Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/FXAq7lnBYZ94nShbaFhsvhUvWL4.roa
File: FXAq7lnBYZ94nShbaFhsvhUvWL4.roa (raw, json)
Hash identifier: JL4P/evSqINfGn08g5YiR2Psx44eTLVNPMQcaOE+9hk=
Subject key identifier: 15:70:2A:EE:59:C1:61:9F:78:9D:28:5B:68:58:6C:BE:15:2F:58:BE
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 019E22DF8E1E07139604156617B27A880D98
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/FXAq7lnBYZ94nShbaFhsvhUvWL4.roa
Signing time: Wed 13 May 2026 19:45:36 +0000
ROA not before: Wed 13 May 2026 19:45:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 188.191.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.mft
rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:22:df:8e:1e:07:13:96:04:15:66:17:b2:7a:88:0d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: May 13 19:45:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=15702aee59c1619f789d285b68586cbe152f58be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b9:3e:d2:90:91:d5:56:73:11:10:15:2b:80:
c0:3d:03:8f:f9:b2:dc:96:4b:24:e1:68:18:4c:99:
c4:68:5b:55:3b:5e:6c:42:f0:a9:30:ee:ad:d7:ca:
24:ec:a9:26:a9:7d:a9:73:8f:e8:4f:b7:21:39:a1:
b4:a5:4b:4f:43:5b:83:07:cc:2f:5d:7c:bf:3a:f4:
20:27:59:3e:31:a1:4e:8d:7d:8b:9c:01:4c:7b:b6:
aa:f0:2d:3f:d7:b8:01:ba:ba:6f:ae:5e:fa:05:7c:
54:85:01:f9:56:e4:80:8c:3b:b5:dc:6b:1d:ee:53:
72:5a:a2:df:69:f7:4f:bc:5f:98:e8:fd:0f:be:27:
c3:30:15:4f:5f:58:28:1d:25:4e:be:c7:46:76:bb:
02:45:c0:cb:c2:db:1f:c5:40:56:75:19:2f:61:f7:
37:90:e0:6f:a0:eb:25:41:22:47:4b:ab:65:a2:0b:
47:05:35:9a:d6:b5:dc:d3:1d:ca:5a:f5:43:56:ee:
76:37:94:d6:45:0b:a0:11:2c:57:33:6a:f0:79:8b:
4e:c7:4e:c2:ce:ec:0e:7f:2e:b6:3e:f0:d3:aa:54:
e9:ca:c1:cd:7b:8f:ff:e5:9d:b5:59:78:00:df:e8:
a7:d4:ec:11:7b:d5:96:b5:ce:d5:20:9c:0d:d6:03:
26:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:70:2A:EE:59:C1:61:9F:78:9D:28:5B:68:58:6C:BE:15:2F:58:BE
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/FXAq7lnBYZ94nShbaFhsvhUvWL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.97.0/24
Signature Algorithm: sha256WithRSAEncryption
44:03:9c:a2:4a:c1:f6:af:88:d6:8b:d6:ab:92:db:c1:ed:41:
ce:cd:57:2e:61:9a:6a:8d:ef:46:cc:25:18:e0:3d:e7:20:e6:
dc:29:ac:46:7c:38:13:be:3e:73:22:06:a2:ce:87:ab:9a:fb:
cc:b0:1f:27:62:24:1e:c3:52:08:5d:5e:4f:2c:a8:99:4d:4e:
2d:6c:96:1c:93:e7:05:d1:a3:ae:b0:af:88:23:56:42:67:d4:
db:3e:50:2f:f2:a9:3a:16:45:69:0c:01:2d:9f:26:b7:9e:a4:
2d:3e:54:f1:ca:e2:0f:b2:01:ab:53:4b:bc:9b:74:db:8e:2b:
6a:8d:e0:58:94:69:f9:be:1e:f0:17:5f:36:ec:cb:27:c9:8f:
c1:cd:99:e9:d6:dc:00:95:7e:9a:c9:dd:fc:d3:29:28:df:59:
c4:a4:da:eb:e5:3a:86:9a:39:d0:94:f4:6c:ac:91:3b:a0:57:
33:e5:3d:e1:7d:db:42:b2:b6:3a:86:5e:07:a4:16:52:6c:9b:
35:29:6d:11:15:b2:69:1c:97:5c:19:fc:79:66:e7:c5:f8:2f:
c5:1f:29:a6:72:8c:7c:53:36:c3:45:2d:66:e4:4a:d8:c7:3a:
67:e1:c0:d9:c1:97:3f:d3:b5:9d:a6:7e:a4:f7:b9:0d:1e:1c:
d8:27:8d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 08:17:36 2026 by rpki-client