Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/_P35jS1YdYMseUzMHuI97ooNJeg.roa
File: _P35jS1YdYMseUzMHuI97ooNJeg.roa (raw, json)
Hash identifier: /gCkgKwVc1WRgNPEwprmDB3zy3RVJ0h/ka2X69aylhQ=
Subject key identifier: FC:FD:F9:8D:2D:58:75:83:2C:79:4C:CC:1E:E2:3D:EE:8A:0D:25:E8
Certificate issuer: /CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Certificate serial: 019B78A21E4D0D60717939AFB5F5ECA259DE
Authority key identifier: 31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/_P35jS1YdYMseUzMHuI97ooNJeg.roa
Signing time: Thu 01 Jan 2026 08:17:29 +0000
ROA not before: Thu 01 Jan 2026 08:17:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212169
IP address blocks: 185.104.190.0/24 maxlen: 24
193.84.101.0/24 maxlen: 24
212.23.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:78:a2:1e:4d:0d:60:71:79:39:af:b5:f5:ec:a2:59:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Validity
Not Before: Jan 1 08:17:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fcfdf98d2d5875832c794ccc1ee23dee8a0d25e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8c:7f:f1:a7:fc:dc:45:e5:14:5d:11:29:b4:
a3:db:97:08:fb:b9:37:09:73:36:61:d8:7c:dd:86:
f3:b1:ab:0c:1f:f6:0f:cb:f0:78:30:b6:ff:4e:7f:
d2:34:6d:4f:c3:13:2a:21:25:4e:4f:f9:39:d1:2c:
ee:dd:44:c0:bc:6b:a7:fa:2d:03:58:a2:c1:3a:4b:
d0:84:59:99:07:c7:95:07:b3:53:64:54:62:03:a6:
cd:8a:03:80:2b:5f:3b:9a:2f:49:86:2c:e1:26:33:
0b:0f:42:e4:c5:9a:4a:21:da:df:a6:89:db:a1:30:
17:d2:84:bf:db:08:9c:aa:18:c9:ec:0e:46:45:e9:
07:84:ca:d6:40:47:b4:a1:0a:9d:89:4a:40:91:41:
61:be:ea:77:b1:b8:99:21:30:ba:aa:fd:35:b6:80:
69:6a:e1:4a:14:3e:e5:72:53:4d:a3:b9:dd:7b:57:
77:70:23:86:71:c7:fa:6e:2e:e5:e9:00:53:02:af:
a5:28:ce:fd:28:17:49:9b:05:05:09:47:30:19:b1:
31:81:a1:89:48:47:d2:73:ee:1c:e7:1a:2d:bf:0b:
5c:7b:b3:b4:b4:22:33:22:c9:97:f7:10:96:b6:86:
53:d3:dd:b4:c0:eb:f3:43:6e:9b:d9:c8:bb:91:17:
d5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FD:F9:8D:2D:58:75:83:2C:79:4C:CC:1E:E2:3D:EE:8A:0D:25:E8
X509v3 Authority Key Identifier:
keyid:31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/_P35jS1YdYMseUzMHuI97ooNJeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.190.0/24
193.84.101.0/24
212.23.192.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a9:73:7e:d7:e6:33:04:37:b7:f1:1c:e7:1c:dc:17:94:ca:
d1:64:24:5a:07:91:22:95:a5:a5:ba:a7:cf:0a:22:b4:b3:dd:
d9:2f:97:de:13:b5:b0:0e:88:19:06:1e:20:f6:98:11:35:2a:
51:6a:0c:9e:56:48:9a:0f:ab:46:da:db:25:bb:45:0c:03:95:
85:29:df:f7:a0:25:e5:02:6e:39:de:03:a0:b8:81:95:4c:4b:
3c:44:c0:08:84:18:42:45:be:84:3e:d1:5f:73:d7:84:a7:9a:
b6:a3:3a:dc:2e:4b:fb:5c:e6:a7:b7:82:c8:75:3a:c4:0a:37:
55:bc:04:b1:69:3c:01:76:56:e1:a1:5c:70:20:d0:0d:e1:d6:
51:92:74:cf:d3:1d:ea:77:af:e7:af:9a:a4:ef:27:2f:7e:8f:
80:b5:58:c5:db:3b:7d:1b:33:63:e2:f6:f0:56:66:55:2e:82:
65:1c:a7:f3:49:5c:1f:b9:77:80:c3:d5:d3:d6:16:76:97:d8:
40:9a:31:78:ba:15:5e:3f:b8:ee:d7:19:5c:f1:79:bb:33:05:
20:07:1a:5c:4a:a9:05:8d:8c:93:2c:ff:27:e2:84:4d:1e:06:
d8:48:f3:11:39:30:78:05:8b:58:e3:d1:88:06:d1:b3:35:c8:
87:07:53:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:33:09 2026 by rpki-client