Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/6Lv-mp-d7Iqg5ycxNwUQ18OBXVg.roa
File: 6Lv-mp-d7Iqg5ycxNwUQ18OBXVg.roa (raw, json)
Hash identifier: Kee9WVkyqt9ZIu9NxdiXmuVGcY25jRSzko2iZwqrqio=
Subject key identifier: E8:BB:FE:9A:9F:9D:EC:8A:A0:E7:27:31:37:05:10:D7:C3:81:5D:58
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019DFA684C31AC1F7CA29DF072AEAE4B3A16
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/6Lv-mp-d7Iqg5ycxNwUQ18OBXVg.roa
Signing time: Tue 05 May 2026 23:10:32 +0000
ROA not before: Tue 05 May 2026 23:10:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197924
IP address blocks: 2a06:9801:2f0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fa:68:4c:31:ac:1f:7c:a2:9d:f0:72:ae:ae:4b:3a:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: May 5 23:10:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e8bbfe9a9f9dec8aa0e72731370510d7c3815d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:c1:98:4d:d7:89:3e:52:42:0b:58:fd:9d:
14:57:c1:ca:95:ee:8d:7e:71:f9:9d:5e:04:49:57:
bf:7e:30:a7:c2:5d:de:9f:75:a4:f0:4a:70:f6:7d:
6a:6c:c0:3e:93:aa:ff:43:9e:26:1b:28:9f:5f:c2:
e8:a4:7c:d1:59:3d:34:6a:2a:64:35:61:46:4b:1e:
9f:fe:55:83:80:fe:bf:9e:92:1d:5e:9b:0c:72:f8:
a8:c9:80:d1:f0:56:31:41:e0:3f:e4:93:22:ce:f4:
fd:5b:17:ef:7b:6a:80:2c:b5:54:98:12:92:44:b6:
56:af:a6:56:a0:86:55:d9:59:36:4f:4b:4c:3e:b8:
9e:1b:f6:69:a7:b2:eb:30:73:6c:dc:29:ed:eb:19:
e7:a2:48:f6:7b:b1:c2:53:43:93:5b:00:18:fa:cd:
5d:b1:20:c0:89:80:9c:c0:c8:b8:e8:02:12:46:91:
53:d9:f9:40:3d:34:8d:ae:81:0c:db:61:39:ba:a7:
cd:bf:02:c2:45:27:de:5b:9b:06:df:5b:8c:9d:ac:
36:55:f6:5b:78:bf:cc:c1:b7:b5:bb:00:37:d4:01:
cc:13:cd:8c:f4:f8:fc:d9:dd:69:43:0f:0c:c3:e7:
6b:ba:c9:14:9c:40:ea:71:24:f8:1c:1a:19:b8:77:
49:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:BB:FE:9A:9F:9D:EC:8A:A0:E7:27:31:37:05:10:D7:C3:81:5D:58
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/6Lv-mp-d7Iqg5ycxNwUQ18OBXVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:2f0::/48
Signature Algorithm: sha256WithRSAEncryption
a9:ab:71:09:b2:78:a0:8c:3a:47:fc:f7:7b:2d:fc:a2:13:1b:
b5:46:ef:dc:0e:8d:84:0e:0f:0a:03:70:65:5a:d7:4f:2f:44:
6e:96:da:70:bb:37:53:1d:c1:1b:72:cc:9e:75:40:98:5c:c5:
d4:2d:c2:d4:3c:34:22:0b:0a:ab:57:d9:60:18:c8:8f:2a:c5:
ac:dd:0a:13:8b:28:24:a4:a0:19:93:ff:16:6b:08:5d:c0:b0:
6f:43:18:cf:f0:06:db:5a:f4:b0:80:40:46:d9:80:16:cb:16:
4c:aa:e9:0e:2a:4b:dc:a4:0d:a4:8a:d4:35:7f:1d:9e:2c:f7:
dc:fd:f1:80:e1:74:1a:40:57:21:0b:4d:a0:1c:f6:97:54:a1:
e3:89:d5:d4:99:d1:aa:c0:28:f7:be:79:ba:c4:12:f4:11:06:
a0:bf:92:d1:da:40:48:a8:95:9e:01:3e:e4:b4:36:9e:f4:a6:
38:b9:a0:34:e0:fd:5d:ee:cc:a8:94:66:d9:ff:f4:9b:5a:97:
bd:a7:52:b7:ae:6a:77:8b:12:93:c6:e5:a9:11:db:24:b4:d9:
26:11:4f:5d:12:34:2d:ba:37:a7:91:fd:41:48:bb:c1:c2:7d:
1d:aa:51:fe:01:03:8d:eb:e7:0c:8a:9a:e3:a3:85:5f:16:01:
4a:f5:45:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:10:00 2026 by rpki-client