Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/wfyZ6um4rE9S_DPDxyQWYUDhP_k.roa
File: wfyZ6um4rE9S_DPDxyQWYUDhP_k.roa (raw, json)
Hash identifier: mQJVlPlgDRtCRyGuN5nPhdN0V4Xtxvh08o9RPkwtMWA=
Subject key identifier: C1:FC:99:EA:E9:B8:AC:4F:52:FC:33:C3:C7:24:16:61:40:E1:3F:F9
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 019E5D98838B590870E6D77107CE89BF646F
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/wfyZ6um4rE9S_DPDxyQWYUDhP_k.roa
Signing time: Mon 25 May 2026 05:25:36 +0000
ROA not before: Mon 25 May 2026 05:25:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 153169
IP address blocks: 83.147.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5d:98:83:8b:59:08:70:e6:d7:71:07:ce:89:bf:64:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: May 25 05:25:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c1fc99eae9b8ac4f52fc33c3c724166140e13ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d1:45:40:f3:bd:74:45:bb:d3:7e:9d:66:20:
0b:86:2b:2c:fa:c8:25:5a:28:04:79:78:1d:5d:df:
e9:4d:d0:20:ab:f1:da:f7:06:26:41:e6:41:b2:e5:
68:26:2d:fb:78:bc:69:27:1d:2b:88:c0:07:3b:cb:
ff:69:11:00:da:c0:9d:0a:33:b2:1a:6a:c2:d4:5d:
8d:33:ec:bc:18:2b:98:e2:a2:71:34:8a:a9:63:56:
74:74:3b:86:0c:0f:db:e1:86:2b:d1:53:56:ae:53:
b6:2d:22:f5:7c:2f:b0:a6:a3:40:e9:79:d5:98:e8:
26:c3:50:3f:d0:8c:e7:3c:c0:7d:a6:6f:fc:2b:4b:
10:e1:9f:09:99:22:1a:39:b7:27:fd:32:46:d3:9b:
c4:50:41:2b:64:bd:54:95:f3:3f:a3:43:24:61:53:
39:83:02:c6:27:61:e0:ac:ff:ea:c2:88:23:6e:b5:
7d:9c:4e:85:ce:39:2f:59:e7:2d:51:1e:2c:51:04:
c9:9b:92:eb:85:8c:ee:ed:58:27:80:80:13:0d:05:
ff:45:a2:b6:66:a6:2a:04:d3:0d:01:dd:5c:f7:72:
af:71:c3:67:ca:c4:d4:db:27:e4:5e:f3:f3:0c:93:
5e:e4:40:a9:ab:1f:88:62:a8:23:bb:f9:d0:06:c1:
9d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FC:99:EA:E9:B8:AC:4F:52:FC:33:C3:C7:24:16:61:40:E1:3F:F9
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/wfyZ6um4rE9S_DPDxyQWYUDhP_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.4.0/24
Signature Algorithm: sha256WithRSAEncryption
92:cc:a9:f5:4f:ce:d1:ad:db:15:86:ab:61:22:d3:aa:91:6e:
96:08:85:54:52:6d:aa:58:a9:68:b2:a9:5e:81:97:fa:f8:e6:
25:9b:dc:dd:56:cb:cc:fc:66:06:57:48:06:23:59:b2:a8:e3:
71:39:a7:a9:5b:3c:89:0a:f1:96:69:9c:ac:3f:0a:fc:a4:83:
d9:ed:19:8b:f5:06:b5:46:79:f6:1d:22:2c:84:60:e3:87:2b:
04:7a:5b:06:49:74:a6:46:6b:be:bf:b9:da:65:67:a4:6c:24:
e1:fc:a4:78:34:3d:61:78:ac:64:33:c4:b2:12:5a:7f:0e:d9:
fb:47:85:3d:a4:83:ea:c3:a4:a4:8a:7e:06:e1:3c:bb:7e:5d:
ec:26:c0:1d:4e:b7:67:f4:b0:18:2a:c5:89:67:1b:89:66:f4:
2e:fa:9f:0c:6c:2a:b8:3c:d8:2c:38:2a:d6:f5:04:d7:3b:74:
dd:6a:50:3a:ea:4e:74:6d:4e:fe:cc:22:ad:04:09:4b:a5:56:
82:13:6d:91:f9:d4:15:31:a6:1f:40:3c:f0:a4:cc:f8:08:71:
46:ea:21:eb:b0:49:91:d2:86:c1:7c:50:2f:aa:f1:48:2c:d8:
3d:8c:db:0f:99:94:9c:fc:ba:be:86:f8:e9:3a:94:63:ac:fc:
c7:38:cc:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ5dmIOLWQhw5tdxB86Jv2RvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjYwNTI1MDUyNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWZjOTllYWU5YjhhYzRmNTJmYzMzYzNjNzI0MTY2MTQwZTEzZmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNFFQPO9dEW7036dZiALhiss+sgl
WigEeXgdXd/pTdAgq/Ha9wYmQeZBsuVoJi37eLxpJx0riMAHO8v/aREA2sCdCjOy
GmrC1F2NM+y8GCuY4qJxNIqpY1Z0dDuGDA/b4YYr0VNWrlO2LSL1fC+wpqNA6XnV
mOgmw1A/0IznPMB9pm/8K0sQ4Z8JmSIaObcn/TJG05vEUEErZL1UlfM/o0MkYVM5
gwLGJ2HgrP/qwogjbrV9nE6FzjkvWectUR4sUQTJm5LrhYzu7VgngIATDQX/RaK2
ZqYqBNMNAd1c93KvccNnysTU2yfkXvPzDJNe5ECpqx+IYqgju/nQBsGdAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMH8merpuKxPUvwzw8ckFmFA4T/5MB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvd2Z5WjZ1bTRyRTlTX0RQRHh5UVdZVURoUF9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5MEMA0G
CSqGSIb3DQEBCwUAA4IBAQCSzKn1T87RrdsVhqthItOqkW6WCIVUUm2qWKlosqle
gZf6+OYlm9zdVsvM/GYGV0gGI1myqONxOaepWzyJCvGWaZysPwr8pIPZ7RmL9Qa1
Rnn2HSIshGDjhysEelsGSXSmRmu+v7naZWekbCTh/KR4ND1heKxkM8SyElp/Dtn7
R4U9pIPqw6Skin4G4Ty7fl3sJsAdTrdn9LAYKsWJZxuJZvQu+p8MbCq4PNgsOCrW
9QTXO3TdalA66k50bU7+zCKtBAlLpVaCE22R+dQVMaYfQDzwpMz4CHFG6iHrsEmR
0obBfFAvqvFILNg9jNsPmZSc/Lq+hvjpOpRjrPzHOMzI
-----END CERTIFICATE-----
Generated at Thu Jun 11 18:55:21 2026 by rpki-client