Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/FjZhWzVo90aKSRb19p0PS6LCFfA.roa
File: FjZhWzVo90aKSRb19p0PS6LCFfA.roa (raw, json)
Hash identifier: cvuNu4B298i0+Q6v1um9KJLepqG7kZ79MepaaRI5M/4=
Subject key identifier: 16:36:61:5B:35:68:F7:46:8A:49:16:F5:F6:9D:0F:4B:A2:C2:15:F0
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019EAE06585882301A51DF8BE07D651D99CA
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/FjZhWzVo90aKSRb19p0PS6LCFfA.roa
Signing time: Tue 09 Jun 2026 20:15:11 +0000
ROA not before: Tue 09 Jun 2026 20:15:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62390
IP address blocks: 2a10:3c85::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Jun 2026 14:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ae:06:58:58:82:30:1a:51:df:8b:e0:7d:65:1d:99:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jun 9 20:15:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1636615b3568f7468a4916f5f69d0f4ba2c215f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:0b:b2:f3:7e:ac:c4:49:1a:33:bf:c0:0d:
09:c1:42:83:00:9e:fe:78:ed:30:6d:1d:a9:bb:f2:
fe:25:1d:2b:dd:62:39:0e:45:e2:83:eb:35:05:14:
85:07:d0:3a:ca:b1:16:fb:c5:2f:5a:42:36:40:d5:
46:a8:fe:00:af:8c:af:98:42:b7:2e:f4:0d:d1:2a:
fc:6d:cf:a6:cc:7f:5d:82:01:ed:fb:2b:30:25:e5:
5f:02:2d:bf:25:8a:89:7e:3f:19:9d:ab:9c:b3:ae:
e0:59:02:60:b5:78:3d:a8:ab:1a:af:2d:52:4c:2a:
10:9a:1f:f6:3f:f7:9f:c7:44:9d:1b:aa:ea:f6:15:
1e:78:58:91:84:5f:df:7d:66:0c:b8:19:df:47:ae:
06:17:e1:c9:4a:b3:3a:53:9e:85:ee:56:6a:d3:d7:
f6:dc:a1:c1:5a:39:9e:c0:b2:d7:25:92:8b:68:ec:
ed:3b:60:49:97:26:ed:4f:d2:fa:91:72:2f:7f:ac:
48:fa:54:0f:2b:e1:27:63:8a:5b:cd:97:3e:aa:45:
75:08:ee:d8:be:66:f1:e0:a7:c6:95:a1:2f:8d:d4:
54:c9:c1:db:ea:2a:39:9f:14:35:27:2f:6e:cf:86:
ca:69:ac:9b:67:95:eb:92:5f:74:e1:86:33:bb:db:
8b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:36:61:5B:35:68:F7:46:8A:49:16:F5:F6:9D:0F:4B:A2:C2:15:F0
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/FjZhWzVo90aKSRb19p0PS6LCFfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3c85::/32
Signature Algorithm: sha256WithRSAEncryption
7c:56:0b:81:0d:ea:3a:21:0e:c5:f8:b6:0a:aa:5c:b7:ee:78:
c0:ca:a2:11:93:e3:8b:38:18:09:ea:4f:98:99:57:9e:3d:80:
3f:f1:a6:b9:05:eb:3c:7b:1a:d9:43:86:aa:8c:38:0d:08:2c:
13:92:2e:7c:bc:3a:c8:24:4b:cc:6a:5d:6a:0c:bb:90:2c:bc:
4c:c0:06:2e:5f:bc:36:e8:fd:a8:63:3a:cc:36:61:fe:92:ad:
87:55:fc:1a:ef:15:b2:cd:63:81:59:64:d2:31:2a:0a:aa:a1:
83:ec:2c:ce:56:0d:ab:c5:7d:95:03:66:9d:8e:25:90:2c:c3:
75:ac:53:8a:d5:9e:8c:a8:55:b5:6e:7a:96:18:bd:ca:ec:17:
13:1d:8c:89:26:d4:9a:ee:e8:ae:bf:39:77:98:c0:ac:18:1a:
52:4d:f1:ad:3a:b6:5f:a3:ea:c6:2d:93:af:9c:15:18:bd:9e:
e3:86:3c:31:22:24:28:47:8d:a8:7d:40:d3:b3:03:ce:9b:0a:
34:a8:4e:22:cd:55:2e:65:81:f6:29:7d:49:17:56:0c:2d:f4:
6f:03:2c:08:3e:f7:2d:37:40:a7:6f:5e:e6:ef:a7:82:c9:f6:
4a:65:5d:e3:cf:57:55:ac:34:9e:a8:35:11:2e:c0:91:35:9f:
e8:f6:33:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 10 23:17:58 2026 by rpki-client