Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vc-5zxPl_h0J3-E2FqTyI34ouTk.roa
File: vc-5zxPl_h0J3-E2FqTyI34ouTk.roa (raw, json)
Hash identifier: r0WzC1+rOz+2zshpJb+lYhTTCmdr77e5h4FMp5b729w=
Subject key identifier: BD:CF:B9:CF:13:E5:FE:1D:09:DF:E1:36:16:A4:F2:23:7E:28:B9:39
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 019B7EA66B0717CFFA815403236AFA0BBE06
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vc-5zxPl_h0J3-E2FqTyI34ouTk.roa
Signing time: Fri 02 Jan 2026 12:19:54 +0000
ROA not before: Fri 02 Jan 2026 12:19:54 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8485
IP address blocks: 2a02:e840:1002::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7e:a6:6b:07:17:cf:fa:81:54:03:23:6a:fa:0b:be:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 12:19:54 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bdcfb9cf13e5fe1d09dfe13616a4f2237e28b939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:58:52:8d:27:dc:73:72:2c:97:d6:2e:c6:9a:
73:23:d4:1c:ab:be:84:ff:ec:cc:1a:eb:15:67:a1:
ef:1f:22:0f:6d:2c:e3:94:f9:42:1d:e4:df:37:0b:
2a:45:a9:7b:97:41:76:e4:2b:75:ba:74:9d:60:e0:
5b:b2:58:e6:3f:e3:07:cf:40:8a:01:62:c3:77:f3:
ce:b7:a6:0c:a1:a8:6c:09:78:b3:aa:28:d2:d1:f8:
15:d3:62:40:3c:e5:eb:64:c8:1f:18:d7:34:ad:0b:
df:7a:1a:15:85:a7:74:a8:44:7f:e4:6e:45:4e:b3:
c0:6e:80:0f:51:e6:d2:cf:a9:c5:f4:34:0b:20:9f:
f6:c9:45:0f:60:02:56:b8:98:71:f0:89:fc:c3:2f:
d7:d7:3f:06:ed:55:dc:cd:10:ba:02:20:d7:4b:8d:
01:54:3b:98:b4:41:cf:4c:61:09:2f:12:d5:fc:22:
4b:3e:4b:37:12:eb:01:b8:3f:12:84:cf:7c:4f:d9:
98:1f:1b:0d:32:a1:51:6f:3f:fe:68:9f:01:aa:e6:
8c:9b:fb:9b:c3:03:d0:6f:ff:ab:72:9e:d7:69:79:
1f:a9:8d:14:93:ea:eb:a9:bf:f9:20:b2:b6:ee:7c:
48:a7:2e:0b:e9:6f:a6:95:e1:15:f7:c9:fc:8f:25:
a6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CF:B9:CF:13:E5:FE:1D:09:DF:E1:36:16:A4:F2:23:7E:28:B9:39
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vc-5zxPl_h0J3-E2FqTyI34ouTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e840:1002::/48
Signature Algorithm: sha256WithRSAEncryption
08:98:77:16:f2:f9:54:b1:50:f1:28:13:10:b5:e5:1c:12:ec:
80:fb:35:f1:f2:ec:df:cd:04:f7:ba:38:64:d6:9a:64:4b:70:
36:ad:50:71:38:d1:cc:67:05:f6:b8:0a:2a:83:8f:0b:ab:42:
72:dc:6c:63:6e:57:c4:c0:06:0e:43:24:0d:ac:15:9f:de:94:
c3:25:5b:1c:d6:66:26:1f:2c:b9:16:3a:1c:2b:ae:8e:71:ea:
35:63:c3:81:d3:ed:db:1e:62:32:ff:87:ba:5c:62:b6:81:37:
bd:f5:da:43:5c:87:44:21:c0:f1:1e:be:94:b2:c3:84:e1:cc:
25:6c:91:25:bf:0a:60:55:e1:e8:f3:6c:b7:27:d1:b3:bf:e6:
1c:2d:56:5f:40:af:6d:43:dd:e0:34:a0:71:c2:89:0e:18:a3:
c8:c3:0e:48:7b:c8:67:d0:ad:03:5d:92:89:e0:6d:0e:a9:84:
ea:d2:17:24:1c:05:d6:5c:74:54:75:12:85:a6:e3:91:12:77:
4b:68:84:f3:90:11:56:44:ae:ff:9d:c5:16:b6:2c:17:c0:56:
31:59:65:ea:61:46:f7:ea:0d:97:7d:9c:8e:e4:f6:7e:ff:76:
25:0a:33:a4:c4:9a:9c:cb:25:b0:77:e0:11:91:74:71:98:b2:
d3:0d:a2:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:53:53 2026 by rpki-client