Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/X6arKKZqBy5x2gqm7nLh_NPifAc.roa
File: X6arKKZqBy5x2gqm7nLh_NPifAc.roa (raw, json)
Hash identifier: /updgu8SvZ+/K/1HFlw7a8qMZKyvLmTcq8cuEcohpcc=
Subject key identifier: 5F:A6:AB:28:A6:6A:07:2E:71:DA:0A:A6:EE:72:E1:FC:D3:E2:7C:07
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 019EB6258247C1A2EFA3C304077D04DCD5A3
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/X6arKKZqBy5x2gqm7nLh_NPifAc.roa
Signing time: Thu 11 Jun 2026 10:06:11 +0000
ROA not before: Thu 11 Jun 2026 10:06:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 680
IP address blocks: 141.63.0.0/16 maxlen: 16
2a02:11f8:60::/48 maxlen: 48
2a02:11f8:61::/48 maxlen: 48
2a02:11f8:62::/48 maxlen: 48
2a02:11f8:63::/48 maxlen: 48
2a02:11f8:64::/48 maxlen: 48
2a02:11f8:65::/48 maxlen: 48
2a02:11f8:81::/48 maxlen: 48
2a02:11f8:100::/48 maxlen: 48
2a02:11f8:101::/48 maxlen: 48
2a02:11f8:102::/48 maxlen: 48
2a02:11f8:190::/48 maxlen: 48
2a02:11f8:191::/48 maxlen: 48
2a02:11f8:260::/48 maxlen: 48
2a02:11f8:261::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:25:82:47:c1:a2:ef:a3:c3:04:07:7d:04:dc:d5:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jun 11 10:06:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5fa6ab28a66a072e71da0aa6ee72e1fcd3e27c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:f3:e4:46:0e:d5:ec:3b:22:7a:e4:da:18:
73:64:20:19:a7:49:2a:9e:8f:67:5c:7c:87:f7:d4:
47:48:18:2d:32:5f:ed:c6:13:e5:67:0a:69:48:46:
0f:c8:fd:f0:fc:b8:f7:fc:d0:68:eb:f8:8f:b7:36:
6e:23:8c:da:ae:46:b2:54:ad:ae:1f:f1:9f:5d:75:
a9:76:af:3f:14:23:de:2d:56:da:24:9a:0c:b3:55:
b8:94:9f:5f:74:8a:fa:48:fa:c5:18:fc:af:5a:90:
26:58:a7:52:21:ef:f8:c3:d4:9e:49:91:1b:6a:24:
7c:79:48:ec:5f:0c:6e:aa:73:ac:d6:b4:ba:c4:83:
ca:d4:8c:06:fc:2d:7e:5a:7b:d1:b8:b7:69:32:7e:
c1:bb:0d:87:40:ba:f1:ac:89:ab:05:91:42:bc:8b:
86:ed:14:79:6b:0f:a7:06:04:91:26:32:32:55:38:
6d:fa:05:b5:36:6b:8e:12:05:f9:54:2c:2e:f2:15:
1c:24:76:c9:73:8f:b4:2a:ba:c2:f9:8a:8c:d8:76:
a6:8d:26:ac:42:3a:32:11:20:33:91:f4:80:e0:48:
33:bc:b1:5c:61:bf:7d:c4:b9:b9:c6:9b:7d:76:da:
05:40:f1:8b:8f:e6:77:9e:08:14:be:81:74:f2:a1:
f3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A6:AB:28:A6:6A:07:2E:71:DA:0A:A6:EE:72:E1:FC:D3:E2:7C:07
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/X6arKKZqBy5x2gqm7nLh_NPifAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.63.0.0/16
IPv6:
2a02:11f8:60::-2a02:11f8:65:ffff:ffff:ffff:ffff:ffff
2a02:11f8:81::/48
2a02:11f8:100::-2a02:11f8:102:ffff:ffff:ffff:ffff:ffff
2a02:11f8:190::/47
2a02:11f8:260::/47
Signature Algorithm: sha256WithRSAEncryption
d8:c2:36:cc:b6:99:f9:42:9e:0f:df:39:90:84:a5:77:fe:bc:
1a:e6:ae:ac:9f:10:5f:75:1c:ab:b3:2f:f3:7f:35:78:18:b8:
ec:48:68:90:7c:96:36:0c:8d:6b:7b:a5:a3:96:26:d6:60:f5:
7e:3e:b3:70:94:16:2c:02:23:fd:bc:83:70:cd:de:f9:bc:69:
d7:05:d1:06:a6:ed:fb:b5:d1:fb:96:f0:65:69:33:19:04:77:
72:8a:6f:bb:7c:21:b7:f4:53:96:ce:c0:ff:ba:d5:6a:e7:61:
05:5e:ff:65:71:39:e7:7a:5a:8b:3b:89:74:cd:c1:4c:b6:a1:
cc:fd:13:5d:fc:ae:a1:c9:11:3c:cf:de:5e:eb:01:98:6a:6e:
80:98:4a:e4:81:6c:9f:4e:7b:f4:3c:21:3e:a3:6c:41:1d:55:
83:19:92:10:60:0e:9f:25:45:a1:ce:81:05:ca:a7:11:33:47:
08:3c:a6:c2:52:0f:32:01:65:45:67:1c:96:40:47:5a:fc:2c:
39:8a:c0:ea:b0:f6:76:44:0b:09:66:93:9c:c0:c3:2c:26:3e:
a8:ab:bb:35:94:df:17:fd:81:83:87:5d:2b:fd:92:85:7c:cd:
e2:26:8b:5b:c8:d8:db:b6:95:14:0c:de:7e:fc:ef:0f:8f:79:
01:92:2d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:34:35 2026 by rpki-client