Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/X76EqVwGDlEjYTWZ27V7zELo72o.roa
File: X76EqVwGDlEjYTWZ27V7zELo72o.roa (raw, json)
Hash identifier: kdiphmXS+ElDAWAreXMZX1EjTQyOSTDzJggQqPonNlQ=
Subject key identifier: 5F:BE:84:A9:5C:06:0E:51:23:61:35:99:DB:B5:7B:CC:42:E8:EF:6A
Certificate issuer: /CN=521f0cba10daa302e3b167cee5395f742f530b09
Certificate serial: 019E0E5C174C14E08AD24CFFCFD38D6F3FCE
Authority key identifier: 52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/X76EqVwGDlEjYTWZ27V7zELo72o.roa
Signing time: Sat 09 May 2026 20:09:36 +0000
ROA not before: Sat 09 May 2026 20:09:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 13335
IP address blocks: 87.76.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0e:5c:17:4c:14:e0:8a:d2:4c:ff:cf:d3:8d:6f:3f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521f0cba10daa302e3b167cee5395f742f530b09
Validity
Not Before: May 9 20:09:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5fbe84a95c060e5123613599dbb57bcc42e8ef6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:01:ec:ba:ec:89:a7:be:9d:ba:54:76:02:
29:b7:d3:05:8d:b0:0e:82:7f:9a:14:60:f9:3b:00:
96:ba:8d:84:86:18:69:0d:5e:9b:fe:42:65:f7:c3:
82:84:e5:c0:49:29:4f:ba:85:d9:e9:1c:78:fe:e9:
15:fe:88:db:50:f0:f5:69:e9:c1:df:65:fe:68:38:
0a:3a:03:4b:ad:e7:d2:cd:8d:86:6a:dd:87:5c:38:
4c:04:40:5f:79:d0:72:29:00:29:e8:d1:fb:94:53:
c3:a2:45:99:f4:1c:63:93:7c:a7:64:37:fc:a2:95:
2e:f7:f0:2d:50:2c:56:49:8e:e0:03:e3:b3:55:9e:
87:ef:cb:4b:64:24:e1:cd:24:b4:e8:de:3b:93:74:
ef:4f:67:d2:6d:e9:40:5c:80:d5:c4:d8:93:70:8f:
6e:5d:90:24:3a:48:3b:74:3a:02:79:62:5a:19:e9:
4a:10:30:ca:11:ea:f4:77:46:20:4d:8f:ad:07:3c:
6c:ed:f7:dd:df:ea:5c:cc:2a:5c:3d:71:70:b7:fb:
b5:a3:07:83:d7:eb:2e:7b:70:5f:a0:1d:de:13:d4:
b6:7e:24:51:91:00:d3:a3:06:33:46:97:0e:f3:cf:
d2:d1:e6:6b:2a:02:bd:5d:07:4d:3d:55:ff:9b:56:
46:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:84:A9:5C:06:0E:51:23:61:35:99:DB:B5:7B:CC:42:E8:EF:6A
X509v3 Authority Key Identifier:
keyid:52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/X76EqVwGDlEjYTWZ27V7zELo72o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.76.215.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:60:92:44:05:30:69:7f:c6:6c:87:96:69:17:bf:4c:01:a6:
d5:dc:21:d7:64:91:50:90:55:20:ef:7f:20:8d:76:9f:bc:31:
5b:06:04:fd:b0:56:82:e2:a0:3b:f6:fe:c4:95:68:d5:df:98:
01:2b:6b:26:1a:bc:e4:b4:b4:89:fe:76:8a:b8:cd:83:f8:ea:
85:9f:26:2f:8e:06:20:82:27:8b:6b:26:f4:e7:8a:5d:dd:59:
9d:a0:48:95:55:63:05:de:4b:de:a0:c3:84:fc:a4:a3:34:71:
f0:38:fc:80:30:f7:5e:43:de:3c:fe:8d:32:b0:f6:86:4d:f1:
38:21:e2:94:11:ea:7a:db:b0:8c:ee:2f:62:21:57:ec:9d:fc:
6c:ad:26:6a:29:b9:9d:f5:28:66:de:32:6b:bb:37:ed:8b:65:
e9:6e:3b:9b:96:4a:72:1c:44:29:72:83:74:8a:a4:c4:9e:bb:
db:ef:f7:cf:c0:5b:86:fe:88:79:ea:1e:f7:e3:08:25:8b:84:
7b:6a:88:d0:e0:6b:93:83:e9:52:d3:3b:9c:de:28:fe:4e:b0:
2c:30:ef:4f:6d:6b:9c:bb:69:50:3c:72:68:15:ab:b8:7d:9c:
49:08:80:38:d3:e3:5f:98:54:a3:1e:b1:78:f8:2f:14:0b:9e:
3c:ea:06:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ4OXBdMFOCK0kz/z9ONbz/OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMWYwY2JhMTBkYWEzMDJlM2IxNjdjZWU1Mzk1Zjc0MmY1
MzBiMDkwHhcNMjYwNTA5MjAwOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmJlODRhOTVjMDYwZTUxMjM2MTM1OTlkYmI1N2JjYzQyZThlZjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGIB7Lrsiae+nbpUdgIpt9MFjbAO
gn+aFGD5OwCWuo2EhhhpDV6b/kJl98OChOXASSlPuoXZ6Rx4/ukV/ojbUPD1aenB
32X+aDgKOgNLrefSzY2Gat2HXDhMBEBfedByKQAp6NH7lFPDokWZ9Bxjk3ynZDf8
opUu9/AtUCxWSY7gA+OzVZ6H78tLZCThzSS06N47k3TvT2fSbelAXIDVxNiTcI9u
XZAkOkg7dDoCeWJaGelKEDDKEer0d0YgTY+tBzxs7ffd3+pczCpcPXFwt/u1oweD
1+sue3BfoB3eE9S2fiRRkQDTowYzRpcO88/S0eZrKgK9XQdNPVX/m1ZG4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF++hKlcBg5RI2E1mdu1e8xC6O9qMB8GA1UdIwQY
MBaAFFIfDLoQ2qMC47FnzuU5X3QvUwsJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEt
M2JiOGIwNzVkNjlmLzEvWDc2RXFWd0dEbEVqWVRXWjI3Vjd6RUxvNzJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEtM2JiOGIwNzVkNjlm
LzEvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV0zXMA0G
CSqGSIb3DQEBCwUAA4IBAQAOYJJEBTBpf8Zsh5ZpF79MAabV3CHXZJFQkFUg738g
jXafvDFbBgT9sFaC4qA79v7ElWjV35gBK2smGrzktLSJ/naKuM2D+OqFnyYvjgYg
gieLayb054pd3VmdoEiVVWMF3kveoMOE/KSjNHHwOPyAMPdeQ948/o0ysPaGTfE4
IeKUEep627CM7i9iIVfsnfxsrSZqKbmd9Shm3jJruzfti2XpbjublkpyHEQpcoN0
iqTEnrvb7/fPwFuG/oh56h734wgli4R7aojQ4GuTg+lS0zuc3ij+TrAsMO9PbWuc
u2lQPHJoFau4fZxJCIA40+NfmFSjHrF4+C8UC5486gaB
-----END CERTIFICATE-----
Generated at Wed May 13 09:47:43 2026 by rpki-client