Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/1-e3X3nnOITuhFUTt48TdT2Qw-5U.roa
File: 1-e3X3nnOITuhFUTt48TdT2Qw-5U.roa (raw, json)
Hash identifier: u9UX0jZDejI6w83BZaY3pHdg72rNaFEVz4TXqidtNXA=
Subject key identifier: F9:ED:D7:DE:79:CE:21:3B:A1:15:44:ED:E3:C4:DD:4F:64:30:FB:95
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 019ED1ABC87064EFFA31027113DEB6B36C82
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/1-e3X3nnOITuhFUTt48TdT2Qw-5U.roa
Signing time: Tue 16 Jun 2026 18:22:36 +0000
ROA not before: Tue 16 Jun 2026 18:22:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215607
IP address blocks: 195.222.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d1:ab:c8:70:64:ef:fa:31:02:71:13:de:b6:b3:6c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Jun 16 18:22:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f9edd7de79ce213ba11544ede3c4dd4f6430fb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7f:a5:50:47:8d:50:c4:4b:9e:ee:9a:0e:c6:
c2:a1:5d:bd:1a:13:73:d6:83:26:42:da:e8:0c:b1:
5a:ae:e4:3a:54:2e:ca:47:7d:d3:1e:51:e9:53:a5:
8e:f0:3c:08:46:85:35:0c:ad:41:3f:dc:26:dc:09:
75:2d:3c:5c:b6:7e:23:0c:41:be:b9:6f:e1:a5:62:
49:80:6d:6d:c9:08:81:fb:db:e0:cf:71:67:9f:bf:
e1:2b:c0:66:d7:56:5a:d5:88:a3:d6:89:26:00:9e:
94:97:e3:82:f9:ec:92:65:c6:d1:23:48:f7:01:3c:
a9:3d:3d:34:3d:22:b5:61:7e:0d:27:64:4f:41:7a:
7b:2a:d1:bd:08:14:44:d5:61:60:43:82:2b:4d:44:
3a:0d:e4:87:d2:6a:50:63:71:ee:1b:1c:58:9a:33:
1e:3d:f6:3b:12:4b:53:d9:fd:65:9d:9b:e7:20:ed:
16:75:aa:64:80:22:74:a4:79:aa:0a:4f:ef:82:0c:
83:bb:84:a1:f5:9a:84:41:01:c2:e9:ba:d3:57:41:
cd:5a:42:04:bc:6c:52:d7:c3:1c:c9:ff:a0:52:bd:
be:d7:e6:92:02:ae:4f:28:51:d0:28:f4:af:e9:4f:
91:b0:3a:6a:12:15:dd:c2:1d:8d:a0:49:ac:75:88:
be:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:ED:D7:DE:79:CE:21:3B:A1:15:44:ED:E3:C4:DD:4F:64:30:FB:95
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/1-e3X3nnOITuhFUTt48TdT2Qw-5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.222.127.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1d:91:c9:d1:d0:cf:b9:1c:6e:b2:6b:b6:93:01:15:8e:6a:
a6:bf:7e:2f:81:11:c5:97:02:e7:45:6e:df:c9:6a:24:35:dd:
d0:0b:79:b9:67:77:99:eb:76:06:29:2f:54:71:cf:b6:c0:a2:
cd:8e:72:ae:7a:ea:8c:17:b2:8f:2a:b9:3e:c6:35:01:fe:33:
3b:58:ad:79:4e:4d:64:35:d3:9e:d5:73:44:74:2e:d2:a4:8f:
65:b8:5e:1a:e7:28:5d:4f:ce:2e:61:d8:3a:93:18:99:5b:55:
36:65:fb:ac:0e:e8:c6:16:2a:ff:4f:48:fc:51:6e:e5:22:85:
07:69:75:df:92:8d:0e:b9:44:fd:78:85:2a:1a:51:59:07:15:
11:03:f4:a8:4f:2c:3b:fb:74:01:5d:4d:3f:07:21:51:c1:c9:
f1:b5:8e:60:67:15:54:df:26:87:4a:ef:98:3d:6a:15:97:b8:
b8:ae:9a:48:ac:83:ad:f1:e4:da:f9:b1:3a:44:6c:53:be:16:
56:44:ca:b3:4c:73:7b:ce:68:ad:2a:b2:7c:36:a9:92:f0:3a:
61:e2:f0:ec:5c:cf:d2:fd:10:6f:08:49:82:e8:f2:c2:5e:fa:
5c:0c:02:86:ee:5f:4c:c6:62:c2:6b:29:71:b7:31:2c:31:68:
09:ff:6c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 18:20:38 2026 by rpki-client