Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/1-6Qx_vRKGzfHf8IEvyAyZCV43gI.roa
File: 1-6Qx_vRKGzfHf8IEvyAyZCV43gI.roa (raw, json)
Hash identifier: iNDAUNLfcrirGyxELbpocX+6wenzvceAEQSz65u8gvo=
Subject key identifier: FB:A4:31:FE:F4:4A:1B:37:C7:7F:C2:04:BF:20:32:64:25:78:DE:02
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 019EE90919E7E245CA7FC7F5E4B6F9941EDC
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/1-6Qx_vRKGzfHf8IEvyAyZCV43gI.roa
Signing time: Sun 21 Jun 2026 07:15:48 +0000
ROA not before: Sun 21 Jun 2026 07:15:48 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62442
IP address blocks: 95.38.41.0/24 maxlen: 24
95.38.45.0/24 maxlen: 24
95.38.54.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e9:09:19:e7:e2:45:ca:7f:c7:f5:e4:b6:f9:94:1e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jun 21 07:15:48 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fba431fef44a1b37c77fc204bf2032642578de02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:75:98:7c:68:fc:a0:0f:af:6f:ac:94:ab:dc:
3c:76:a4:99:b3:03:50:32:7f:a7:6e:12:1f:38:0a:
f8:86:09:a5:c2:0f:62:47:ec:21:04:da:31:7c:a4:
67:af:02:f1:f5:63:0a:7e:a2:71:04:1c:82:b6:11:
c0:27:2e:fe:67:71:64:d6:7a:e3:c8:c4:0a:00:8e:
a0:3b:65:e9:1b:f8:b6:95:98:18:bc:89:99:60:55:
05:4f:9c:53:72:0d:52:2a:b6:df:46:d4:19:b6:f2:
6c:41:3e:bc:b9:0f:1d:13:31:e7:37:37:10:50:3e:
ae:54:bb:ec:13:b8:70:d7:03:31:4d:21:02:95:8a:
04:bc:ea:e4:b1:3b:ba:ca:c1:77:fe:b6:a9:16:9d:
11:95:72:ba:32:63:f1:e0:dd:79:37:c2:76:0f:ec:
a5:d4:31:ab:67:48:30:15:52:d5:36:50:a1:81:2f:
51:f6:1e:d2:8b:3c:78:07:0a:4b:4e:87:1b:62:e7:
b3:ca:d9:b9:9e:c9:40:d3:9a:58:3f:fe:db:c1:f2:
92:1d:01:13:2e:31:18:26:68:1f:bb:7a:3d:24:26:
f6:53:48:38:34:53:7f:c4:da:40:04:b9:5b:07:67:
e9:43:73:30:70:2e:5c:79:32:63:5a:c7:be:39:f9:
58:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A4:31:FE:F4:4A:1B:37:C7:7F:C2:04:BF:20:32:64:25:78:DE:02
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/1-6Qx_vRKGzfHf8IEvyAyZCV43gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.41.0/24
95.38.45.0/24
95.38.54.0/23
Signature Algorithm: sha256WithRSAEncryption
30:76:2a:e3:9f:cb:f9:4a:ba:c6:a8:b6:c5:7e:69:16:e5:c6:
59:4a:f1:20:e5:07:fd:e6:0d:0c:f0:0c:b5:f1:39:7b:62:c2:
46:38:1a:b4:0e:6e:68:9f:6b:7f:f9:41:35:e0:e8:47:22:c3:
c2:d6:f6:5e:c3:8f:38:bd:ff:41:11:15:d6:43:84:b7:f5:e5:
c0:3a:4c:62:f3:51:08:40:2d:3d:f8:e6:a2:25:a5:4f:7d:bd:
39:ff:26:00:77:74:4d:79:2a:2f:95:48:a7:f3:ec:fd:86:59:
cb:32:ab:42:56:b5:a3:95:a3:32:9e:b4:7b:3c:9f:de:b2:30:
92:fe:7b:8f:33:40:0b:da:ff:66:21:e9:5a:fb:8d:55:97:82:
3c:19:97:b8:fb:44:59:0b:c4:50:c9:ac:b3:4c:41:b5:b7:00:
3c:f1:62:48:f1:56:45:f2:c9:e5:4b:c8:2a:0a:13:ea:59:bc:
c5:95:7e:8b:b8:1d:ab:a6:9f:2d:f2:52:ae:98:14:71:e8:47:
f1:ee:70:21:82:c8:ce:69:67:12:16:40:a6:f8:2c:6b:f8:4a:
96:8a:c5:f0:24:78:52:94:8d:1c:13:af:73:c7:50:1c:b9:77:
7a:a0:c3:e5:ce:1b:f6:7c:03:88:4f:03:c6:22:6c:9b:4d:fc:
c7:22:81:43
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jun 30 23:31:25 2026 by rpki-client