Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/9Xrlh9UG6YWWGE2DSWpmDwT_iO4.roa
File: 9Xrlh9UG6YWWGE2DSWpmDwT_iO4.roa (raw, json)
Hash identifier: rmGIE8RLPp2ZBEe7jUWomsqx9QMK5jj6TTJjEreNzk4=
Subject key identifier: F5:7A:E5:87:D5:06:E9:85:96:18:4D:83:49:6A:66:0F:04:FF:88:EE
Certificate issuer: /CN=af6c2be7bf4282e1cd6908f289a79cec0a5df42e
Certificate serial: 019E41CC1E15462A5C47499CAC029558AD2A
Authority key identifier: AF:6C:2B:E7:BF:42:82:E1:CD:69:08:F2:89:A7:9C:EC:0A:5D:F4:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2wr579CguHNaQjyiaec7Apd9C4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/9Xrlh9UG6YWWGE2DSWpmDwT_iO4.roa
Signing time: Tue 19 May 2026 19:52:36 +0000
ROA not before: Tue 19 May 2026 19:52:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41957
IP address blocks: 195.114.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/r2wr579CguHNaQjyiaec7Apd9C4.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/r2wr579CguHNaQjyiaec7Apd9C4.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2wr579CguHNaQjyiaec7Apd9C4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:41:cc:1e:15:46:2a:5c:47:49:9c:ac:02:95:58:ad:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af6c2be7bf4282e1cd6908f289a79cec0a5df42e
Validity
Not Before: May 19 19:52:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f57ae587d506e98596184d83496a660f04ff88ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:76:4a:59:61:b5:f6:49:0d:ee:79:01:48:d2:
8b:5b:23:e9:64:59:14:f8:16:67:fc:c5:ee:00:d3:
45:db:fe:f9:56:64:3e:6b:49:b5:17:3a:db:b1:10:
cb:62:23:76:9f:54:db:9c:d0:41:9e:8f:72:f3:ae:
b9:2f:10:38:f5:93:80:3f:0f:47:55:05:86:1e:84:
c4:95:fc:9a:0f:51:a9:5a:e3:27:a4:13:f2:05:2b:
b0:e6:e0:8d:7e:4b:55:a0:79:bc:4a:b4:97:21:3e:
c4:89:ef:3a:c1:9f:73:61:f8:bc:97:c1:03:ea:df:
4b:85:b9:98:56:3b:ce:f2:e2:1b:81:52:a0:b2:c3:
0a:62:42:c2:03:f1:4c:8d:e8:a8:87:75:63:fe:7b:
9e:34:d9:dc:4a:84:da:63:fd:bd:9b:dc:21:aa:bd:
9b:ad:36:2e:32:ba:18:29:5d:1d:c0:87:5a:f6:b7:
fd:a1:04:18:18:2c:69:88:e8:06:0d:5c:bc:b2:12:
20:1b:d7:0b:06:53:4f:02:99:ec:6a:68:ec:f1:8d:
f5:4f:d7:0f:e0:2e:64:27:ba:90:53:c1:de:5c:41:
60:64:76:a7:29:3d:45:46:6d:c8:10:52:20:e2:1e:
9b:65:e9:93:a5:f3:f5:d1:dd:23:1c:d1:52:c3:de:
5e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7A:E5:87:D5:06:E9:85:96:18:4D:83:49:6A:66:0F:04:FF:88:EE
X509v3 Authority Key Identifier:
keyid:AF:6C:2B:E7:BF:42:82:E1:CD:69:08:F2:89:A7:9C:EC:0A:5D:F4:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2wr579CguHNaQjyiaec7Apd9C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/9Xrlh9UG6YWWGE2DSWpmDwT_iO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/r2wr579CguHNaQjyiaec7Apd9C4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.117.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a2:cc:25:13:ed:ba:22:c6:8a:66:cf:08:9d:63:25:e5:96:
66:1f:a1:e8:d7:ce:60:ee:b1:cf:34:b6:a5:9e:28:df:e7:17:
84:f7:02:ac:3d:f2:c0:2a:b0:af:b7:37:21:1a:93:4c:3a:22:
93:0a:a3:28:61:e5:9e:8b:3d:44:7f:0c:fd:71:31:25:fc:8b:
69:1f:f7:d1:1c:65:17:d9:5d:32:a5:18:24:ad:6f:ae:83:1e:
69:1f:89:79:8c:70:25:80:4f:36:f0:ac:e4:18:f1:a9:68:8f:
1c:1b:91:26:64:7b:16:94:92:1b:40:84:3d:cd:e0:50:24:b7:
29:09:7d:5c:54:eb:80:d6:58:98:14:69:52:50:da:53:32:24:
e1:cd:f1:3e:dc:3c:ee:2e:1f:3b:d9:6b:88:a4:eb:ea:37:ef:
3b:45:23:d3:55:ce:6b:0f:3e:ec:f7:cf:69:79:27:72:a2:e7:
9e:7e:9d:d1:64:cb:52:26:a7:24:21:c8:aa:a6:d4:03:65:f2:
85:e9:63:1e:da:ca:60:b7:50:e0:4d:65:76:dd:f6:3e:28:64:
c5:86:82:c4:d6:91:7b:96:38:6e:58:76:c9:72:e0:29:ca:85:
2b:0d:08:9c:86:48:02:e8:f7:01:66:0c:0f:9b:2c:d1:eb:f8:
8e:b6:da:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:37:57 2026 by rpki-client