Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/YPxuWIF4MKdMTnziSy1rKHCPEak.roa
File: YPxuWIF4MKdMTnziSy1rKHCPEak.roa (raw, json)
Hash identifier: RSXJa08HZBrxwClXa+QQPDLZaFvUmQ98gAZgA5p4tvI=
Subject key identifier: 60:FC:6E:58:81:78:30:A7:4C:4E:7C:E2:4B:2D:6B:28:70:8F:11:A9
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019C2289F1B09B3E1CC86411BB2F6B90D3A4
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/YPxuWIF4MKdMTnziSy1rKHCPEak.roa
Signing time: Tue 03 Feb 2026 08:06:31 +0000
ROA not before: Tue 03 Feb 2026 08:06:31 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 395374
IP address blocks: 213.218.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:22:89:f1:b0:9b:3e:1c:c8:64:11:bb:2f:6b:90:d3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Feb 3 08:06:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=60fc6e58817830a74c4e7ce24b2d6b28708f11a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:58:46:d1:dd:7c:8f:73:27:f5:a9:7d:78:71:
3e:41:58:ec:c2:20:83:8b:7f:24:0f:a2:e7:5e:98:
51:aa:dd:9b:5f:b3:4c:47:4c:98:58:01:04:9a:35:
97:4c:e1:16:47:e8:e0:06:c7:64:5f:61:ff:8f:06:
09:68:35:15:24:cd:e4:3c:db:db:eb:10:9e:cd:d2:
6a:55:db:26:46:1d:a6:20:ef:f2:d7:ee:f1:6d:8c:
e1:77:90:52:44:94:c5:5e:71:91:cf:c2:ef:61:8b:
53:ac:b7:22:cc:4d:a5:82:7b:7f:6a:2b:85:08:8d:
71:f2:cc:2d:9d:55:ae:1a:15:28:31:b4:7f:c9:b5:
c6:54:03:43:9f:10:1c:71:d5:4b:93:5d:1c:61:8d:
b4:f6:49:27:88:3a:6f:ef:8f:17:95:59:b4:f0:d1:
fd:70:19:86:be:1d:6c:0f:cb:85:4d:b8:7a:87:ec:
4d:42:b2:d9:db:6f:c3:47:bd:c3:43:68:9a:39:ab:
ba:40:7f:94:9c:45:b2:a9:b3:a6:2e:ca:3a:0f:15:
c1:c1:eb:9a:00:7f:48:11:ae:1a:a2:57:fb:44:f4:
22:72:16:76:fc:95:38:1c:ea:e0:42:a2:39:a9:43:
03:62:d5:84:35:33:23:9b:aa:5d:76:54:46:51:30:
13:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FC:6E:58:81:78:30:A7:4C:4E:7C:E2:4B:2D:6B:28:70:8F:11:A9
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/YPxuWIF4MKdMTnziSy1rKHCPEak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.218.255.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d7:3c:a5:6b:89:fe:b9:54:09:5e:e9:5c:59:a3:be:1f:d3:
c0:18:ff:9c:d7:65:86:2d:83:43:f2:8a:9f:69:0a:06:cc:b4:
f5:7c:03:9e:98:24:44:a7:31:c9:f4:7a:99:79:d7:df:1c:33:
be:44:00:f1:47:fa:2a:c2:bf:02:1e:ad:84:93:a2:ff:66:65:
52:62:ec:f6:02:ac:69:76:65:35:f2:40:d6:40:5e:be:19:97:
3e:11:6c:d2:5c:b7:00:2a:79:69:3e:ec:e3:0c:b7:2a:6f:2b:
7d:fa:96:c8:31:77:18:57:8f:43:9d:2b:39:60:82:8a:97:88:
0c:79:29:d3:d8:bb:a6:50:08:21:75:9d:f7:05:49:71:b4:73:
6f:6e:53:4a:8f:bf:ae:fb:92:69:7c:25:f4:60:d5:6f:58:ff:
98:96:be:70:17:8f:15:47:e0:2d:54:03:c0:57:83:b9:96:4a:
7b:54:ee:50:dc:3e:02:cf:e7:3f:7e:d7:cb:b7:5e:99:a2:3f:
f8:d6:01:55:8c:20:79:ab:fa:a0:65:16:6c:03:4e:79:65:ff:
41:10:47:a3:fb:6c:3f:ff:16:3d:e6:3a:fb:c7:28:08:f6:c9:
4c:9a:22:90:e9:23:6f:c4:c0:1b:d6:44:12:82:af:fe:f1:ed:
47:fa:9b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 23 00:04:48 2026 by rpki-client