Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/8mlX01dUhb6-6rm4Tg_A6iylZK8.roa
File: 8mlX01dUhb6-6rm4Tg_A6iylZK8.roa (raw, json)
Hash identifier: aWWMzk3BVnWIBBzTyM865wpiSTi7X2ELFihppDyLczk=
Subject key identifier: F2:69:57:D3:57:54:85:BE:BE:EA:B9:B8:4E:0F:C0:EA:2C:A5:64:AF
Certificate issuer: /CN=fc9128a762ceeb6b59f5431568bc13fce41aba12
Certificate serial: 019C1E1B95D71BB570731758359C369388F3
Authority key identifier: FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/8mlX01dUhb6-6rm4Tg_A6iylZK8.roa
Signing time: Mon 02 Feb 2026 11:27:30 +0000
ROA not before: Mon 02 Feb 2026 11:27:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 193.8.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Feb 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:1e:1b:95:d7:1b:b5:70:73:17:58:35:9c:36:93:88:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9128a762ceeb6b59f5431568bc13fce41aba12
Validity
Not Before: Feb 2 11:27:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f26957d3575485bebeeab9b84e0fc0ea2ca564af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:64:19:33:6c:4f:5c:03:4d:8c:ca:74:20:
ba:12:42:89:d9:38:11:6c:9c:1e:61:15:a4:12:f3:
6b:19:08:33:fd:ab:82:d9:f4:64:c1:33:6f:04:cd:
ce:ed:93:80:aa:5f:ff:31:3a:7e:7e:56:a7:8a:f5:
7c:0d:c7:1d:1b:49:5f:12:d4:17:14:d8:87:f8:bc:
3b:9d:ad:05:ec:bf:dd:88:c9:7b:b0:f3:a0:6e:11:
b9:67:91:94:8a:92:c7:10:04:c0:5e:92:8c:45:cd:
35:05:38:f4:03:58:7e:72:ca:84:f0:d2:18:fc:94:
5d:c7:04:9c:43:2e:2b:e6:2c:9e:cb:74:3f:5f:e0:
1f:fe:61:05:33:b3:04:d3:1a:08:67:91:f7:d7:86:
46:4a:1b:e5:d2:db:a3:c0:7c:5d:c1:94:e4:ce:a4:
00:44:bd:c4:2d:92:1e:e3:5c:3b:ff:02:90:ac:46:
a4:72:c1:b7:90:0c:e7:6c:42:a0:64:8c:b6:da:d9:
50:96:93:ec:66:b3:9d:92:b6:86:10:d7:84:41:2a:
b3:a5:bc:35:27:d1:b6:b8:36:19:98:12:6a:9a:87:
56:d4:7b:8e:2d:b0:f1:61:3c:36:0e:5f:5e:eb:c9:
7b:b3:5c:7f:83:24:3b:d5:39:8b:e8:43:e0:f6:e6:
20:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:69:57:D3:57:54:85:BE:BE:EA:B9:B8:4E:0F:C0:EA:2C:A5:64:AF
X509v3 Authority Key Identifier:
keyid:FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/8mlX01dUhb6-6rm4Tg_A6iylZK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
67:43:6b:6f:a6:fd:57:35:66:ab:af:58:f8:6d:f9:ab:9f:7c:
7a:2c:25:18:61:09:b9:1a:16:35:68:5a:2d:9e:f2:41:60:56:
9a:9d:57:60:a0:c2:25:99:96:16:8c:7c:f9:01:6c:30:c2:12:
e4:85:76:80:26:15:b2:a7:65:9c:75:19:fc:7e:c1:e3:b5:17:
cd:ce:1b:8d:d3:8b:48:e4:20:f3:51:48:10:1a:72:e2:05:2c:
2d:5e:da:53:0c:f2:bc:75:35:06:20:cf:52:8e:8f:27:79:09:
da:91:b4:f8:57:ea:c9:fd:99:94:54:02:28:8f:9b:d0:b0:57:
f4:61:b0:1e:00:d7:bb:d2:99:df:c0:cc:1b:51:03:6c:6b:59:
39:94:6b:06:92:3a:9b:5c:28:d8:ad:ce:33:48:67:7b:fa:fc:
bb:d7:aa:de:4b:5f:64:1e:59:43:f8:97:05:b0:20:66:a4:c8:
19:f1:7b:1c:2a:e1:ff:e8:58:23:aa:44:16:ed:8a:11:4c:a6:
c0:df:85:24:aa:f2:3f:12:d8:b1:df:08:00:5d:26:24:7d:31:
a8:bf:07:f2:e2:15:26:2f:a3:77:ec:76:4d:2d:d4:fe:46:a9:
9f:38:8b:80:04:3b:36:03:4b:7a:05:e9:53:b8:1b:00:c4:65:
26:7c:0a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 21 03:42:12 2026 by rpki-client