Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/1-nw_fOcrYglPZ8GFjtmzd15eZZ4.roa
File: 1-nw_fOcrYglPZ8GFjtmzd15eZZ4.roa (raw, json)
Hash identifier: rrjenhZyxxc6EMMNrVAL4W2ASX2DvmO1hc4LkAVfpKk=
Subject key identifier: FA:7C:3F:7C:E7:2B:62:09:4F:67:C1:85:8E:D9:B3:77:5E:5E:65:9E
Certificate issuer: /CN=521f0cba10daa302e3b167cee5395f742f530b09
Certificate serial: 019EF9BF8188220FCB7B25ADC2D585FAEBAA
Authority key identifier: 52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/1-nw_fOcrYglPZ8GFjtmzd15eZZ4.roa
Signing time: Wed 24 Jun 2026 13:08:57 +0000
ROA not before: Wed 24 Jun 2026 13:08:57 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 138789
IP address blocks: 87.76.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 13:58:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f9:bf:81:88:22:0f:cb:7b:25:ad:c2:d5:85:fa:eb:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521f0cba10daa302e3b167cee5395f742f530b09
Validity
Not Before: Jun 24 13:08:57 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fa7c3f7ce72b62094f67c1858ed9b3775e5e659e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fe:31:7c:1b:cc:e1:1d:1e:29:f7:5b:b9:6a:
e8:91:79:0f:da:e6:e0:69:ef:ce:e3:f3:e0:2d:02:
a7:66:c0:17:55:d7:0f:c2:f9:10:de:ff:c4:07:51:
3e:9c:40:f1:66:9f:38:02:0e:f0:2c:be:4a:a6:f6:
87:d5:1f:d7:e3:44:31:b9:d8:e2:ee:11:33:66:9c:
bd:cc:cb:fc:fe:0e:c7:de:a4:31:59:65:7b:68:cc:
7e:5e:ec:4b:3f:b7:7c:c8:5d:c3:f8:92:88:55:2c:
25:f7:58:fa:6c:36:4c:45:0b:40:65:d3:dd:75:0b:
ed:03:7b:34:cc:db:27:9d:97:f7:cd:9b:b2:96:52:
1b:83:97:14:f0:e4:60:74:d9:01:ad:18:e7:3e:02:
b9:6a:9d:42:51:d7:0d:00:d5:e4:a2:80:23:66:33:
75:ec:ef:31:b0:57:33:8f:1a:b0:ef:69:9a:e7:6a:
57:23:bd:ab:27:61:42:f2:a4:03:fc:30:82:33:2f:
c9:94:a7:00:45:0a:2c:36:4a:f9:c5:ae:f6:df:40:
9a:5a:a1:69:71:ed:df:bb:ee:a0:7e:c7:7c:7c:92:
61:0e:0d:a0:04:e6:43:3a:59:ac:56:d3:80:83:49:
a9:9d:db:ae:9b:dd:6a:e3:96:6b:65:f7:8b:15:75:
19:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7C:3F:7C:E7:2B:62:09:4F:67:C1:85:8E:D9:B3:77:5E:5E:65:9E
X509v3 Authority Key Identifier:
keyid:52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/1-nw_fOcrYglPZ8GFjtmzd15eZZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.76.213.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d5:63:97:7e:a7:1c:a4:76:5a:18:51:0e:88:4a:da:d2:87:
07:86:e4:a8:fb:a4:97:1a:9d:a9:84:27:73:c6:08:51:aa:b0:
55:88:77:de:83:fa:ae:3d:b2:9b:3f:b1:14:a3:40:6f:fc:64:
b0:30:29:55:54:fa:61:51:d4:55:d7:ec:6a:d1:5c:51:55:c8:
b2:5c:be:58:13:2f:29:c1:48:27:f6:b5:96:85:ca:a9:f2:ae:
d9:5a:15:43:d2:e1:0c:af:23:23:32:81:0c:21:e2:41:2c:8c:
80:4e:a1:d0:25:d3:21:fc:4d:48:68:93:d6:94:bf:2b:a7:1c:
3c:8e:06:84:26:22:23:a6:2a:96:df:3e:3a:9d:5c:36:df:e0:
ae:24:a3:0a:6b:29:f3:01:2c:5c:e7:91:6d:11:47:e9:09:ee:
b4:58:ee:cc:ff:f6:97:4a:31:0f:0e:5c:7c:fb:e6:ab:fd:ea:
9e:4d:eb:db:26:fa:e4:66:a5:73:f5:e9:9f:86:13:c3:e0:01:
ca:7d:48:2f:e8:b7:de:93:09:23:46:76:d2:13:03:51:bc:f0:
4c:39:20:25:be:ee:55:25:e9:2e:81:d5:b8:07:de:34:6e:3f:
f7:79:2f:c8:9a:c6:4f:52:e5:c3:de:5b:50:ea:4e:6b:05:cc:
6b:ce:2a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 20:30:04 2026 by rpki-client