Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/Fkj26JF70VbKRFMhWrYdU9NtaxE.roa
File: Fkj26JF70VbKRFMhWrYdU9NtaxE.roa (raw, json)
Hash identifier: /6tYIOX0HTJdH0wQZ5VKDfqhCBzYhIWs9k6pWyv6yuo=
Subject key identifier: 16:48:F6:E8:91:7B:D1:56:CA:44:53:21:5A:B6:1D:53:D3:6D:6B:11
Certificate issuer: /CN=fae69f0a29ef8d8c22d9d6ecde3a307d894d5c19
Certificate serial: 019A54CF9AF926939573A53721AA53996BB8
Authority key identifier: FA:E6:9F:0A:29:EF:8D:8C:22:D9:D6:EC:DE:3A:30:7D:89:4D:5C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-uafCinvjYwi2dbs3jowfYlNXBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/Fkj26JF70VbKRFMhWrYdU9NtaxE.roa
Signing time: Wed 05 Nov 2025 16:18:03 +0000
ROA not before: Wed 05 Nov 2025 16:18:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5089
IP address blocks: 185.27.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/1-uafCinvjYwi2dbs3jowfYlNXBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/1-uafCinvjYwi2dbs3jowfYlNXBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-uafCinvjYwi2dbs3jowfYlNXBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:cf:9a:f9:26:93:95:73:a5:37:21:aa:53:99:6b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fae69f0a29ef8d8c22d9d6ecde3a307d894d5c19
Validity
Not Before: Nov 5 16:18:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1648f6e8917bd156ca4453215ab61d53d36d6b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:74:82:3d:9e:60:e8:b4:85:02:c5:08:46:a6:
00:47:cc:d6:11:51:ef:dc:b5:f4:81:cd:30:12:32:
6b:8a:6a:8c:5b:47:15:64:3c:d0:d6:39:ce:db:ba:
1b:53:e7:2c:04:b8:f3:8f:64:0a:54:f5:8b:79:0d:
8f:22:8e:41:b3:07:bc:b7:99:73:52:f2:79:81:a9:
6d:15:66:93:64:74:9c:7e:c6:6b:d7:59:ee:c9:89:
3c:49:71:06:ef:95:12:34:12:3d:26:49:fc:c2:0d:
26:94:c2:ac:cc:b4:60:35:c0:54:2b:9d:6d:53:2c:
af:1a:53:eb:33:c3:a0:41:4c:e8:0a:53:c4:99:1c:
1a:b1:ff:ba:66:80:23:8f:5b:01:24:3b:25:e3:2f:
54:48:c8:1e:90:11:d9:5a:e7:91:d1:72:e5:e3:e4:
e9:6e:b9:ed:f9:e1:b7:21:f7:d6:40:fe:83:28:18:
07:c4:51:d6:90:9c:8b:09:ce:27:80:8c:61:c8:28:
3e:95:6d:0e:84:9c:79:dc:5e:e5:0a:25:71:45:dc:
9d:6e:88:f2:0a:b0:3c:7d:4f:5a:5d:55:3a:d4:7c:
8f:8a:27:12:72:d4:f6:98:23:1d:1d:5e:68:d8:04:
70:a5:ef:7f:49:e3:32:51:d4:f7:8b:40:97:3b:5c:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:48:F6:E8:91:7B:D1:56:CA:44:53:21:5A:B6:1D:53:D3:6D:6B:11
X509v3 Authority Key Identifier:
keyid:FA:E6:9F:0A:29:EF:8D:8C:22:D9:D6:EC:DE:3A:30:7D:89:4D:5C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uafCinvjYwi2dbs3jowfYlNXBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/Fkj26JF70VbKRFMhWrYdU9NtaxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/d1359f-354e-4568-840c-af50a5be280e/1/1-uafCinvjYwi2dbs3jowfYlNXBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.46.0/24
Signature Algorithm: sha256WithRSAEncryption
85:4a:15:80:ff:e0:ae:5f:7f:07:aa:8f:c5:c7:5d:97:63:69:
45:11:13:e6:0b:95:75:9b:0c:ad:c4:72:50:1c:6e:5f:48:b2:
7f:0d:32:f8:c6:5b:42:77:82:db:e4:4a:5a:09:4f:88:c4:1f:
f6:7e:13:f0:8a:03:90:22:a0:8d:96:97:c6:3b:bd:89:25:13:
b8:fe:d8:9b:fb:31:72:59:e3:f1:90:a6:9d:1b:1e:6d:32:34:
98:40:43:2f:c9:d2:81:aa:52:df:25:9a:52:1a:87:a6:56:49:
f8:1b:46:2b:05:75:05:55:a0:f9:32:ec:07:27:c7:3a:88:41:
be:be:a1:94:e7:c7:5f:bd:5c:e7:14:3b:aa:20:cd:a7:73:c5:
60:69:08:d5:ad:84:99:51:a8:03:1c:8f:28:9c:6e:ea:bb:8a:
f8:83:13:ce:86:a5:0f:27:07:0b:96:5b:f6:de:12:9d:f0:ca:
03:69:64:de:31:b4:55:a0:da:94:e3:b9:3b:be:2e:9d:6d:db:
f7:c6:4a:7b:35:7a:1e:4c:61:9a:f5:80:a4:ec:7c:da:9e:2c:
4b:50:11:35:35:12:fc:09:86:7c:ab:7b:85:6e:ad:ac:f8:59:
8c:c0:1a:7b:d9:7b:66:73:dd:97:0f:5b:7e:5c:dc:28:b3:f6:
19:80:88:88
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZpUz5r5JpOVc6U3IapTmWu4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZTY5ZjBhMjllZjhkOGMyMmQ5ZDZlY2RlM2EzMDdkODk0
ZDVjMTkwHhcNMjUxMTA1MTYxODAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjQ4ZjZlODkxN2JkMTU2Y2E0NDUzMjE1YWI2MWQ1M2QzNmQ2YjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnSCPZ5g6LSFAsUIRqYAR8zWEVHv
3LX0gc0wEjJrimqMW0cVZDzQ1jnO27obU+csBLjzj2QKVPWLeQ2PIo5Bswe8t5lz
UvJ5galtFWaTZHScfsZr11nuyYk8SXEG75USNBI9Jkn8wg0mlMKszLRgNcBUK51t
UyyvGlPrM8OgQUzoClPEmRwasf+6ZoAjj1sBJDsl4y9USMgekBHZWueR0XLl4+Tp
brnt+eG3IffWQP6DKBgHxFHWkJyLCc4ngIxhyCg+lW0OhJx53F7lCiVxRdydbojy
CrA8fU9aXVU61HyPiicSctT2mCMdHV5o2ARwpe9/SeMyUdT3i0CXO1z/eQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFBZI9uiRe9FWykRTIVq2HVPTbWsRMB8GA1UdIwQY
MBaAFPrmnwop742MItnW7N46MH2JTVwZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS11YWZDaW52all3aTJkYnMzam93ZllsTlhCay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQvZDEzNTlmLTM1NGUtNDU2OC04NDBj
LWFmNTBhNWJlMjgwZS8xL0ZrajI2SkY3MFZiS1JGTWhXcllkVTlOdGF4RS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDQvZDEzNTlmLTM1NGUtNDU2OC04NDBjLWFmNTBhNWJlMjgw
ZS8xLzEtdWFmQ2ludmpZd2kyZGJzM2pvd2ZZbE5YQmsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5Gy4w
DQYJKoZIhvcNAQELBQADggEBAIVKFYD/4K5ffweqj8XHXZdjaUURE+YLlXWbDK3E
clAcbl9Isn8NMvjGW0J3gtvkSloJT4jEH/Z+E/CKA5AioI2Wl8Y7vYklE7j+2Jv7
MXJZ4/GQpp0bHm0yNJhAQy/J0oGqUt8lmlIah6ZWSfgbRisFdQVVoPky7AcnxzqI
Qb6+oZTnx1+9XOcUO6ogzadzxWBpCNWthJlRqAMcjyicbuq7iviDE86GpQ8nBwuW
W/beEp3wygNpZN4xtFWg2pTjuTu+Lp1t2/fGSns1eh5MYZr1gKTsfNqeLEtQETU1
EvwJhnyre4Vuraz4WYzAGnvZe2Zz3ZcPW35c3Ciz9hmAiIg=
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:28 2025 by rpki-client