Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/uyP_T_ZNO5QRKpx11_xHu9AQ3vA.roa
File: uyP_T_ZNO5QRKpx11_xHu9AQ3vA.roa (raw, json)
Hash identifier: 4MPXntavfi6oMCmbe9KLHapS2+uyKRzkwiw4RYfiFvY=
Subject key identifier: BB:23:FF:4F:F6:4D:3B:94:11:2A:9C:75:D7:FC:47:BB:D0:10:DE:F0
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 019E03F7926B974773DA828F6A4E0CD9F0EE
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/uyP_T_ZNO5QRKpx11_xHu9AQ3vA.roa
Signing time: Thu 07 May 2026 19:43:36 +0000
ROA not before: Thu 07 May 2026 19:43:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 40352
IP address blocks: 95.155.154.0/24 maxlen: 24
95.155.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:03:f7:92:6b:97:47:73:da:82:8f:6a:4e:0c:d9:f0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: May 7 19:43:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bb23ff4ff64d3b94112a9c75d7fc47bbd010def0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a2:46:b3:d6:15:ad:9b:b8:66:6d:20:a7:22:
9e:19:48:f8:59:bd:54:b1:b2:b0:65:fb:37:c6:c4:
ea:9c:14:bf:d9:72:c1:39:86:b6:15:0e:d1:61:e7:
72:5e:80:4f:63:b2:e6:7f:e1:4b:9c:ed:df:c8:fa:
20:36:0c:2f:4d:ed:b0:10:e2:b3:89:c8:2e:59:64:
bd:d9:0a:d0:cc:2f:d2:e8:f1:34:2c:09:73:51:aa:
3b:ba:3f:79:88:97:0d:f3:fc:a2:e2:9c:91:1c:7c:
d6:f3:96:0b:69:9e:bc:0d:45:40:c1:38:e9:08:a4:
b1:53:d9:cc:87:8d:c5:e1:5e:5e:f9:25:94:42:b8:
27:fe:72:ac:a9:05:50:9c:b9:29:59:da:15:3a:d0:
19:44:f0:48:f5:7c:cd:06:29:52:6f:c6:6e:09:b3:
d4:31:52:1d:82:47:80:57:85:2f:1b:57:ec:a5:1e:
fc:7c:94:b6:1c:57:d8:ea:45:a1:41:af:ea:9e:9c:
80:3a:b3:4d:c5:09:eb:47:68:74:f1:d6:58:d9:d1:
ba:06:6c:8e:1a:77:f4:2e:a2:70:ee:6a:df:0a:c2:
7b:26:b2:d6:38:2e:83:89:a5:7a:89:62:0c:5d:00:
69:19:32:8d:7b:91:4b:b7:20:f2:ed:04:a9:8e:68:
0b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:23:FF:4F:F6:4D:3B:94:11:2A:9C:75:D7:FC:47:BB:D0:10:DE:F0
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/uyP_T_ZNO5QRKpx11_xHu9AQ3vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.155.154.0/24
95.155.156.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:64:06:c5:57:81:33:d8:c4:51:aa:49:e1:68:59:95:c3:a0:
da:45:30:40:21:21:07:d8:21:fe:8a:ff:15:05:de:fe:12:eb:
da:5d:5a:9b:3f:79:81:20:bd:e5:70:1e:f6:3a:49:e3:fd:72:
d7:78:36:97:78:61:2b:b9:3f:d1:39:a1:71:b4:b1:f7:9a:e8:
26:ef:23:6e:d2:e0:97:dd:d1:dd:d7:7a:a7:d5:bc:ec:d3:ce:
bb:83:2e:ef:86:a6:ff:d3:5b:3a:e5:d3:47:5f:ef:a6:65:7a:
8d:9a:12:98:8d:ed:be:73:8f:ff:61:a8:aa:e6:30:03:f4:c3:
63:16:98:7c:c9:cf:94:9b:48:93:a5:4b:8b:9b:0d:61:0c:7a:
d7:1a:0e:4f:14:03:84:87:8a:5f:88:11:ad:a6:09:aa:2e:47:
75:0a:a4:20:3f:2e:c6:bc:5d:3a:77:06:3c:29:fb:de:af:e6:
34:40:6c:f3:16:01:43:7d:10:29:99:b0:93:d0:ec:5f:b5:cc:
8d:55:52:69:c6:e0:03:88:88:92:7a:95:17:8b:b8:a2:66:46:
93:33:f6:76:bb:67:d0:a0:e5:44:c7:fc:cb:e6:d7:53:05:83:
ae:0e:40:8c:7f:6a:c5:55:8b:17:c0:ed:54:47:ee:f1:45:8c:
5f:c4:a4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:11:21 2026 by rpki-client