Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/5BHIPcOQpei7HzoeMGGZJ-AmBiE.roa
File: 5BHIPcOQpei7HzoeMGGZJ-AmBiE.roa (raw, json)
Hash identifier: hPKAhLed3CRShFln0x7v1AXbQxeVgs4aDg0Eg2sUz08=
Subject key identifier: E4:11:C8:3D:C3:90:A5:E8:BB:1F:3A:1E:30:61:99:27:E0:26:06:21
Certificate issuer: /CN=fa70b42d7af6ad78222b30f05f2b7913f8063570
Certificate serial: 019E4ADB269A361012D3BC1D31AA3ADDD667
Authority key identifier: FA:70:B4:2D:7A:F6:AD:78:22:2B:30:F0:5F:2B:79:13:F8:06:35:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/5BHIPcOQpei7HzoeMGGZJ-AmBiE.roa
Signing time: Thu 21 May 2026 14:05:36 +0000
ROA not before: Thu 21 May 2026 14:05:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 12826
IP address blocks: 185.100.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 11:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4a:db:26:9a:36:10:12:d3:bc:1d:31:aa:3a:dd:d6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa70b42d7af6ad78222b30f05f2b7913f8063570
Validity
Not Before: May 21 14:05:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e411c83dc390a5e8bb1f3a1e30619927e0260621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4a:cd:43:47:79:f9:97:18:92:67:1a:35:3f:
04:aa:91:d8:17:e0:78:6c:d1:6b:27:fc:5d:7a:af:
4f:83:f5:ac:dc:84:ce:90:7d:32:2d:31:6f:9a:65:
f7:a6:a4:b9:51:88:50:14:a1:28:2b:d8:2d:18:3e:
65:7d:e4:c9:59:76:e9:26:54:82:45:12:b1:f4:db:
f3:78:30:a5:46:80:21:91:2a:25:c1:0c:99:05:71:
54:6d:a0:e4:24:2e:7a:81:78:5a:ef:e5:0b:db:52:
12:e3:21:26:7c:97:cf:b8:67:1e:7d:3d:3e:f2:9c:
e0:b1:82:b8:32:3f:01:c0:d2:ac:61:b5:c1:1a:68:
d1:84:08:86:ac:78:58:74:d8:14:69:5b:8f:51:76:
7c:84:ba:d5:a2:2d:14:f0:5e:71:88:42:7b:1c:ca:
a4:e8:79:75:e5:9f:50:ce:be:25:85:4f:23:08:a7:
71:48:6e:f7:3b:88:fb:6c:53:db:dc:be:7b:0c:79:
82:dc:bb:3f:f0:cb:04:44:67:b2:40:87:77:d6:af:
bc:78:91:21:4a:b9:a3:15:1e:3f:9c:4a:8e:c4:5e:
f5:d4:e4:95:58:61:ba:d0:79:82:1b:e6:5e:65:87:
3c:69:bf:6d:f9:fe:e2:dc:06:90:d4:4a:0a:30:84:
a2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:11:C8:3D:C3:90:A5:E8:BB:1F:3A:1E:30:61:99:27:E0:26:06:21
X509v3 Authority Key Identifier:
keyid:FA:70:B4:2D:7A:F6:AD:78:22:2B:30:F0:5F:2B:79:13:F8:06:35:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/5BHIPcOQpei7HzoeMGGZJ-AmBiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d3bfe6-78b5-437b-98e9-b914159ba8ad/1/1-nC0LXr2rXgiKzDwXyt5E_gGNXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.193.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f6:67:6d:ea:8b:be:96:70:3a:1a:b8:a6:43:43:9e:8c:6c:
11:3c:16:e3:03:88:9b:07:6e:f8:d0:86:9f:21:5d:e8:6c:d3:
48:1f:8f:93:ed:17:47:39:ee:b4:7c:54:b2:27:c5:12:95:d2:
28:44:fe:09:91:e7:da:d5:27:a8:1f:8e:e3:a3:63:a7:78:ad:
85:d7:82:53:f6:8c:95:b5:22:ad:ff:82:db:88:8c:12:08:60:
0f:6a:3c:a6:42:56:09:7c:b0:5d:c6:95:aa:db:00:fe:40:8c:
4a:88:bd:4b:50:14:9a:58:60:59:87:50:73:c0:d8:d1:80:6b:
fa:8a:66:7c:85:92:74:81:b1:50:5b:b2:2b:43:8b:4c:34:3a:
2f:c9:e0:c7:e3:9b:f2:84:11:44:e0:db:c5:18:c7:d4:0e:32:
ee:9c:35:d8:d3:4d:55:e9:e9:73:a1:cf:f8:4f:2d:68:5b:d2:
33:00:5f:8d:de:af:e4:4d:51:25:3b:7a:63:af:25:cd:4f:5d:
a7:b6:73:b8:83:fe:f8:a2:a6:d0:f8:6c:5e:c5:4a:5a:57:64:
4f:98:45:4c:10:b4:59:e8:96:38:37:0e:ad:1d:14:05:ee:f3:
84:e2:28:82:26:b7:57:64:36:20:e2:de:3e:3e:3b:e5:44:2b:
cc:16:c0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:19:47 2026 by rpki-client