Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/rPEUuCeOVyIUUulpOvg_NO8UnXY.roa
File: rPEUuCeOVyIUUulpOvg_NO8UnXY.roa (raw, json)
Hash identifier: h0+tYC9qZBtnGjX6b3nTc4gS9d6kjoqcbBGvMnfxAdE=
Subject key identifier: AC:F1:14:B8:27:8E:57:22:14:52:E9:69:3A:F8:3F:34:EF:14:9D:76
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 019E4E1060FA3F0504997D4B4230CB897D3B
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/rPEUuCeOVyIUUulpOvg_NO8UnXY.roa
Signing time: Fri 22 May 2026 05:02:36 +0000
ROA not before: Fri 22 May 2026 05:02:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 49581
IP address blocks: 194.152.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:10:60:fa:3f:05:04:99:7d:4b:42:30:cb:89:7d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: May 22 05:02:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=acf114b8278e57221452e9693af83f34ef149d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:b7:1d:98:de:ed:c3:01:ed:f1:0f:aa:39:
cc:e5:db:87:cd:80:70:78:04:69:b4:d3:fa:ce:d4:
f4:3b:78:bf:61:b6:c2:d8:01:77:71:c8:ee:f9:8f:
13:28:8e:79:e3:46:81:4e:4f:53:39:2e:62:10:ce:
d4:bd:77:aa:67:0a:93:c9:cd:21:a7:af:51:3b:03:
00:a8:59:8b:cd:a7:22:37:1a:04:cf:81:a0:40:90:
ec:ca:7d:94:22:8f:90:6f:02:de:aa:c9:e8:34:05:
47:c6:ec:d6:97:65:dd:07:86:ad:bf:32:01:23:f0:
c1:d5:37:a7:9a:f3:5f:8e:a2:54:1a:7c:50:e5:3e:
a9:b6:83:d9:6b:9d:eb:49:d5:74:a6:a0:ce:22:78:
96:7e:47:e9:e2:4e:f8:ee:99:63:8f:f2:51:57:3e:
17:25:6d:90:b3:ae:42:c2:60:80:57:57:13:06:13:
f7:f8:e2:78:8b:cf:10:f9:0e:e4:b6:42:02:84:ae:
b3:b5:c7:7b:61:d5:2d:f1:dd:10:fa:74:55:78:fb:
b8:86:0c:91:e3:8c:e9:1e:73:d1:cd:da:62:e7:9a:
f7:8e:13:6b:cd:b3:1a:e6:22:14:c2:ae:d3:bd:c2:
ea:21:be:e2:3c:47:c6:96:c2:fd:cb:ef:ac:f7:9e:
47:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F1:14:B8:27:8E:57:22:14:52:E9:69:3A:F8:3F:34:EF:14:9D:76
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/rPEUuCeOVyIUUulpOvg_NO8UnXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.152.137.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:9b:a7:22:39:c8:26:93:01:a9:6d:60:e8:f6:93:3b:fe:2d:
b7:7d:31:34:93:e5:37:43:fc:91:f4:a0:6e:cb:be:48:2d:a0:
cc:e0:f3:05:5b:fd:ab:27:00:53:de:73:6a:bf:ad:84:a5:57:
6b:8c:4f:8f:77:c5:dd:d3:ef:ea:8c:d8:70:c3:b0:d6:38:0d:
05:be:b0:2a:4f:9d:c2:9c:2c:06:c2:02:f5:d3:69:f5:e3:90:
c3:62:e1:24:48:b6:6c:8e:dc:4b:74:74:27:b5:02:5a:be:7c:
3a:49:da:99:3a:e7:98:b0:39:36:5c:23:0b:09:e6:de:26:04:
ab:fb:4a:a2:ce:e9:82:7d:44:0c:44:f9:ba:10:78:fc:60:14:
00:7f:d8:d1:02:57:b1:c1:43:61:bc:8e:cf:29:52:35:90:85:
ac:bb:17:6e:b7:1e:95:4d:27:8a:04:0c:7e:a2:11:4a:b0:99:
5a:3b:5c:ba:ea:ae:69:bc:64:1a:a4:59:31:b6:a3:c7:c9:a0:
69:44:06:ea:e2:cc:51:6b:21:1a:15:65:26:c2:05:01:13:a5:
5e:7a:b2:c4:58:07:80:ca:f1:20:4e:32:c1:c1:27:d6:6c:2e:
9d:a9:ef:96:78:88:d0:10:b9:b4:75:36:ff:f3:b8:11:5b:00:
da:e2:15:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 02:28:28 2026 by rpki-client