Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/Yha1UjCg0bYTT2iIVJMZtFAgxEU.roa
File: Yha1UjCg0bYTT2iIVJMZtFAgxEU.roa (raw, json)
Hash identifier: dVgYPXPBCxJJox+uQJ6Z0WgrgA/2WvOp6YXY7a/W6os=
Subject key identifier: 62:16:B5:52:30:A0:D1:B6:13:4F:68:88:54:93:19:B4:50:20:C4:45
Certificate issuer: /CN=96fcda128fe82afc06e8aad1c8e5ccdfb35561e4
Certificate serial: 019C57D3EEA62BF89831E657D63745FC74B4
Authority key identifier: 96:FC:DA:12:8F:E8:2A:FC:06:E8:AA:D1:C8:E5:CC:DF:B3:55:61:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvzaEo_oKvwG6KrRyOXM37NVYeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/Yha1UjCg0bYTT2iIVJMZtFAgxEU.roa
Signing time: Fri 13 Feb 2026 16:27:12 +0000
ROA not before: Fri 13 Feb 2026 16:27:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203591
IP address blocks: 185.175.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/lvzaEo_oKvwG6KrRyOXM37NVYeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/lvzaEo_oKvwG6KrRyOXM37NVYeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lvzaEo_oKvwG6KrRyOXM37NVYeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:57:d3:ee:a6:2b:f8:98:31:e6:57:d6:37:45:fc:74:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96fcda128fe82afc06e8aad1c8e5ccdfb35561e4
Validity
Not Before: Feb 13 16:27:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6216b55230a0d1b6134f6888549319b45020c445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:dc:31:22:fb:fe:41:c4:b1:a2:81:f6:cc:f4:
0d:11:35:aa:13:23:f2:a7:2b:9d:0e:d4:0d:82:f4:
bd:6b:6c:63:41:7e:09:39:72:c7:10:ba:11:7d:7a:
00:e2:14:89:dd:c6:a2:d7:38:15:fa:80:e5:78:e0:
cd:93:3b:db:fb:c5:1e:7e:d6:1c:09:3f:7a:79:8d:
7e:95:c0:cc:a9:f1:1f:08:21:76:b1:18:e6:84:4f:
65:e8:69:8c:5f:11:27:eb:06:70:91:a8:c8:1b:b4:
41:53:c4:c2:31:c8:8d:2e:72:0f:9e:f4:9a:c9:f0:
d3:29:1e:3d:ab:80:7a:34:76:bb:2b:35:f8:d7:01:
fd:04:8c:03:5b:10:b6:dc:f1:cf:75:10:ec:d8:9c:
2f:b2:24:d5:d1:26:c3:80:95:6e:0e:10:d1:6e:83:
fd:d8:8f:51:2e:8c:2c:b8:57:79:e8:cd:80:24:ac:
05:5f:6a:dd:7e:0d:f7:5e:e1:5b:1c:b9:55:f0:b8:
e9:11:f5:0e:fd:8f:3c:81:fe:f3:37:18:89:a9:38:
11:5e:00:77:e7:12:12:4f:0c:af:af:b9:1a:42:0b:
6e:69:3e:bd:2b:72:4b:d7:ec:65:eb:1f:e7:c4:88:
63:4a:c5:bd:a6:21:2b:bb:0f:99:26:e2:fc:5d:31:
64:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:16:B5:52:30:A0:D1:B6:13:4F:68:88:54:93:19:B4:50:20:C4:45
X509v3 Authority Key Identifier:
keyid:96:FC:DA:12:8F:E8:2A:FC:06:E8:AA:D1:C8:E5:CC:DF:B3:55:61:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvzaEo_oKvwG6KrRyOXM37NVYeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/Yha1UjCg0bYTT2iIVJMZtFAgxEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/53386c-48c5-42ee-bd09-e50abc8e8844/1/lvzaEo_oKvwG6KrRyOXM37NVYeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.65.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:35:cb:6d:2f:1a:b7:fd:96:48:a0:d1:10:3d:ed:dd:ce:29:
c5:e0:59:c0:cf:bd:75:1e:41:a3:a2:98:78:50:35:21:70:70:
94:3d:ae:d2:09:36:b8:42:64:52:44:78:48:15:f6:c0:ba:4f:
34:b7:13:cc:93:13:01:28:ae:d7:9d:69:7d:b4:6e:fe:fb:71:
4c:d3:93:c0:fb:96:07:23:cc:16:61:5b:ee:51:96:56:ee:ba:
3e:ab:d6:ae:3b:ca:d4:8c:1a:91:a6:99:d0:87:e6:60:63:0e:
76:bd:0c:fd:c1:f9:c5:f7:5b:db:d7:fd:31:e3:0f:4a:19:22:
4e:01:0c:a5:e4:8f:73:b8:00:f2:89:12:b1:bd:5a:e0:27:66:
fa:fd:6c:b8:9c:3b:64:b6:08:8d:cd:54:d9:a2:2b:0d:d0:29:
95:bd:45:49:1d:b6:45:a6:19:39:df:2f:71:69:77:78:1f:55:
db:eb:ab:55:0c:4d:8d:b2:7b:2e:b0:0f:70:3f:9f:32:50:ec:
0c:92:ff:46:4c:84:d2:54:47:54:3e:fa:4a:c2:b2:5c:79:fa:
49:13:d8:7a:ca:c9:21:4d:fa:89:b7:ee:30:61:84:82:32:5e:
f4:d8:b6:04:1a:1e:8c:24:79:b1:7e:29:d8:e0:9b:4d:e2:b8:
0b:44:48:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:10:16 2026 by rpki-client