Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-Yi1fU60V4YKvRZVtdCsJjHAWMg.roa
File: 1-Yi1fU60V4YKvRZVtdCsJjHAWMg.roa (raw, json)
Hash identifier: sJskPcKNYKKMxGy3KFXAKG7JL0c9BIMWHMYAA4Nvmy8=
Subject key identifier: F9:88:B5:7D:4E:B4:57:86:0A:BD:16:55:B5:D0:AC:26:31:C0:58:C8
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019E0DE2548B4F7A2375E159D1AD65C12F79
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-Yi1fU60V4YKvRZVtdCsJjHAWMg.roa
Signing time: Sat 09 May 2026 17:56:36 +0000
ROA not before: Sat 09 May 2026 17:56:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62563
IP address blocks: 2a10:3c84::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 May 2026 17:56:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0d:e2:54:8b:4f:7a:23:75:e1:59:d1:ad:65:c1:2f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: May 9 17:56:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f988b57d4eb457860abd1655b5d0ac2631c058c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:fd:e3:f4:ee:7c:ec:44:40:65:a1:47:92:f4:
15:fe:b0:39:f3:cb:c0:85:6f:6f:c5:18:b0:8d:94:
e4:90:b1:68:67:61:48:6a:57:9b:70:70:b4:9b:f6:
6c:72:43:27:11:c6:ca:be:9b:fb:fd:42:bd:e8:02:
8d:56:06:d6:28:5b:ec:77:e7:62:b2:0f:2a:a4:e6:
db:41:aa:7e:74:9d:1a:38:c7:70:6f:ad:1c:4c:38:
3b:e0:1d:2a:0b:6d:84:67:f7:93:f2:d9:26:7f:9f:
d7:52:b6:7c:a4:ea:ba:aa:20:6f:d6:7a:2b:45:d5:
56:8b:f8:79:78:f1:ef:d8:0b:eb:6c:ca:2a:06:0a:
88:1f:ed:0a:38:f3:41:15:fc:22:5d:0f:b7:df:cf:
3a:03:1c:a9:16:84:e9:30:26:fd:3e:78:15:42:f0:
45:d1:5b:0e:2e:b9:f2:f2:8a:39:dc:de:6c:9d:71:
cb:15:33:6a:bd:03:ac:ca:1c:e7:f3:fb:3e:ec:a7:
6c:53:2a:1a:e6:f9:2a:03:28:41:64:aa:9f:5c:2f:
d6:37:39:31:4b:3a:1b:d1:1d:32:00:d4:12:3b:66:
2b:c1:b5:a4:8b:92:0f:12:cb:62:ce:28:2b:65:74:
f9:a8:8a:40:44:d3:50:9e:6a:94:54:7a:de:3a:ca:
86:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:88:B5:7D:4E:B4:57:86:0A:BD:16:55:B5:D0:AC:26:31:C0:58:C8
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-Yi1fU60V4YKvRZVtdCsJjHAWMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3c84::/32
Signature Algorithm: sha256WithRSAEncryption
12:ca:ac:15:22:9b:70:60:0e:64:fa:81:db:1a:cf:14:48:0c:
4b:54:ef:da:20:1c:e0:80:02:23:18:7f:01:16:88:b8:ed:b2:
81:41:36:9b:e6:f7:35:8b:ea:01:b6:b4:87:e0:56:22:8b:c5:
9f:b4:26:fb:ed:0e:76:7c:51:31:41:21:7a:c2:68:86:ed:aa:
57:8d:93:b9:2a:d5:70:0f:6b:7e:b5:3e:18:fb:c3:f1:f0:ec:
4e:0a:5a:44:ee:5f:bc:7f:7b:49:c2:53:b3:dc:22:b6:a5:c4:
76:ac:74:59:1f:a8:f2:c5:08:94:da:46:56:d8:13:85:af:92:
01:c9:02:dd:7f:61:81:a2:f3:17:a8:e1:c1:82:af:2d:15:e4:
63:53:96:85:5e:57:8d:67:88:34:a2:13:49:b3:dd:a4:86:47:
c1:e4:58:de:c0:28:e4:9b:b6:81:33:00:de:bc:bb:2a:d9:aa:
00:56:de:f1:e6:5f:f3:2e:6f:37:27:33:e6:88:ee:cf:a1:6b:
90:a8:42:38:57:f6:67:ba:8a:86:42:84:f4:d1:79:13:89:a4:
45:31:26:b9:3f:11:41:41:d5:0b:32:e7:ef:38:07:9c:2d:e6:
d6:1a:06:04:05:5b:3a:ad:c0:0d:28:dd:10:9e:11:8b:db:43:
44:5e:5f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 10 00:18:32 2026 by rpki-client