Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/Up2bcDy9hPB1Kz8sFwe5bqQC6Ag.roa
File: Up2bcDy9hPB1Kz8sFwe5bqQC6Ag.roa (raw, json)
Hash identifier: 1i3yAd9ivRpDb555PgDu+lm4fzFtocH9kEaEa/hkKxY=
Subject key identifier: 52:9D:9B:70:3C:BD:84:F0:75:2B:3F:2C:17:07:B9:6E:A4:02:E8:08
Certificate issuer: /CN=5fe53c0bfc3c8fb56b81191317144443e0e29d25
Certificate serial: 019F008705444A728E6186440467769BF243
Authority key identifier: 5F:E5:3C:0B:FC:3C:8F:B5:6B:81:19:13:17:14:44:43:E0:E2:9D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/Up2bcDy9hPB1Kz8sFwe5bqQC6Ag.roa
Signing time: Thu 25 Jun 2026 20:44:36 +0000
ROA not before: Thu 25 Jun 2026 20:44:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215133
IP address blocks: 87.232.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 17:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:00:87:05:44:4a:72:8e:61:86:44:04:67:76:9b:f2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fe53c0bfc3c8fb56b81191317144443e0e29d25
Validity
Not Before: Jun 25 20:44:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=529d9b703cbd84f0752b3f2c1707b96ea402e808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:89:8f:03:8e:93:78:b0:71:d0:e2:f1:76:8c:
fe:d6:f2:e3:7e:8b:4d:58:88:c1:fb:24:3f:c1:d8:
64:4b:b3:fe:cd:db:27:e3:98:85:1b:a9:35:5d:17:
9d:78:24:9b:6d:5d:85:a6:40:12:96:c4:bf:29:53:
a2:78:2b:dd:29:f1:08:3a:46:fe:b8:68:e0:96:72:
5a:10:6d:71:b1:86:7f:5b:de:e0:1f:40:1a:5f:38:
bf:96:6d:4e:70:39:c4:47:20:7f:5b:3d:bf:25:df:
4a:95:5c:fa:9a:81:39:ef:fd:c4:a2:a4:74:32:6d:
d5:aa:9a:f0:2b:87:84:c2:d7:4b:e9:1a:5e:9b:06:
16:a9:39:e2:b7:55:82:fe:72:09:44:c2:0c:c7:ae:
b3:0a:4c:ad:76:6c:ef:10:1c:97:40:10:dd:6b:38:
e4:0a:b2:ac:25:5e:35:b4:e1:f9:f7:b2:e8:bb:0a:
6b:bb:20:d7:c5:0c:92:98:72:9b:30:b6:65:5e:75:
a6:bf:af:be:af:bf:0f:ce:9c:a7:fc:16:38:5b:56:
13:08:8a:95:9b:0c:dc:1d:93:f3:de:e9:b8:f7:6e:
f7:ae:90:1d:52:72:6a:4b:69:26:cb:b2:e5:a1:0d:
c3:6a:3a:3a:77:a4:47:25:d3:b0:9f:5a:e1:58:27:
a9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9D:9B:70:3C:BD:84:F0:75:2B:3F:2C:17:07:B9:6E:A4:02:E8:08
X509v3 Authority Key Identifier:
keyid:5F:E5:3C:0B:FC:3C:8F:B5:6B:81:19:13:17:14:44:43:E0:E2:9D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/Up2bcDy9hPB1Kz8sFwe5bqQC6Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.232.80.0/24
Signature Algorithm: sha256WithRSAEncryption
45:86:69:37:90:06:b6:be:28:03:e7:5c:f4:1d:5f:4a:fa:21:
06:20:f5:3c:6a:4d:4c:92:51:5f:0a:e8:0d:b7:20:be:14:75:
23:80:38:73:a9:bd:21:2a:63:f9:a7:bf:10:53:0f:e6:ec:b5:
fe:b4:11:e1:bd:14:6b:fd:0d:5d:6b:06:e3:73:ff:c4:ad:38:
a2:9c:99:7e:32:3b:39:5b:42:c5:c9:b2:f1:fa:e4:bc:b2:bd:
53:08:1b:9a:6e:0f:e0:de:98:7a:83:9f:5b:f2:98:ea:f5:d5:
e3:a9:d9:8c:56:ff:99:ed:24:a7:94:10:64:a3:ca:1f:2c:dd:
65:d7:70:90:b2:90:35:4e:6a:64:47:40:b5:d2:8d:cb:fb:21:
8d:f3:ca:24:1c:01:13:2d:69:25:b2:23:c4:e3:69:d5:68:24:
e6:24:46:36:2a:f3:29:32:84:f8:09:5e:9c:35:0f:a3:fc:31:
04:6d:39:96:21:7f:60:8c:76:f1:07:ef:a9:ef:d3:8b:98:24:
a5:13:20:a7:61:03:fa:20:fb:16:6d:7b:c6:ec:93:95:37:8f:
3f:62:2b:b7:01:4c:db:ee:43:f5:18:fa:9c:b7:02:37:44:50:
0f:2f:2f:e6:bb:6f:aa:72:eb:22:34:e9:51:16:99:0a:8c:47:
0d:96:7b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 01:58:44 2026 by rpki-client