe:46:2a:8d:e3:be:e8:
ea:12:67:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:50:48 2026 by rpki-client