Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/REiaLPFJMgnbb32-B6MU-uTjIlI.roa
File: REiaLPFJMgnbb32-B6MU-uTjIlI.roa (raw, json)
Hash identifier: nKuK7TPAmuzDf184++qSMR2f3U6nDVTJDG8nEA5Zshs=
Subject key identifier: 44:48:9A:2C:F1:49:32:09:DB:6F:7D:BE:07:A3:14:FA:E4:E3:22:52
Certificate issuer: /CN=1abc9fb3312a4abf1ddc28518e7608e0ec3275df
Certificate serial: 019DDEDB55356DA5EC65D8699E9FD1692ABE
Authority key identifier: 1A:BC:9F:B3:31:2A:4A:BF:1D:DC:28:51:8E:76:08:E0:EC:32:75:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GryfszEqSr8d3ChRjnYI4Owydd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/REiaLPFJMgnbb32-B6MU-uTjIlI.roa
Signing time: Thu 30 Apr 2026 14:46:49 +0000
ROA not before: Thu 30 Apr 2026 14:46:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209604
IP address blocks: 93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
185.93.71.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
185.255.92.0/24 maxlen: 24
185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
2a05:f7c0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/GryfszEqSr8d3ChRjnYI4Owydd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/GryfszEqSr8d3ChRjnYI4Owydd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/GryfszEqSr8d3ChRjnYI4Owydd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:de:db:55:35:6d:a5:ec:65:d8:69:9e:9f:d1:69:2a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1abc9fb3312a4abf1ddc28518e7608e0ec3275df
Validity
Not Before: Apr 30 14:46:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=44489a2cf1493209db6f7dbe07a314fae4e32252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:12:f6:dc:f0:41:11:65:1a:d7:db:e7:8c:
07:75:dc:a6:1b:6f:67:f7:63:ed:a8:5c:ba:d2:aa:
ed:c3:2f:07:3e:c1:56:dd:06:e7:0a:14:2b:e3:65:
40:c5:95:ca:59:a8:08:b1:c2:a0:43:68:5c:56:3c:
2c:c6:3e:ff:a5:b7:51:91:23:75:e1:e3:52:08:58:
36:33:40:38:6b:af:f3:15:88:d2:96:06:b6:89:86:
91:65:b3:a6:cf:ea:04:6e:aa:01:31:31:20:9d:1a:
c7:3e:9a:86:27:e7:1b:5c:99:4e:59:c1:c0:05:58:
42:b8:12:1a:8e:f6:ce:54:94:c6:c3:5e:24:8e:47:
89:d7:e0:4d:89:0b:95:f3:8c:fd:f6:e1:fb:b3:7a:
0e:78:bd:a0:a0:f1:47:f8:98:e1:3a:8e:d1:e7:12:
6e:d0:f2:8a:9b:bd:68:15:56:ee:68:80:8f:23:ce:
2f:07:28:f2:94:ed:17:f7:a9:6c:3b:0c:a2:4c:31:
18:bc:fd:cb:fd:98:ee:37:8c:37:0e:fd:b7:77:25:
20:22:2e:90:c9:e6:d1:df:e5:4c:40:9d:32:c4:e9:
30:2f:39:8b:0d:cb:a3:62:4b:2a:1f:62:ba:cf:b8:
9f:99:b8:9d:86:03:a1:3d:e0:04:36:4e:27:38:21:
24:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:48:9A:2C:F1:49:32:09:DB:6F:7D:BE:07:A3:14:FA:E4:E3:22:52
X509v3 Authority Key Identifier:
keyid:1A:BC:9F:B3:31:2A:4A:BF:1D:DC:28:51:8E:76:08:E0:EC:32:75:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GryfszEqSr8d3ChRjnYI4Owydd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/REiaLPFJMgnbb32-B6MU-uTjIlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/26e77f-fa37-4900-a33d-d1d6dea98790/1/GryfszEqSr8d3ChRjnYI4Owydd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.115.10.0/24
93.177.101.0/24
185.93.68.0/22
185.132.126.0/24
185.255.92.0/22
IPv6:
2a05:f7c0::/29
Signature Algorithm: sha256WithRSAEncryption
d1:25:70:d2:1a:fb:9c:1e:04:02:67:5c:94:b2:51:b5:2e:26:
06:27:42:f9:93:a6:ad:67:82:b3:78:20:1b:7d:ea:4f:f8:e1:
66:e3:7f:df:5c:c6:3d:f2:c6:54:75:a1:3a:df:cf:9d:96:6c:
c8:76:1b:cf:37:c8:81:71:48:71:ee:4d:f3:9f:33:02:da:07:
22:f1:f7:4b:40:5d:45:40:5f:85:f2:52:f7:2b:28:7d:12:c0:
8a:f4:1a:c9:7f:bf:8c:2c:d1:9b:c7:58:f6:d6:99:ef:f4:3e:
27:91:aa:03:09:d5:d0:fa:c1:cb:b7:c3:91:d2:6f:ff:3f:5d:
e4:27:85:af:26:fb:f7:8a:4e:dc:bf:05:86:6a:da:b3:9f:5a:
cb:49:14:3b:e3:79:94:d6:26:4d:5d:43:57:61:a8:b8:d3:3e:
7a:09:ff:90:d2:4e:95:e1:ec:7a:c9:b2:6e:15:7a:ff:97:57:
08:87:89:3b:2e:85:55:f4:e5:b1:2e:5c:2a:b3:4f:99:2a:27:
b1:7e:35:a3:3f:10:c4:2f:83:0a:16:88:ae:55:0e:cd:35:a1:
75:d1:31:d5:f4:29:75:8c:f5:df:e0:c8:3e:c0:5d:e4:51:c9:
c0:33:c7:02:cc:a9:ba:55:5b:67:24:69:1b:fe:61:69:37:52:
eb:3a:68:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:14:19 2026 by rpki-client