Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PggkDgoZrRXeNLr8CFzLfdE-Fio.roa
File: PggkDgoZrRXeNLr8CFzLfdE-Fio.roa (raw, json)
Hash identifier: 5Ysh4SDmhJ6v1j1eeG9SbMnI5Z3tZ+FChrrPMlSBcwo=
Subject key identifier: 3E:08:24:0E:0A:19:AD:15:DE:34:BA:FC:08:5C:CB:7D:D1:3E:16:2A
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019E0216ECEAAD96F808F86DA8A8B8EC9573
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PggkDgoZrRXeNLr8CFzLfdE-Fio.roa
Signing time: Thu 07 May 2026 10:58:37 +0000
ROA not before: Thu 07 May 2026 10:58:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 39643
IP address blocks: 193.234.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:02:16:ec:ea:ad:96:f8:08:f8:6d:a8:a8:b8:ec:95:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 7 10:58:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3e08240e0a19ad15de34bafc085ccb7dd13e162a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:13:78:13:8a:c6:5b:83:71:8c:f8:45:ee:d5:
60:16:9c:3e:eb:d9:0f:32:ef:d6:1f:cc:17:5b:96:
38:fe:f8:09:62:08:9d:06:b4:74:36:3b:8b:32:83:
82:2f:28:9c:da:9e:61:3e:66:94:41:bb:58:15:00:
16:3f:39:68:da:b8:2c:a0:04:4c:00:5b:63:f2:65:
11:f9:12:1e:26:4e:8c:c2:2e:48:25:73:aa:0d:d1:
49:a1:1a:8f:71:d4:40:8e:60:ab:bd:97:0b:99:21:
f3:8f:30:d6:96:6c:b6:0f:88:9f:d1:42:1a:ec:89:
0f:e0:69:b1:be:2e:b6:93:a6:78:76:cd:72:a6:5e:
91:b5:ec:94:d2:1f:ce:86:19:54:db:5c:d5:37:2b:
46:16:12:32:04:36:73:2c:cc:f0:b6:ad:2a:b1:d2:
e7:20:82:f2:09:bb:17:0e:16:82:36:f0:84:16:13:
84:95:f2:a6:ad:b5:64:08:fb:45:11:0f:87:6e:f6:
e1:d2:8c:8c:9a:79:4d:4a:cf:e7:27:f9:14:c4:d8:
a3:10:e2:b5:a5:8d:83:74:f0:fd:e5:5c:b1:d5:ae:
24:b0:f8:c3:9d:63:b3:4d:b3:e9:30:90:bc:2b:64:
b0:6e:15:75:16:e0:72:88:aa:40:e5:0a:92:52:ba:
15:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:08:24:0E:0A:19:AD:15:DE:34:BA:FC:08:5C:CB:7D:D1:3E:16:2A
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PggkDgoZrRXeNLr8CFzLfdE-Fio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.234.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:59:29:b3:40:3e:3e:2e:3d:c2:c7:6e:52:10:cd:17:70:0c:
cd:fb:a0:10:47:4c:0b:d9:a3:df:29:6d:71:ef:1c:c6:3d:33:
9f:39:0e:fa:58:4e:26:66:59:82:b5:45:68:d5:62:a6:65:df:
ce:e1:e0:47:59:44:d6:84:a5:36:9e:f0:97:aa:2c:75:c8:f4:
ac:6c:df:8d:93:90:e7:28:d9:51:85:2c:e1:c8:4f:bf:ff:91:
5e:ad:6c:f4:94:91:ce:1a:60:bf:f6:93:c1:95:f4:c9:cf:ed:
58:bc:98:77:15:52:4e:a0:8a:2c:ea:d4:2c:a8:54:cd:48:7e:
ac:2e:e7:0f:4d:b3:23:d5:1f:2a:5b:b0:3f:b1:ae:de:f5:56:
af:25:45:fa:21:93:d5:de:eb:ba:00:6b:f0:7e:64:5c:2b:39:
c8:67:89:70:11:43:c5:26:8b:3f:1b:86:80:1b:e8:47:d3:43:
95:36:84:e5:4e:57:39:81:fc:2d:81:69:be:bd:56:6d:aa:70:
6b:84:39:57:8a:ed:9f:f6:62:f2:81:16:83:bb:40:ee:80:bb:
10:f7:7a:28:ff:d3:9d:85:b4:32:69:a3:6d:55:5b:ff:5e:f8:
3f:59:ca:5d:ce:8e:f0:ef:1f:7c:09:68:69:78:45:fd:f0:a0:
c6:9f:1c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:31:28 2026 by rpki-client