Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ELj-7MtBAtrrOwfrcGQsv5K41fI.roa
File: ELj-7MtBAtrrOwfrcGQsv5K41fI.roa (raw, json)
Hash identifier: UmiOzYn6lnl4NAVu/sgPO8PDzJPZXZFdp9At+J21yrA=
Subject key identifier: 10:B8:FE:EC:CB:41:02:DA:EB:3B:07:EB:70:64:2C:BF:92:B8:D5:F2
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 019D0571DB82B1595237B0EEA4D7D00E0FF9
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ELj-7MtBAtrrOwfrcGQsv5K41fI.roa
Signing time: Thu 19 Mar 2026 09:34:00 +0000
ROA not before: Thu 19 Mar 2026 09:34:00 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/24 maxlen: 24
46.34.40.0/24 maxlen: 24
46.34.54.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.mft
rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:05:71:db:82:b1:59:52:37:b0:ee:a4:d7:d0:0e:0f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 19 09:34:00 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=10b8feeccb4102daeb3b07eb70642cbf92b8d5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d4:27:d2:55:4f:7c:9b:ea:9d:0b:96:2f:94:
ec:63:0f:4a:0b:d7:94:8c:12:43:aa:ac:0b:8b:61:
21:4c:1b:84:8a:a3:7e:4f:dd:6e:3c:60:63:ce:98:
26:61:05:0f:37:d2:68:47:4f:e7:ea:62:66:6a:1d:
21:cf:f7:6d:9e:7e:9f:47:95:73:06:90:c7:6f:df:
ab:14:e1:03:07:a4:f4:cf:79:8a:85:eb:4b:04:dc:
db:35:91:38:41:8e:bf:7c:d7:bf:39:d8:dd:f5:6a:
eb:17:34:f3:98:42:a7:64:ec:a1:34:c3:1a:8f:b9:
de:83:6f:cc:6b:04:0e:a4:c5:a6:04:b4:29:50:ae:
cf:6d:05:c0:38:7b:dc:07:87:01:bb:40:cb:e8:92:
bc:43:3a:9a:82:d7:53:16:51:fa:71:b7:47:0c:19:
91:d5:60:04:27:be:73:de:35:d0:0e:0e:03:b4:1c:
0c:04:bd:bd:1f:b5:2f:89:92:6c:d1:8c:60:7c:5d:
cb:eb:50:02:2e:5d:64:9a:a5:73:44:db:87:c3:91:
9d:48:0e:86:50:fc:c9:00:6f:fb:0b:e3:18:bd:94:
fa:05:99:29:c1:79:32:b0:4b:b5:24:0a:60:e3:21:
32:52:8b:96:bc:0c:2a:24:2c:c6:7d:56:a5:62:7c:
09:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B8:FE:EC:CB:41:02:DA:EB:3B:07:EB:70:64:2C:BF:92:B8:D5:F2
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ELj-7MtBAtrrOwfrcGQsv5K41fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.40.0/24
46.34.54.0/24
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
82:89:2a:68:49:1e:2a:05:45:e6:d8:c6:ac:9b:76:ef:ba:4e:
b8:94:37:7d:76:7b:8d:15:5b:e0:ce:05:ca:35:69:d1:ac:4f:
74:8b:8c:b5:3b:0b:6b:42:8d:9f:7c:b3:82:c5:4c:00:f8:e5:
6d:0b:b7:e1:8a:82:fa:68:d5:ac:ed:e5:c7:c4:af:17:92:79:
19:12:c9:01:a3:0d:20:9f:d9:ed:5b:d5:3c:35:f0:ed:d8:9f:
11:97:bb:a2:18:27:83:b0:22:79:f9:ab:9e:40:1a:3c:09:15:
3b:f9:da:f5:58:e1:57:4f:a2:ac:28:4c:9a:44:4a:e0:8e:f8:
0b:8e:1b:b2:a4:f2:7c:cd:99:ce:b1:ae:0f:32:77:51:24:40:
74:d6:c4:4f:52:ce:de:bf:80:0c:64:f4:4c:b8:08:7b:0b:97:
6e:ff:a9:29:ba:dd:5d:1b:10:0c:a5:0c:7f:02:c5:fa:d2:40:
ca:10:bc:cf:0d:44:6f:91:62:a4:ea:be:4c:5a:4f:ca:53:1b:
1e:ee:66:c4:da:88:8b:ab:5a:f1:73:0b:80:4d:f6:8c:5d:54:
66:2f:d1:5c:38:5f:2e:50:c0:11:71:6c:40:ea:d5:d7:a9:a1:
ee:42:ae:25:de:db:68:c4:58:5b:77:5f:a7:62:b9:db:31:23:
f9:4b:84:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:10:21 2026 by rpki-client