Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fuRxNjIE-qr9KmN8J_hE59ecEq4.roa
File: fuRxNjIE-qr9KmN8J_hE59ecEq4.roa (raw, json)
Hash identifier: 3CHRC0a/akTbPAJFu8OuUkQRKmDMyUzzK4GIXg8sWws=
Subject key identifier: 7E:E4:71:36:32:04:FA:AA:FD:2A:63:7C:27:F8:44:E7:D7:9C:12:AE
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 019CC377CE5E80E820DF75569F109A9F1740
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fuRxNjIE-qr9KmN8J_hE59ecEq4.roa
Signing time: Fri 06 Mar 2026 14:05:34 +0000
ROA not before: Fri 06 Mar 2026 14:05:34 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 48763
IP address blocks: 194.28.193.0/24 maxlen: 24
217.171.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 17:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c3:77:ce:5e:80:e8:20:df:75:56:9f:10:9a:9f:17:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Mar 6 14:05:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7ee471363204faaafd2a637c27f844e7d79c12ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:98:50:e3:e9:2c:ae:5f:ab:9b:c7:3b:4a:09:
17:a8:83:a5:02:a2:9a:f8:03:6e:dc:cf:5a:be:e3:
b8:21:7f:60:8d:7f:4a:64:c2:af:90:86:8b:3a:c3:
8e:71:3b:a7:d0:98:b2:3b:d3:37:0c:5a:0f:48:4f:
95:39:f4:43:5d:14:b5:16:63:ac:ad:62:8d:a7:31:
23:92:6b:79:be:b0:b8:ee:e7:17:b9:78:f5:47:ee:
83:47:91:d5:aa:c9:37:ba:23:30:6a:bc:5b:27:81:
d4:d6:6b:f9:29:a9:7d:a3:e7:f5:1f:8d:64:72:25:
45:b4:3b:67:2f:6c:76:02:6b:b0:c9:eb:3a:57:cb:
da:3e:86:fe:87:e6:d5:19:3e:ff:53:0b:41:5f:03:
37:3c:2d:0e:e0:e4:7a:68:da:16:72:7f:22:a4:b5:
41:01:0f:7d:d5:1d:38:cb:94:c7:9a:21:45:70:a9:
37:8c:5a:f5:7c:59:8a:01:d7:08:67:5b:ca:c4:59:
f7:19:88:71:60:ba:f3:bd:3a:8a:19:cb:af:e9:dd:
b7:17:b2:80:90:0d:42:64:fc:d1:2a:67:0b:43:b1:
12:95:01:fb:c7:aa:35:46:3a:24:7b:a8:27:d7:d3:
1a:04:d9:b1:11:73:b9:ec:3b:f3:2b:8a:67:fe:67:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E4:71:36:32:04:FA:AA:FD:2A:63:7C:27:F8:44:E7:D7:9C:12:AE
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fuRxNjIE-qr9KmN8J_hE59ecEq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.193.0/24
217.171.147.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:46:87:d3:d9:ff:53:0b:d3:c2:00:d3:12:cf:33:b1:b8:cf:
ff:20:0b:56:04:ba:5e:40:ca:80:a6:fe:a6:44:4d:ff:70:ef:
30:75:0c:87:15:b4:2d:22:e9:1b:f2:66:6b:38:30:bc:2a:a9:
de:13:c0:87:2c:06:b3:8f:61:79:59:c7:b5:46:b1:47:5a:8c:
58:bb:20:97:09:92:5a:48:66:e9:e1:09:ea:09:77:a8:9a:aa:
ab:0d:2a:37:4d:1b:61:d1:4a:66:95:e5:70:95:4c:80:97:22:
16:50:33:49:e8:f9:42:91:2f:60:58:5e:60:b9:77:b0:69:ad:
7a:20:7a:da:c3:e3:ad:28:ff:fc:eb:d6:5c:56:dd:90:c7:a2:
89:f5:51:ea:e7:77:86:8f:25:5a:7a:57:b2:54:49:81:89:e8:
b8:8f:e4:ac:c5:c0:ce:10:15:32:39:74:74:be:7e:3d:ca:b3:
86:a8:52:1a:53:e5:47:5c:a9:20:89:4a:83:bf:cf:3c:88:2b:
1c:76:66:49:18:63:36:6e:8e:e8:8f:ab:64:e3:59:d0:8e:d2:
ab:ca:48:57:cc:e2:ba:78:26:e7:be:be:47:ee:8f:41:f9:59:
30:e2:19:4b:bf:39:51:72:75:a0:e1:9c:c0:43:af:71:2b:74:
e4:92:34:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 02:05:18 2026 by rpki-client