Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/L5BfioWz08XOKOc7LGuDTFScCDM.roa
File: L5BfioWz08XOKOc7LGuDTFScCDM.roa (raw, json)
Hash identifier: oJjcndnAKImb4AebXhMuHLKYhu0NzBboRQfoXDCNW0c=
Subject key identifier: 2F:90:5F:8A:85:B3:D3:C5:CE:28:E7:3B:2C:6B:83:4C:54:9C:08:33
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 019E8BDC8AAE6721E4BB55B68891F4B65D0E
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/L5BfioWz08XOKOc7LGuDTFScCDM.roa
Signing time: Wed 03 Jun 2026 05:02:26 +0000
ROA not before: Wed 03 Jun 2026 05:02:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58060
IP address blocks: 217.18.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8b:dc:8a:ae:67:21:e4:bb:55:b6:88:91:f4:b6:5d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Jun 3 05:02:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2f905f8a85b3d3c5ce28e73b2c6b834c549c0833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7b:c3:ab:ea:10:2e:ad:17:0a:65:f0:a3:38:
5c:b1:e5:e4:7d:58:4b:0a:25:11:28:fd:dd:bc:dc:
d9:06:eb:05:20:e0:a7:2e:e0:8c:b4:c6:87:8d:d3:
76:be:ca:36:07:89:e8:90:17:1d:71:47:45:a5:9b:
be:60:6e:3c:bb:1f:83:0c:4b:8e:8a:f2:65:1a:31:
94:5e:1b:f9:2c:75:dc:b0:67:06:40:3e:fc:5a:e5:
c6:f8:71:65:03:73:3e:0f:6d:20:15:63:0f:d5:83:
ba:33:88:b5:72:ab:4f:6a:ee:f7:27:02:ce:a7:21:
e4:66:95:62:98:90:fd:08:9f:71:b6:e4:e5:49:bb:
c3:5b:96:d4:8f:5d:ba:82:f8:03:3a:fa:19:20:6e:
e2:60:5e:19:6d:48:5b:a5:43:b2:3f:b3:a3:ec:b3:
e2:f7:07:6a:e7:11:9e:62:91:87:da:b2:cf:75:f3:
4e:5a:31:8f:a0:8e:f1:96:c4:5d:8f:76:1e:9a:c5:
c8:8e:00:fd:2f:9e:ae:87:17:97:98:b6:d1:94:76:
fe:92:b0:e7:1f:bc:1c:2e:53:e9:2d:40:3d:be:5e:
19:f8:09:ca:bc:6b:f2:10:e0:05:00:61:5b:c6:c0:
af:b3:df:dc:2a:e0:a2:e8:69:7c:5a:65:bb:db:7b:
2d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:90:5F:8A:85:B3:D3:C5:CE:28:E7:3B:2C:6B:83:4C:54:9C:08:33
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/L5BfioWz08XOKOc7LGuDTFScCDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.50.0/24
Signature Algorithm: sha256WithRSAEncryption
35:14:e2:24:01:df:ce:5e:48:3e:99:b6:55:89:d7:2e:79:27:
50:83:69:91:37:fe:83:1b:d3:29:f4:a8:d1:0d:18:d9:ad:33:
2b:db:89:3f:84:2c:4f:4d:92:12:e7:ec:43:2b:52:97:f7:89:
5a:b0:1a:67:6c:97:a8:cc:28:fc:d7:be:93:9c:61:3a:da:70:
9c:40:5f:bd:05:8e:f6:9a:ad:ca:cf:39:23:06:3b:f3:28:99:
a0:e8:9a:a2:9f:f9:4d:68:96:0e:e1:2f:13:b0:e3:10:48:05:
da:8c:65:7e:34:f1:7a:cd:d9:17:f4:f7:d4:cf:53:2e:37:3f:
0e:82:c7:0b:e0:8e:28:b2:29:34:5d:5b:94:16:31:01:8c:bd:
72:f1:f3:7f:a8:0d:75:1c:c7:c4:51:9a:2c:87:9a:07:95:0b:
a2:55:62:56:f3:09:dc:18:9e:01:14:3e:f9:f2:8b:ab:d4:fb:
7b:50:13:cf:44:17:a9:4b:a9:6b:2b:bb:62:b9:92:80:e8:ad:
6e:f7:3b:7e:25:04:8e:d5:c1:f7:e6:32:4f:96:4b:a7:da:c4:
60:4e:bb:92:ef:a4:24:e0:29:0c:de:cd:f3:59:b1:78:01:62:
ce:b6:1c:db:bf:18:cb:05:e6:c7:3c:84:fc:c5:94:da:9b:51:
5f:f8:66:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 23:46:46 2026 by rpki-client