Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/_Sc3r6nRYQtQu2cZIjq2IjctaNg.roa
File: _Sc3r6nRYQtQu2cZIjq2IjctaNg.roa (raw, json)
Hash identifier: e+HC4XFRl9Gj2y368uE+nXV2ycHussEEZzNT8l44+WA=
Subject key identifier: FD:27:37:AF:A9:D1:61:0B:50:BB:67:19:22:3A:B6:22:37:2D:68:D8
Certificate issuer: /CN=1f18dc5036d7fbc0dcabf33bccaad10b17c52897
Certificate serial: 019DCA1DD811D7226FF30665CAC09708CF6D
Authority key identifier: 1F:18:DC:50:36:D7:FB:C0:DC:AB:F3:3B:CC:AA:D1:0B:17:C5:28:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/_Sc3r6nRYQtQu2cZIjq2IjctaNg.roa
Signing time: Sun 26 Apr 2026 14:07:26 +0000
ROA not before: Sun 26 Apr 2026 14:07:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 49127
IP address blocks: 83.98.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ca:1d:d8:11:d7:22:6f:f3:06:65:ca:c0:97:08:cf:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f18dc5036d7fbc0dcabf33bccaad10b17c52897
Validity
Not Before: Apr 26 14:07:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fd2737afa9d1610b50bb6719223ab622372d68d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:85:7f:17:3a:14:66:89:6f:aa:4b:ea:fb:46:
de:a5:10:4e:0a:81:58:18:bb:21:be:df:e2:9f:cb:
d1:46:45:65:df:5f:2d:88:f7:93:13:01:fe:bd:c6:
85:ba:37:36:66:c7:e9:0e:b4:54:14:ee:86:f2:44:
ed:32:b5:00:08:4f:2e:37:f7:ed:35:0c:8f:02:95:
80:79:46:0d:39:b0:82:04:96:5b:47:cc:cf:c3:44:
aa:71:29:59:c9:32:c2:98:1c:bc:00:e3:5b:1d:7f:
2c:f6:b5:37:a9:b6:c4:b0:38:7f:2a:ff:53:ca:4b:
fc:66:53:e1:05:ff:01:a9:10:bb:8c:94:2e:40:df:
2c:a4:c2:57:51:4a:af:c3:4c:27:ed:ea:5c:84:83:
d7:9f:7f:a2:02:dc:89:91:cb:ec:99:45:fe:c3:fd:
fb:fe:db:59:e8:3f:7d:59:bc:03:2c:10:a8:67:5d:
5c:37:90:93:c4:62:c7:bb:9a:08:25:f8:65:26:43:
40:e6:7a:de:cc:06:04:5a:aa:2b:38:68:22:3a:17:
e0:98:b2:9f:9e:80:ce:d6:ff:54:2c:bf:eb:5b:00:
31:d4:4e:7a:ad:4b:6c:5e:02:5d:03:93:fd:4e:d3:
c3:a0:97:eb:29:31:6a:4f:5d:14:16:dd:7d:c4:62:
ff:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:27:37:AF:A9:D1:61:0B:50:BB:67:19:22:3A:B6:22:37:2D:68:D8
X509v3 Authority Key Identifier:
keyid:1F:18:DC:50:36:D7:FB:C0:DC:AB:F3:3B:CC:AA:D1:0B:17:C5:28:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/_Sc3r6nRYQtQu2cZIjq2IjctaNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/9d06ab-965f-46a7-86c3-2b082d2db41b/1/HxjcUDbX-8Dcq_M7zKrRCxfFKJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.164.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:bd:4c:1e:93:e1:cd:d7:3d:bf:13:03:c3:fa:42:a5:43:2b:
78:ba:3e:ed:8a:75:78:1c:78:69:e5:7d:b2:83:0f:a7:c3:89:
4f:6f:7d:9d:ed:57:e8:cb:c8:54:d9:8a:d9:4f:d2:23:99:d5:
34:fd:72:d2:7a:b3:8a:57:0e:6d:21:2e:73:57:30:af:9e:ec:
35:88:fa:c5:c0:b1:a7:87:78:a0:61:0d:90:93:07:21:e3:c4:
28:fa:97:7f:d2:5d:d0:02:97:d5:19:de:85:cd:3d:3a:a7:76:
60:75:98:31:ff:74:95:c9:1e:94:16:98:e7:b5:4f:42:91:c7:
71:40:fd:05:06:e7:f7:45:e8:64:93:99:15:cb:8d:1e:d8:cd:
8a:86:d9:e6:0d:5e:5a:b7:97:38:d7:a9:e2:ca:7c:6a:82:96:
3e:ea:4a:b5:20:59:5f:29:b8:75:6f:41:45:8a:8c:89:0e:85:
54:9a:ef:4b:9e:11:38:33:6d:2b:3f:cd:13:db:77:f6:a1:49:
df:3f:6c:16:56:af:eb:2d:6d:05:0d:37:00:f3:42:93:d9:84:
45:71:f7:5a:81:6d:e1:1c:8f:eb:22:ba:17:f4:c1:c3:a1:5e:
38:1e:ad:11:0e:ab:67:56:2f:ef:fe:70:83:4a:0b:73:a0:40:
07:cc:0d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 21:59:45 2026 by rpki-client