Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/TyNOn4TNAx2omsJ5AvuxHJvXe0Y.roa
File: TyNOn4TNAx2omsJ5AvuxHJvXe0Y.roa (raw, json)
Hash identifier: J/zevkaEkdHJwCzHMRFaDsyeaoLiDWpPTHAZUSzBODU=
Subject key identifier: 4F:23:4E:9F:84:CD:03:1D:A8:9A:C2:79:02:FB:B1:1C:9B:D7:7B:46
Certificate issuer: /CN=1455ca30592313388925ee1441009ad31d4bb41f
Certificate serial: 019E137DDED662228EFC0F3A8849EB83713A
Authority key identifier: 14:55:CA:30:59:23:13:38:89:25:EE:14:41:00:9A:D3:1D:4B:B4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FFXKMFkjEziJJe4UQQCa0x1LtB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/TyNOn4TNAx2omsJ5AvuxHJvXe0Y.roa
Signing time: Sun 10 May 2026 20:04:36 +0000
ROA not before: Sun 10 May 2026 20:04:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43141
IP address blocks: 31.44.32.0/20 maxlen: 24
193.222.104.0/23 maxlen: 24
2a04:1580::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/FFXKMFkjEziJJe4UQQCa0x1LtB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/FFXKMFkjEziJJe4UQQCa0x1LtB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/FFXKMFkjEziJJe4UQQCa0x1LtB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:13:7d:de:d6:62:22:8e:fc:0f:3a:88:49:eb:83:71:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1455ca30592313388925ee1441009ad31d4bb41f
Validity
Not Before: May 10 20:04:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4f234e9f84cd031da89ac27902fbb11c9bd77b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:84:73:2b:e3:e2:4f:9e:d1:3c:c1:fc:fb:
8d:91:42:51:e0:da:41:9a:8f:61:9a:71:67:92:bf:
a7:80:01:9f:3c:c8:71:ec:e6:b1:2c:e8:c2:40:5e:
99:eb:a1:7e:8e:5d:b5:40:8e:e2:64:ae:ce:aa:13:
d5:2a:d6:d4:33:a3:7e:a3:0c:fd:cc:47:09:58:8d:
5a:fc:f6:2a:98:95:de:58:54:1c:b9:af:f5:5b:09:
cf:48:19:09:38:74:a2:ca:2f:ac:11:2a:b6:f3:75:
b8:a0:4c:07:73:18:70:41:a2:22:f3:db:27:9c:6d:
ca:d9:fe:8d:42:25:b1:17:28:5a:61:7e:3d:1a:df:
0f:0d:8d:4e:20:37:06:07:99:cc:1c:ce:64:de:ae:
af:6d:b2:de:fa:c7:4c:79:ec:45:9e:12:16:66:2b:
14:40:0d:eb:b1:bd:a1:b0:92:de:46:70:79:1a:e2:
f0:1c:9d:7b:5d:7b:00:18:2d:6f:25:6e:34:37:67:
4c:d3:0b:ca:eb:87:55:d2:57:ba:6f:59:2d:9a:c1:
4a:30:d0:67:23:2f:98:50:4a:b9:3c:20:71:98:fe:
8a:6f:1a:45:23:61:62:87:c6:87:96:9f:58:c6:fd:
c2:91:5c:51:fb:ad:5c:56:ad:a9:c1:40:f9:3a:60:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:23:4E:9F:84:CD:03:1D:A8:9A:C2:79:02:FB:B1:1C:9B:D7:7B:46
X509v3 Authority Key Identifier:
keyid:14:55:CA:30:59:23:13:38:89:25:EE:14:41:00:9A:D3:1D:4B:B4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FFXKMFkjEziJJe4UQQCa0x1LtB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/TyNOn4TNAx2omsJ5AvuxHJvXe0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f0832e-675b-4ec2-a802-9b26cab79451/1/FFXKMFkjEziJJe4UQQCa0x1LtB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.32.0/20
193.222.104.0/23
IPv6:
2a04:1580::/29
Signature Algorithm: sha256WithRSAEncryption
a8:f0:65:7d:f5:a7:a5:f8:3d:40:84:b0:40:b8:55:1e:00:db:
c6:e4:0d:8a:2e:e0:93:03:9d:a1:72:5e:e6:c0:96:9a:83:fe:
af:66:06:71:5a:14:8b:20:06:80:99:57:ee:ae:c5:c1:a1:94:
41:60:d4:95:2a:30:df:04:e8:de:11:9e:14:b7:78:32:6f:7a:
63:6b:88:85:5f:50:bb:40:48:80:02:e5:71:11:39:4c:b1:f7:
b3:51:1b:2e:20:2c:95:41:af:12:1e:41:e7:c0:fb:04:b9:30:
b0:22:72:b1:3b:5d:a6:62:f7:7e:49:ab:df:51:e7:8d:38:75:
d0:48:f9:f6:44:22:8e:55:a4:06:f7:33:f9:a4:f2:e7:de:c8:
86:dc:87:4a:6d:91:70:a7:31:f2:ce:70:85:9c:21:c5:08:29:
75:37:e5:90:f7:67:07:46:6e:85:28:3f:46:e3:a6:34:f6:6e:
fe:03:59:ce:85:3a:dc:df:c3:f0:25:3e:d8:fb:85:5f:0d:fa:
33:86:75:a3:a8:4d:97:2c:16:63:4e:ea:df:99:a0:ce:0c:50:
9d:6e:c5:78:9c:1b:57:67:92:5e:74:06:8e:ec:6d:71:85:8e:
27:b0:10:0d:43:01:16:5a:30:19:49:96:1e:a7:46:6e:cb:7b:
60:0a:38:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:38:40 2026 by rpki-client