Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/5_O_-Ts_PXr2shf_BK27FxmRb0E.roa
File: 5_O_-Ts_PXr2shf_BK27FxmRb0E.roa (raw, json)
Hash identifier: HdNtBk6r6/g/NGu66avK4wtW2O6fVyALFYw/tzivy2w=
Subject key identifier: E7:F3:BF:F9:3B:3F:3D:7A:F6:B2:17:FF:04:AD:BB:17:19:91:6F:41
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 019E4085468EAFDD080A19662316941F9FE7
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/5_O_-Ts_PXr2shf_BK27FxmRb0E.roa
Signing time: Tue 19 May 2026 13:55:36 +0000
ROA not before: Tue 19 May 2026 13:55:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 134196
IP address blocks: 2a0d:2480::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 12:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:85:46:8e:af:dd:08:0a:19:66:23:16:94:1f:9f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: May 19 13:55:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e7f3bff93b3f3d7af6b217ff04adbb1719916f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c6:46:75:9c:99:39:48:9b:a1:cf:87:a1:18:
68:79:0f:2d:82:dd:62:f6:48:b1:bc:21:42:ad:14:
d5:80:42:5e:9b:75:95:32:a9:3f:43:53:d8:ca:0e:
71:46:cc:94:9f:85:46:90:89:0e:2f:ed:fa:2a:28:
c9:c4:de:d6:8f:1c:14:38:e8:b0:1c:b7:b7:ed:5e:
70:c4:52:23:94:24:52:10:52:e6:7a:02:07:f3:a4:
3e:d5:6d:1e:70:cb:f0:a1:e6:c3:61:4d:c3:ba:04:
ab:05:02:02:1d:36:56:53:25:73:47:32:1c:5d:91:
3d:1a:ea:7f:c0:01:57:19:f9:3b:92:9e:1d:21:81:
9d:47:b6:ac:1e:e3:6d:da:08:53:a4:5a:f6:43:eb:
97:6a:32:86:c7:01:89:46:2b:39:14:1d:f8:d8:52:
cc:eb:6d:e8:74:48:d6:b4:ad:d0:ea:eb:d9:f9:eb:
db:c6:fb:26:84:c0:7c:9f:85:e6:be:20:06:bb:cf:
9c:32:00:b2:bc:72:a0:82:6e:41:39:da:e9:9d:8b:
8e:0c:59:a2:2c:7c:c0:6c:ef:b1:8a:b4:09:69:8f:
21:11:04:66:fc:e5:09:ec:8d:95:14:37:1d:3e:e1:
27:76:91:ba:bc:7f:e7:46:3f:be:e6:b8:0f:b3:78:
86:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F3:BF:F9:3B:3F:3D:7A:F6:B2:17:FF:04:AD:BB:17:19:91:6F:41
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/5_O_-Ts_PXr2shf_BK27FxmRb0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2480::/29
Signature Algorithm: sha256WithRSAEncryption
5f:cb:1a:4f:bf:41:cd:5e:88:e2:fd:3e:c8:41:5a:f7:f6:ae:
a2:31:da:66:8a:9a:c7:9b:7e:2c:0f:c6:61:1b:b2:c1:a1:b3:
46:d2:7e:f4:09:2c:f0:19:90:bc:6f:2d:b6:fb:fc:49:dc:f3:
ee:28:5f:9d:82:9a:5a:34:db:ee:1c:a0:78:73:db:bb:14:8d:
13:c9:60:34:98:d4:8d:42:ee:9f:68:32:1d:68:bb:1d:14:62:
2b:c9:d5:1a:3c:b6:3a:ae:fe:47:71:01:1b:f4:e4:96:c1:c4:
a4:06:7a:85:3e:70:f3:81:12:1e:2c:97:71:54:5d:15:84:88:
ce:a1:f3:2c:8c:e1:16:f4:e7:31:3d:cd:2e:01:17:8f:a6:be:
94:7b:7d:74:99:d8:9a:81:e6:1c:4c:7c:e8:0a:f1:b0:9e:d6:
82:d8:62:4c:61:4d:7d:f2:b4:c1:42:52:0c:20:d6:b0:6c:25:
4b:e6:92:d6:db:9c:24:9b:19:05:e7:54:a5:58:7c:8b:f3:90:
33:e1:b8:ca:6f:ab:53:58:fb:a1:ff:7b:05:6b:57:3e:4f:0b:
da:2c:62:69:23:6b:c9:86:b1:c5:3c:54:1d:ab:03:a8:ad:34:
0e:87:22:9c:87:ba:80:92:e3:e0:45:50:4b:d6:c9:88:b6:21:
12:bd:45:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 22:18:40 2026 by rpki-client