Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/fFE7DsDqbkg-ZR3JK4cTZaqS_D0.roa
File: fFE7DsDqbkg-ZR3JK4cTZaqS_D0.roa (raw, json)
Hash identifier: JOTvGQn/m3ej6iaV5HgdL4g/k0YV0GARl4hWigm8Th0=
Subject key identifier: 7C:51:3B:0E:C0:EA:6E:48:3E:65:1D:C9:2B:87:13:65:AA:92:FC:3D
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019D9B9897E23BA24833E411B804F80AEF21
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/fFE7DsDqbkg-ZR3JK4cTZaqS_D0.roa
Signing time: Fri 17 Apr 2026 13:19:21 +0000
ROA not before: Fri 17 Apr 2026 13:19:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63199
IP address blocks: 151.244.4.0/24 maxlen: 24
151.246.131.0/24 maxlen: 24
151.247.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:98:97:e2:3b:a2:48:33:e4:11:b8:04:f8:0a:ef:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 17 13:19:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7c513b0ec0ea6e483e651dc92b871365aa92fc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e1:07:99:d7:e5:d4:b4:82:76:a2:a3:fe:00:
6d:f6:72:11:54:ce:d7:fe:90:7e:de:7d:36:91:7f:
26:a9:0f:4d:e7:16:d5:f2:83:f8:b6:fb:fa:de:0d:
e4:36:17:7c:65:31:0e:8b:5f:b8:05:bb:b4:cb:83:
29:98:b0:75:d3:a6:c7:12:f0:37:c9:09:40:30:de:
f1:60:02:2b:5d:0f:28:a9:8d:82:a4:d5:98:75:f0:
3b:28:f5:54:26:5e:52:db:8a:69:c1:3e:b6:f2:bc:
49:44:f3:6b:4c:c9:3b:d2:95:3a:7e:47:cd:4e:04:
b1:fd:a2:c5:d7:f2:e1:48:a3:b7:a2:55:d4:ed:48:
b9:e5:cb:d4:06:9e:ff:da:12:25:54:61:c3:37:0e:
18:00:72:70:7a:61:be:b7:11:9f:43:66:8f:fa:50:
38:aa:98:db:37:47:a3:94:4d:48:e3:9e:e4:4b:7b:
30:90:14:01:b0:85:c4:ac:a3:1a:14:08:7e:65:30:
2d:76:83:83:00:08:0a:7e:f1:a5:13:9d:e1:81:44:
f2:e8:59:cc:7e:e1:1d:56:11:ad:1c:e5:29:f5:96:
43:41:0e:aa:72:f5:3c:bd:e7:b0:98:d2:c7:c8:b7:
cf:25:74:4a:ab:34:ef:a6:08:f2:22:c6:26:46:13:
29:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:51:3B:0E:C0:EA:6E:48:3E:65:1D:C9:2B:87:13:65:AA:92:FC:3D
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/fFE7DsDqbkg-ZR3JK4cTZaqS_D0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.244.4.0/24
151.246.131.0/24
151.247.128.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:b8:8b:f5:df:d1:01:90:84:98:77:90:ff:02:83:86:2e:06:
79:66:04:ca:c2:3d:2d:08:42:70:8a:a1:90:b9:f1:13:92:91:
7c:fa:57:b7:3b:d0:25:cd:b0:90:a8:dc:4b:f6:ca:30:89:af:
a1:54:16:77:59:67:8b:4f:a8:5a:9b:09:83:a2:66:70:58:54:
4b:a8:03:24:e4:97:ad:fc:e8:ca:31:b0:30:39:7e:b7:08:f6:
ec:83:00:79:65:1d:0a:e5:27:16:2b:de:6f:24:f3:a1:dc:25:
65:ff:cb:a1:f0:9d:4a:6e:20:8e:88:c9:7c:e2:17:55:d1:ff:
71:bf:27:91:20:5c:fa:1a:11:6a:77:e7:2b:19:80:60:f5:98:
bc:b8:b0:78:7a:36:7a:ba:85:8a:cc:dc:f7:13:8e:34:d9:05:
43:f2:e9:63:05:6d:2b:fd:a3:5a:3d:90:42:01:c1:d1:07:df:
1d:5e:4e:50:87:ca:64:ee:d5:83:da:3c:4f:77:a6:e9:a9:7b:
42:12:7d:de:9d:04:f7:10:c7:f5:83:66:3c:5b:c5:4a:03:54:
a5:ee:05:84:45:30:06:77:8e:95:40:ad:da:df:76:ff:34:65:
5e:88:8b:6f:91:d6:54:9f:9e:83:cc:fd:3d:b4:e5:bb:d8:cc:
77:53:db:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 01:49:45 2026 by rpki-client