Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/fcDWlovC_7t1lX5KN1odotHOPuo.roa
File: fcDWlovC_7t1lX5KN1odotHOPuo.roa (raw, json)
Hash identifier: EnQK0RsSaBtk2RMGYFUC2lG9q0Ff6G+L/X6aC8pLHC4=
Subject key identifier: 7D:C0:D6:96:8B:C2:FF:BB:75:95:7E:4A:37:5A:1D:A2:D1:CE:3E:EA
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019D8943933141B3EE223A88DE4817D491A3
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/fcDWlovC_7t1lX5KN1odotHOPuo.roa
Signing time: Mon 13 Apr 2026 23:53:20 +0000
ROA not before: Mon 13 Apr 2026 23:53:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199055
IP address blocks: 2a06:9801:272::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:89:43:93:31:41:b3:ee:22:3a:88:de:48:17:d4:91:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: Apr 13 23:53:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7dc0d6968bc2ffbb75957e4a375a1da2d1ce3eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d4:bf:1e:96:78:a1:d7:5c:b6:0b:6e:b6:8a:
a4:dd:ce:5e:d3:6c:67:cf:5c:e2:b2:df:af:b2:26:
10:cc:4b:b4:64:30:92:bd:83:3c:5a:e9:2d:24:40:
8f:fe:fe:58:36:ac:c7:cf:be:fb:c4:b4:7f:01:b5:
50:81:a7:4e:25:63:2e:c3:17:e1:60:09:a3:0c:92:
40:3d:86:59:85:49:de:2e:df:5e:9d:1d:bb:68:b4:
e1:b5:83:27:e0:15:e5:dd:f0:f7:fc:2e:88:75:fd:
6d:23:15:f7:7e:fe:ad:be:62:ae:81:0a:10:17:94:
5a:3b:87:bb:7e:fa:c9:00:c8:7d:af:fc:44:8a:33:
41:9b:a5:f0:6c:b0:a1:a2:ab:bd:d8:78:93:08:e6:
61:ae:7b:d7:f6:ec:7a:3d:54:a4:a3:52:14:17:54:
06:d9:6f:c5:eb:a9:b1:64:f3:1f:87:d4:b3:ba:48:
93:53:dd:27:aa:6a:b9:ae:fa:0e:3b:92:cb:da:97:
42:1d:3e:8b:d2:2a:72:71:3c:02:1f:90:78:d9:37:
88:87:81:1c:05:60:e8:23:84:f9:33:3f:c2:20:6e:
91:4d:cd:8a:fa:02:13:c5:d5:02:68:43:d1:e8:bd:
a6:52:4b:e6:e5:2a:77:74:2f:8e:e2:5b:ec:a6:4a:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C0:D6:96:8B:C2:FF:BB:75:95:7E:4A:37:5A:1D:A2:D1:CE:3E:EA
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/fcDWlovC_7t1lX5KN1odotHOPuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:272::/48
Signature Algorithm: sha256WithRSAEncryption
c5:69:7d:1d:ce:ed:0c:a4:c0:e5:f8:bd:f3:46:49:21:65:b5:
7b:05:2e:44:19:5a:31:a1:ba:1c:74:42:82:38:a5:f2:d1:42:
b9:c3:7c:3b:ab:52:de:c2:06:6e:15:ba:f1:7f:6a:ca:ae:e3:
c2:37:0d:6f:26:18:fe:87:db:1e:83:07:12:92:8f:df:60:bc:
59:a5:4a:f3:a0:84:dc:b4:4f:bf:15:94:88:76:69:b9:e8:07:
2c:17:08:c6:f2:a3:4f:51:3c:1b:1b:ef:a7:76:65:60:fd:af:
70:a8:57:bc:f1:9b:b3:85:e4:8f:8c:8c:4f:a6:b3:1c:a4:8d:
78:0e:80:53:a0:01:24:8a:88:58:79:5a:96:1d:8b:02:b5:b5:
b2:03:62:b6:9e:3c:53:f3:35:f2:30:1e:ff:aa:e7:3c:1a:dd:
2c:f3:91:7d:2b:5e:ef:fe:fd:52:52:79:1a:84:98:ef:aa:33:
00:52:48:b3:20:58:d6:00:a8:bb:e5:85:c7:c8:a4:ff:85:97:
be:06:13:cf:22:09:29:ba:15:94:80:48:c8:bb:0a:45:9b:d2:
37:ca:bc:c1:4d:72:79:09:ed:c2:1d:0f:f9:3a:bb:4c:4b:d8:
96:ba:e1:bd:9d:9d:60:36:4e:68:ef:13:c2:6d:a4:ac:44:ba:
f8:5b:f9:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:12:12 2026 by rpki-client