Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/1-7zv0dL5d8fWwARJOsu3e6wYS8M.roa
File: 1-7zv0dL5d8fWwARJOsu3e6wYS8M.roa (raw, json)
Hash identifier: NM3XigeX95rt5W+YVDyVBkylrnJMc1PSe6mzToBTgw8=
Subject key identifier: FB:BC:EF:D1:D2:F9:77:C7:D6:C0:04:49:3A:CB:B7:7B:AC:18:4B:C3
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019E77ED667DBC6A7DDE545852B2CCB54511
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/1-7zv0dL5d8fWwARJOsu3e6wYS8M.roa
Signing time: Sat 30 May 2026 08:08:27 +0000
ROA not before: Sat 30 May 2026 08:08:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44259
IP address blocks: 147.90.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 14:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:77:ed:66:7d:bc:6a:7d:de:54:58:52:b2:cc:b5:45:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: May 30 08:08:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fbbcefd1d2f977c7d6c004493acbb77bac184bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:70:a1:ee:93:c7:a4:bf:ab:68:eb:3a:2e:
bb:41:71:36:a0:fd:4f:43:db:14:6f:37:2f:59:d1:
96:34:ba:c3:ec:ea:6d:63:7d:ad:71:79:cd:95:04:
77:42:72:0c:de:bc:8a:eb:8d:81:47:3c:91:2b:e2:
dc:ef:0a:57:e0:7a:4b:bf:a6:27:45:f6:f7:f3:93:
cd:55:35:2d:03:76:91:52:a6:e0:ff:bb:39:0b:d8:
ef:60:81:ef:37:88:1d:fb:8b:ef:f7:71:4d:c9:51:
4b:86:b4:8a:f2:93:1e:16:30:25:ab:1f:78:28:49:
af:15:38:f4:1b:32:d1:9f:38:38:01:4c:dc:7c:39:
6b:76:12:04:02:5c:64:37:48:d1:3e:96:4b:94:07:
d5:f3:86:1e:bd:a0:71:e3:d5:b6:dd:ae:16:25:84:
4a:c6:66:02:87:ee:68:ba:ba:0f:05:0c:38:31:56:
e4:79:42:5e:c4:87:f2:7e:a1:7c:f6:e4:cf:64:88:
54:63:1e:ee:32:d0:87:89:db:18:32:89:b5:9e:41:
e1:dd:63:8f:b0:0d:fb:e3:05:86:0e:b2:8a:fd:df:
39:92:3b:e7:36:8e:7e:77:9f:93:4d:3d:7f:e8:8a:
86:26:37:39:92:5d:6a:99:f2:bb:8f:c2:89:f7:a7:
59:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BC:EF:D1:D2:F9:77:C7:D6:C0:04:49:3A:CB:B7:7B:AC:18:4B:C3
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/1-7zv0dL5d8fWwARJOsu3e6wYS8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.90.205.0/24
Signature Algorithm: sha256WithRSAEncryption
63:2c:cb:89:f4:9b:41:4d:fd:ab:bd:ac:d0:e1:b9:84:45:69:
a7:19:6e:54:6f:59:b7:96:26:39:45:f5:9b:4b:5e:cf:d5:7d:
d3:65:fa:51:98:9a:2c:d5:3e:57:a2:ba:a9:97:ff:52:62:02:
ec:58:2c:a1:d3:90:f2:1a:e1:06:2c:13:4f:2e:06:55:ec:62:
ea:80:2c:63:22:59:f9:52:ca:a0:49:88:8d:73:8d:7b:0b:8c:
d6:19:ef:36:4a:96:ac:d6:97:e6:4c:d8:92:a7:12:2b:ae:5c:
d9:21:e6:e4:ae:cc:62:37:85:1e:a7:dd:ae:50:aa:02:03:38:
5e:bb:d2:b9:3b:54:cc:ff:8c:85:f5:3a:8c:1e:6a:56:bb:eb:
39:48:51:e3:9e:90:95:80:e9:c3:9c:5f:be:e0:59:4f:d0:a5:
6d:a5:e9:83:fa:1b:b4:1b:13:85:f6:a3:f3:30:59:ac:2a:df:
1d:05:8d:42:1b:1b:9f:40:24:aa:17:ea:f2:ab:e2:4d:18:5c:
cb:e7:c5:dc:9e:49:1e:d8:35:55:5e:9c:fb:26:32:9f:a8:76:
93:5c:6a:ea:13:30:6c:74:a7:68:77:db:d8:3a:d0:ca:32:75:
4d:2b:cf:57:1f:05:b9:8b:cc:d8:b8:38:d3:de:e3:63:3d:d9:
d0:71:42:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 00:46:07 2026 by rpki-client