Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/YvcN6K_UssWa3nJxS1veSyl_xQY.roa
File: YvcN6K_UssWa3nJxS1veSyl_xQY.roa (raw, json)
Hash identifier: t+mIJo/SlLUrms8Z2lET1unxQJd9AMYvk21JZsGJ2+0=
Subject key identifier: 62:F7:0D:E8:AF:D4:B2:C5:9A:DE:72:71:4B:5B:DE:4B:29:7F:C5:06
Certificate issuer: /CN=7f249b9544620683f94b388a7551a68a6493ed12
Certificate serial: 019E5E63C3254CA32FB67323CFF6CB8E61B6
Authority key identifier: 7F:24:9B:95:44:62:06:83:F9:4B:38:8A:75:51:A6:8A:64:93:ED:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/YvcN6K_UssWa3nJxS1veSyl_xQY.roa
Signing time: Mon 25 May 2026 09:07:36 +0000
ROA not before: Mon 25 May 2026 09:07:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197330
IP address blocks: 217.18.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.mft
rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 09:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5e:63:c3:25:4c:a3:2f:b6:73:23:cf:f6:cb:8e:61:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f249b9544620683f94b388a7551a68a6493ed12
Validity
Not Before: May 25 09:07:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=62f70de8afd4b2c59ade72714b5bde4b297fc506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e2:04:83:f4:bd:66:d6:b0:24:33:8c:c4:49:
6a:02:e9:47:c2:80:9b:dc:fe:94:d2:d3:07:79:00:
67:81:49:53:c6:57:53:05:92:82:55:0d:53:35:66:
66:f5:ca:ed:8e:79:7b:54:e5:31:1b:3e:a4:24:b5:
ac:8f:e0:36:8e:72:17:a7:ae:01:3e:f6:1b:b1:b8:
6c:5a:f3:93:41:3f:45:00:65:54:d0:ca:2a:5a:6c:
72:5c:95:7d:97:ef:6e:66:c1:5f:63:99:94:ec:4d:
ee:8f:38:23:62:a6:b2:26:7f:e6:79:7a:cd:32:82:
0f:09:9d:14:dc:f8:fc:6c:8d:0c:f5:7f:fd:57:3d:
8f:08:2d:02:30:ff:ec:69:73:1a:99:e8:64:22:d3:
bb:b8:d3:9b:ee:8a:24:bd:4b:a1:65:b4:8b:ea:a7:
b2:cf:04:aa:c2:59:fc:2e:e3:70:13:ea:1f:27:1f:
62:cb:89:3c:19:e5:75:ea:35:6d:95:c3:25:73:b2:
ab:b6:12:f8:45:67:46:0a:fe:a9:ba:da:91:c5:47:
53:e3:f8:9e:c2:cc:71:ed:34:af:2f:83:58:a5:74:
31:f4:4f:bf:5c:46:e9:9d:a7:c9:0f:c8:90:7e:d0:
6b:bd:07:f7:73:b9:8b:30:33:f5:12:3e:64:fc:c0:
74:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F7:0D:E8:AF:D4:B2:C5:9A:DE:72:71:4B:5B:DE:4B:29:7F:C5:06
X509v3 Authority Key Identifier:
keyid:7F:24:9B:95:44:62:06:83:F9:4B:38:8A:75:51:A6:8A:64:93:ED:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/YvcN6K_UssWa3nJxS1veSyl_xQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.48.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:78:5c:89:df:8b:4a:bc:3a:b8:0d:a9:1f:2a:c5:be:6c:8c:
05:de:0f:c7:d1:a7:00:11:a5:87:31:6f:e3:16:73:93:bb:fe:
77:d1:80:3f:4f:67:49:e7:88:8b:56:ce:51:9f:bc:b0:f2:f8:
33:1e:2d:f0:8c:7c:18:e3:c6:f3:35:55:6c:f8:6b:c7:43:94:
b9:4a:8f:67:53:86:c2:3f:87:6f:4d:24:6c:6e:02:1e:2d:c1:
19:b9:f7:24:5f:9c:72:33:61:95:93:0a:c5:ee:20:81:0e:af:
bb:d5:31:cb:93:6e:16:1c:dc:26:b6:d7:ac:6e:ae:a9:06:4a:
21:85:da:84:aa:a7:01:94:87:21:3e:74:18:41:64:03:37:fd:
4d:05:24:dd:4c:a6:5d:b5:93:e8:9e:d5:c4:0d:3e:e1:02:b6:
b4:73:79:b3:c0:c7:ca:13:4a:cd:f4:24:d1:9f:a6:af:8e:46:
0a:96:70:44:5c:5f:7f:2e:4b:d4:8e:94:f1:26:bf:21:27:7d:
52:b3:fb:23:34:ec:d2:be:ee:c7:a0:5f:a0:9a:23:45:5b:fe:
3e:4d:43:02:54:3b:b8:04:82:4f:5b:fc:7a:03:df:55:b0:41:
c9:22:85:81:e9:42:64:36:76:7f:81:0c:82:fe:81:b2:1f:d4:
04:50:24:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 19:22:09 2026 by rpki-client