Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/f51qU1FYB8QiTl_rSsnp3pL1fEI.roa
File: f51qU1FYB8QiTl_rSsnp3pL1fEI.roa (raw, json)
Hash identifier: dU+2yAfFKORH3fhN+wPSBwDKBIwyH/gzC/IA31ftnns=
Subject key identifier: 7F:9D:6A:53:51:58:07:C4:22:4E:5F:EB:4A:C9:E9:DE:92:F5:7C:42
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019DA1B7F8808149415B917AEF2171DC764B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/f51qU1FYB8QiTl_rSsnp3pL1fEI.roa
Signing time: Sat 18 Apr 2026 17:51:21 +0000
ROA not before: Sat 18 Apr 2026 17:51:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 47786
IP address blocks: 93.123.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a1:b7:f8:80:81:49:41:5b:91:7a:ef:21:71:dc:76:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 18 17:51:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7f9d6a53515807c4224e5feb4ac9e9de92f57c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ee:5f:88:4b:2f:07:c1:01:ad:7e:7c:02:10:
0c:16:22:ab:25:96:df:14:bf:bd:2d:07:e9:3e:66:
02:97:4c:29:0f:2e:ab:b2:91:e1:77:e1:9d:9d:3e:
a2:84:1b:09:74:dc:10:54:8f:86:e3:df:4c:10:30:
cf:2e:a4:e9:e5:bb:c3:9f:86:c9:bc:6a:11:84:65:
30:bc:2c:5a:32:3a:dd:8b:73:0b:00:84:0d:4a:56:
93:ac:9c:7a:ed:b0:fe:48:34:16:d3:f0:d9:1e:14:
23:19:50:c9:3f:43:d4:9b:8c:e9:c6:74:9e:80:f3:
33:b7:eb:eb:c0:bd:ed:c5:13:fe:79:1b:5a:15:8d:
33:51:1a:ae:a4:03:5a:f6:1c:f8:b7:55:59:ed:d2:
40:10:92:28:f8:a4:4c:ab:57:b8:52:d8:4a:2e:d9:
57:7b:72:d3:c5:da:0f:c0:10:2c:c0:1a:fd:16:94:
36:77:ba:a5:83:49:79:e9:3b:51:83:0a:51:b2:1a:
72:94:77:9b:76:14:23:c1:d5:17:f9:ee:50:ea:8f:
02:07:b0:90:e5:ad:ce:55:32:43:f0:17:fd:d6:2f:
aa:20:1c:e4:5a:a5:84:88:a8:a5:be:20:6a:30:13:
63:d1:b7:d7:ca:c1:7f:33:d3:56:8c:71:dd:d5:3c:
f3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:9D:6A:53:51:58:07:C4:22:4E:5F:EB:4A:C9:E9:DE:92:F5:7C:42
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/f51qU1FYB8QiTl_rSsnp3pL1fEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.123.31.0/24
Signature Algorithm: sha256WithRSAEncryption
07:df:50:8a:b5:ff:c0:b5:f9:b6:dd:a3:7d:dc:a3:25:bd:a7:
98:d2:f0:8f:58:53:71:9f:c7:f2:a2:61:c3:ef:d2:a3:37:b3:
64:79:21:cf:46:f4:b3:4d:8d:67:4f:94:be:31:82:c9:ee:56:
62:08:13:15:4d:e8:a7:9a:a0:08:a7:ec:9c:fc:8b:66:8d:8a:
ab:5c:65:a6:94:7d:4e:92:25:9d:e1:e6:ec:61:9a:ce:a4:1c:
17:ba:57:10:d6:92:bb:3c:49:a4:64:78:97:3a:eb:79:39:16:
34:88:d2:45:5d:de:d6:e0:3c:46:11:5f:ed:cd:01:7b:bc:78:
5e:19:64:f5:fb:cc:da:c2:54:2a:64:13:8b:e6:81:52:b2:e5:
ff:1f:9d:9e:0c:0c:7e:1e:d1:8a:81:ef:2d:58:71:23:99:ed:
cd:a6:b8:84:0d:1a:01:20:f9:08:cf:57:6e:56:4f:99:86:48:
bc:42:a8:0a:4f:d8:a4:7d:4a:dc:d3:27:81:d1:6c:e6:50:ac:
0e:e2:8d:a3:79:ed:a3:ae:35:02:1f:54:62:00:81:5d:dd:8b:
39:70:5b:a1:cb:cc:e4:8a:91:00:79:a1:24:a8:94:ae:53:32:
18:b8:ca:a2:9d:97:9a:e0:f8:52:28:54:49:9b:a7:9c:c6:f5:
64:6d:08:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 04:05:21 2026 by rpki-client