Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RH3dYEdbKmmA8PIr-pbN3pK3EfY.roa
File: RH3dYEdbKmmA8PIr-pbN3pK3EfY.roa (raw, json)
Hash identifier: F44/PZ3yh2biZmQhzxmwiuC9ZCRXrcFcHcisRK5remo=
Subject key identifier: 44:7D:DD:60:47:5B:2A:69:80:F0:F2:2B:FA:96:CD:DE:92:B7:11:F6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019CE1A0177DE1220D941B20A358105D1BCE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RH3dYEdbKmmA8PIr-pbN3pK3EfY.roa
Signing time: Thu 12 Mar 2026 10:38:11 +0000
ROA not before: Thu 12 Mar 2026 10:38:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41095
IP address blocks: 2a06:1180:10::/48 maxlen: 48
2a06:1184:55::/48 maxlen: 48
2a06:35c4:100::/48 maxlen: 48
2a06:dfc0::/29 maxlen: 32
2a07:bb40::/29 maxlen: 32
2a09:17c0:b19a::/48 maxlen: 48
2a09:17c1:11d::/48 maxlen: 48
2a0a:2d00:10::/48 maxlen: 48
2a0a:2d00:20::/48 maxlen: 48
2a0a:2d07:fc4c::/48 maxlen: 48
2a0c:7881:100::/48 maxlen: 48
2a0c:7882:11::/48 maxlen: 48
2a0d:e5c0::/29 maxlen: 32
2a0e:15c0:6::/48 maxlen: 48
2a0e:15c7:2d::/48 maxlen: 48
2a0e:1a83:1::/48 maxlen: 48
2a0e:f600:2::/48 maxlen: 48
2a0e:f600:14::/48 maxlen: 48
2a0e:f603:1312::/48 maxlen: 48
2a0f:1200:100::/48 maxlen: 48
2a0f:1581:10::/48 maxlen: 48
2a0f:1f80::/29 maxlen: 32
2a0f:2d82:100::/48 maxlen: 48
2a0f:31c3:100::/48 maxlen: 48
2a0f:3d80:2::/48 maxlen: 48
2a0f:7d00:10::/48 maxlen: 48
2a0f:7d06:101::/48 maxlen: 48
2a0f:dd40::/29 maxlen: 32
2a0f:df46:100::/48 maxlen: 48
2a0f:e1c0:acab::/48 maxlen: 48
2a0f:e202:fc06::/48 maxlen: 48
2a0f:e6c2:100::/48 maxlen: 48
2a0f:e7c4:22::/48 maxlen: 48
2a0f:e7c7:95::/48 maxlen: 48
2a0f:e842:100::/48 maxlen: 48
2a0f:e844:8642::/48 maxlen: 48
2a0f:e940::/29 maxlen: 32
2a0f:ea00::/29 maxlen: 32
2a0f:ea43:10::/48 maxlen: 48
2a10:30c0::/29 maxlen: 32
2a10:6400::/29 maxlen: 32
2a10:67c2:1::/48 maxlen: 48
2a12:ac43:acab::/48 maxlen: 48
2a12:ecc4:2213::/48 maxlen: 48
2a13:18c6:99::/48 maxlen: 48
2a13:7400::/29 maxlen: 32
2a13:8c86:140::/48 maxlen: 48
2a13:9282:100::/48 maxlen: 48
2a13:9d00::/29 maxlen: 32
2a13:9f00::/29 maxlen: 32
2a13:c500::/29 maxlen: 32
2a13:c900:44::/48 maxlen: 48
2a13:c900:55::/48 maxlen: 48
2a13:e102:10::/48 maxlen: 48
2a13:fd00::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e1:a0:17:7d:e1:22:0d:94:1b:20:a3:58:10:5d:1b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 12 10:38:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=447ddd60475b2a6980f0f22bfa96cdde92b711f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:97:c3:d1:45:1d:91:8b:e8:c9:58:87:62:56:
2a:b0:9b:87:43:c9:e6:14:6b:1f:c5:b7:a1:f5:72:
e8:c8:d4:74:46:3f:80:3e:2a:f2:3b:3c:e4:5e:68:
7f:14:d9:cf:e2:8c:0e:40:81:df:d4:b6:47:6d:37:
be:bf:0e:e7:d5:31:63:01:d7:89:e1:0a:ac:9d:ae:
05:08:dc:3f:04:39:3f:ad:1d:98:a4:14:f0:6a:58:
35:b7:28:3c:08:f1:4a:44:c7:fb:e4:6d:4f:79:d7:
89:c1:3c:85:46:45:fe:f0:cd:c8:06:02:6e:52:04:
2f:8c:c3:36:f0:30:e9:d2:40:9f:2c:68:da:00:62:
e4:f7:7c:7c:d8:dc:98:6e:65:c5:39:e2:65:5f:e3:
2e:cb:e3:d1:95:e5:25:34:9a:96:c0:be:da:c6:6e:
71:d8:a5:bf:04:0b:1c:5b:7e:47:2d:61:e6:81:f0:
05:67:e7:05:da:06:1b:92:a6:7b:83:8b:e6:e2:58:
72:79:34:a2:60:c5:ba:7e:51:1b:2e:8c:9a:cd:e2:
70:63:74:8d:d3:d4:30:a1:0a:d9:f4:4f:12:78:73:
03:4b:15:8e:61:c6:d6:a8:16:65:7e:53:40:17:68:
29:7b:51:35:4c:11:d8:ec:c4:28:98:da:11:de:0c:
29:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7D:DD:60:47:5B:2A:69:80:F0:F2:2B:FA:96:CD:DE:92:B7:11:F6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RH3dYEdbKmmA8PIr-pbN3pK3EfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1180:10::/48
2a06:1184:55::/48
2a06:35c4:100::/48
2a06:dfc0::/29
2a07:bb40::/29
2a09:17c0:b19a::/48
2a09:17c1:11d::/48
2a0a:2d00:10::/48
2a0a:2d00:20::/48
2a0a:2d07:fc4c::/48
2a0c:7881:100::/48
2a0c:7882:11::/48
2a0d:e5c0::/29
2a0e:15c0:6::/48
2a0e:15c7:2d::/48
2a0e:1a83:1::/48
2a0e:f600:2::/48
2a0e:f600:14::/48
2a0e:f603:1312::/48
2a0f:1200:100::/48
2a0f:1581:10::/48
2a0f:1f80::/29
2a0f:2d82:100::/48
2a0f:31c3:100::/48
2a0f:3d80:2::/48
2a0f:7d00:10::/48
2a0f:7d06:101::/48
2a0f:dd40::/29
2a0f:df46:100::/48
2a0f:e1c0:acab::/48
2a0f:e202:fc06::/48
2a0f:e6c2:100::/48
2a0f:e7c4:22::/48
2a0f:e7c7:95::/48
2a0f:e842:100::/48
2a0f:e844:8642::/48
2a0f:e940::/29
2a0f:ea00::/29
2a0f:ea43:10::/48
2a10:30c0::/29
2a10:6400::/29
2a10:67c2:1::/48
2a12:ac43:acab::/48
2a12:ecc4:2213::/48
2a13:18c6:99::/48
2a13:7400::/29
2a13:8c86:140::/48
2a13:9282:100::/48
2a13:9d00::/29
2a13:9f00::/29
2a13:c500::/29
2a13:c900:44::/48
2a13:c900:55::/48
2a13:e102:10::/48
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
b3:77:74:9d:00:f0:dc:d5:52:66:c7:54:3f:dd:0e:51:5c:37:
a7:8f:d4:21:00:1d:21:1b:6c:97:dc:65:d0:29:34:06:6a:2a:
ee:aa:6e:6c:fd:29:31:03:76:88:78:19:47:4c:67:8a:e0:8a:
8e:08:a6:69:b5:23:d3:8e:9b:c8:75:c8:69:09:71:7c:a9:5d:
63:ad:05:b4:6a:98:ab:ab:4e:d9:3c:57:7f:b4:ac:92:5e:4a:
4c:f1:db:20:74:e8:e0:a8:97:bb:0a:5d:ad:b8:13:36:4a:66:
07:35:7a:0f:78:f3:b4:82:93:1d:a6:9d:b7:e0:8c:1c:0a:bb:
35:26:c1:e9:c7:16:04:7c:25:25:18:e0:d8:1d:c4:1a:62:72:
13:f1:ff:d8:fb:a4:8d:07:a0:6f:29:51:93:85:63:9d:a7:43:
5a:d6:d4:52:7d:2d:0c:70:a4:c7:42:bb:d2:c5:6a:b8:16:d4:
d1:15:6c:bf:0d:5b:b7:7e:0a:07:66:1c:0c:1c:27:06:50:20:
03:fb:ef:8e:1c:03:8b:3f:b6:5c:3b:d2:3b:7a:d0:15:8d:88:
cb:11:b3:35:28:58:bf:fd:64:e7:2f:85:30:4c:fc:73:1b:42:
23:9d:5a:64:6d:9d:b7:cd:04:3b:07:ea:e8:27:08:31:cc:a1:
ac:31:59:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:35:22 2026 by rpki-client