Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/VBpThf2eED9Nn1_bLk3FnJWeL0c.roa
File: VBpThf2eED9Nn1_bLk3FnJWeL0c.roa (raw, json)
Hash identifier: SZxZGaTjI0uwB4wAMAs8ky0bsyOpydLhW7Q4aKObcU0=
Subject key identifier: 54:1A:53:85:FD:9E:10:3F:4D:9F:5F:DB:2E:4D:C5:9C:95:9E:2F:47
Certificate issuer: /CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579
Certificate serial: 019E25E09A5CFC4E360A78472C0EF98E6140
Authority key identifier: FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/VBpThf2eED9Nn1_bLk3FnJWeL0c.roa
Signing time: Thu 14 May 2026 09:45:36 +0000
ROA not before: Thu 14 May 2026 09:45:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198138
IP address blocks: 109.122.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 20:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:25:e0:9a:5c:fc:4e:36:0a:78:47:2c:0e:f9:8e:61:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579
Validity
Not Before: May 14 09:45:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=541a5385fd9e103f4d9f5fdb2e4dc59c959e2f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a6:d8:d2:d2:89:c4:fa:d5:18:96:bc:d3:22:
64:aa:7d:33:6e:71:18:d3:20:ea:56:72:43:7b:e8:
12:3e:9d:1c:82:78:dc:fd:b3:36:0f:55:76:01:94:
e0:8b:9b:de:75:04:0d:53:c7:36:1e:64:17:65:23:
c4:97:af:41:9a:03:ba:06:91:77:7f:c2:2e:47:29:
23:29:25:26:08:df:33:af:e4:46:8d:7a:6b:e6:e9:
00:93:13:9a:40:ac:4a:d5:6e:ba:30:97:ce:a2:e5:
ec:8c:96:d9:79:26:fd:9f:37:19:11:dd:9c:f6:83:
87:aa:c2:b4:00:35:9e:27:d9:d4:d5:86:73:fe:da:
a2:6c:c1:71:d3:6c:a5:e1:a6:06:a0:ad:24:fe:ca:
48:20:e8:d7:46:d9:e2:3f:05:b9:5d:50:0d:01:71:
69:07:ac:a4:26:bb:e9:df:e7:f4:5b:81:82:1d:28:
95:eb:82:e2:05:65:db:d8:96:44:0e:2d:08:82:60:
ac:c5:6f:0f:32:7f:06:92:c3:8e:fa:10:b5:74:53:
ba:b5:e9:6d:a2:ad:5f:97:e3:63:48:90:df:ca:1e:
58:ae:d0:44:a6:cd:3c:17:b5:4c:ca:4c:30:51:69:
12:e6:35:89:85:1b:4e:04:9c:b7:c2:67:43:f6:8d:
d3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1A:53:85:FD:9E:10:3F:4D:9F:5F:DB:2E:4D:C5:9C:95:9E:2F:47
X509v3 Authority Key Identifier:
keyid:FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/VBpThf2eED9Nn1_bLk3FnJWeL0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.22.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e4:6f:ee:40:80:ab:27:25:55:02:aa:19:9d:05:62:78:2d:
ef:93:79:ba:25:dd:0b:49:44:6d:93:43:64:f0:db:a3:8b:40:
78:e5:a9:ab:33:ae:c7:26:cb:00:a1:d9:a1:37:66:b3:ec:1c:
d5:86:3e:e0:7f:d8:24:46:19:a7:5b:af:0c:4c:84:e2:23:a1:
75:b8:7d:8c:01:34:59:49:52:dc:c8:43:b6:4d:13:fa:1e:60:
1e:78:b7:77:b9:6c:d0:26:a0:22:af:f0:40:6c:2f:3a:a5:53:
18:0d:71:e4:58:fc:09:96:ca:aa:b1:50:c1:b0:1f:44:31:5c:
3f:0c:2a:db:57:7e:8a:97:81:14:e5:7b:53:cb:22:02:1d:0f:
ee:73:e1:38:f1:40:5e:2a:85:51:32:e4:6f:cf:87:98:60:d1:
70:8c:86:c0:62:0b:77:95:d1:19:c6:b8:8c:57:58:d9:4b:aa:
05:11:7c:86:87:ad:54:96:92:85:c8:9f:38:89:16:68:de:2f:
3c:c6:18:64:8a:ed:23:b9:27:93:05:c1:4a:8b:ad:80:30:96:
6c:4b:b8:38:4e:f3:40:24:bb:9b:1e:54:07:4e:76:64:e8:19:
e7:b4:e2:99:b4:81:1e:00:94:7f:20:f6:37:f8:d8:e9:3a:d1:
65:af:fd:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:21:16 2026 by rpki-client