Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/OFukwRdQoFEhkPdFPeWGq1nyuDk.roa
File: OFukwRdQoFEhkPdFPeWGq1nyuDk.roa (raw, json)
Hash identifier: PlU30Gfel0Y0GOVDxYkEY0/eaaEZrFchQD/yk0g+PiE=
Subject key identifier: 38:5B:A4:C1:17:50:A0:51:21:90:F7:45:3D:E5:86:AB:59:F2:B8:39
Certificate issuer: /CN=61877ef7bbb1b1898aacd57b8a8ffc2b0e442a65
Certificate serial: 019C81BFF6219DEC1ABED79ACDEBCCADD75C
Authority key identifier: 61:87:7E:F7:BB:B1:B1:89:8A:AC:D5:7B:8A:8F:FC:2B:0E:44:2A:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYd-97uxsYmKrNV7io_8Kw5EKmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/OFukwRdQoFEhkPdFPeWGq1nyuDk.roa
Signing time: Sat 21 Feb 2026 19:49:27 +0000
ROA not before: Sat 21 Feb 2026 19:49:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 139803
IP address blocks: 2a13:e8c0::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/YYd-97uxsYmKrNV7io_8Kw5EKmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/YYd-97uxsYmKrNV7io_8Kw5EKmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYd-97uxsYmKrNV7io_8Kw5EKmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Feb 2026 15:05:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:81:bf:f6:21:9d:ec:1a:be:d7:9a:cd:eb:cc:ad:d7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61877ef7bbb1b1898aacd57b8a8ffc2b0e442a65
Validity
Not Before: Feb 21 19:49:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=385ba4c11750a0512190f7453de586ab59f2b839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:36:1e:6b:41:c5:03:91:db:06:fb:33:e7:
3c:cd:0b:65:eb:56:7c:09:54:03:5c:78:8f:c3:6b:
3e:b3:86:38:94:f9:f1:fb:86:25:dc:d3:a0:dd:ef:
32:a6:4a:4c:96:50:7e:45:39:9d:22:2f:e5:d8:ab:
21:1c:00:02:8f:65:d0:7a:56:79:9e:6f:10:e0:34:
04:4c:47:6d:f5:45:86:40:87:41:a6:0b:d0:c2:55:
74:14:5f:75:ea:69:c5:a7:09:50:b8:1a:2c:be:ab:
dd:34:9e:32:43:cd:3b:40:97:46:e0:8e:62:ed:fe:
e9:0a:81:cd:21:b9:24:29:c1:e1:23:ff:27:ae:30:
f0:0d:e9:e9:37:9d:5d:54:89:c7:47:44:88:0e:a8:
62:13:eb:50:60:e8:b9:0f:1c:8c:e3:e7:21:7a:b6:
bf:88:77:b4:3c:40:f2:88:40:d6:4c:2e:54:9c:e9:
3c:3c:39:82:3b:ad:a1:b6:22:3a:c7:29:d6:1f:b2:
01:70:f0:b4:aa:63:33:c6:6a:d8:76:12:c7:fd:18:
d0:20:73:b1:53:86:b3:f8:72:d8:16:fa:73:00:e6:
e5:f0:4a:42:a7:d5:9e:5d:7f:b0:a9:e6:6f:ab:18:
95:c5:a3:43:6d:bb:ad:89:71:39:4e:3f:97:44:33:
3e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5B:A4:C1:17:50:A0:51:21:90:F7:45:3D:E5:86:AB:59:F2:B8:39
X509v3 Authority Key Identifier:
keyid:61:87:7E:F7:BB:B1:B1:89:8A:AC:D5:7B:8A:8F:FC:2B:0E:44:2A:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYd-97uxsYmKrNV7io_8Kw5EKmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/OFukwRdQoFEhkPdFPeWGq1nyuDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6b12fc-83db-4d1e-bf07-ee94dbe46a02/1/YYd-97uxsYmKrNV7io_8Kw5EKmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e8c0::/29
Signature Algorithm: sha256WithRSAEncryption
4a:ab:04:f3:8a:34:4b:f5:67:4a:a0:34:e4:eb:83:76:9c:9e:
b4:95:16:24:3c:c4:93:fa:db:f4:a6:7d:7d:74:29:ac:d3:08:
a7:59:15:0d:32:8c:31:21:bc:8d:86:17:ab:70:2d:82:70:65:
89:ae:23:d4:fd:fa:32:d7:b3:6b:ca:8f:b8:2c:dd:7a:c1:41:
d1:2b:00:5d:4e:14:ce:6a:1c:31:1a:5e:a6:f3:7f:be:8e:d4:
f7:fb:65:56:ac:80:b2:04:11:35:f4:e5:73:88:ea:e3:75:c9:
49:5e:e7:a6:aa:3d:8a:4a:99:3f:9b:89:71:04:62:aa:d7:bc:
e9:ff:17:b0:bf:99:84:9f:6d:66:0b:83:58:6e:4a:b9:07:c7:
c4:16:c8:5f:6a:2c:8d:f7:41:2e:45:27:c6:29:d9:e2:69:44:
44:07:09:e4:e4:e2:72:13:8c:61:45:86:66:1b:d5:5f:02:25:
d8:1c:1d:f2:98:f6:31:82:0a:3a:2c:b9:d1:83:c2:c7:24:02:
e6:c7:15:2b:df:c8:23:bf:a9:89:e5:19:ca:f3:c2:3d:1c:ef:
37:7a:34:64:2c:92:6f:85:3b:01:66:65:94:a6:4a:8e:f0:0f:
44:f9:ff:ac:0b:3b:8f:61:87:c0:39:e0:44:c3:ab:d9:0b:03:
c9:6c:59:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 26 18:50:54 2026 by rpki-client