Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_TOgBSc3wAaNUPLDWo2RrpgJAxY.roa
File: _TOgBSc3wAaNUPLDWo2RrpgJAxY.roa (raw, json)
Hash identifier: 7UzjNY8En7hcPmOziwN6q1fXkHbazMkcjirbRaWHBZE=
Subject key identifier: FD:33:A0:05:27:37:C0:06:8D:50:F2:C3:5A:8D:91:AE:98:09:03:16
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019C9DF5A8FB330A8F03E896517AC8BE749A
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_TOgBSc3wAaNUPLDWo2RrpgJAxY.roa
Signing time: Fri 27 Feb 2026 07:17:28 +0000
ROA not before: Fri 27 Feb 2026 07:17:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203636
IP address blocks: 151.247.229.0/24 maxlen: 24
151.247.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:9d:f5:a8:fb:33:0a:8f:03:e8:96:51:7a:c8:be:74:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 27 07:17:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fd33a0052737c0068d50f2c35a8d91ae98090316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dd:8e:fb:a5:60:20:6c:56:16:94:92:9a:57:
ad:23:cf:c2:8b:50:d8:7c:1e:bb:a1:38:ae:7b:02:
bc:56:92:95:33:8c:e0:f9:d7:9d:d3:04:5d:72:e7:
8e:d1:90:53:aa:11:f9:ab:ec:c2:23:1c:38:1b:fd:
71:a9:85:21:68:a4:17:a5:1f:c8:8f:87:f2:72:b9:
a4:56:cd:02:47:74:79:46:e1:e4:e5:a6:cf:13:1a:
52:cc:29:d9:de:0c:77:99:3e:d1:fa:13:45:c3:35:
dc:7a:0a:05:91:cc:25:44:49:39:51:93:f1:18:60:
45:dc:ef:78:94:b4:3e:5b:c7:ed:11:79:6b:b6:92:
59:da:c3:5c:e0:d9:5b:9f:a3:8c:30:12:4b:bb:4a:
77:fb:d6:ef:8a:0b:50:67:d6:13:c9:04:7f:35:bd:
d0:ca:48:4d:39:1f:0f:b1:ac:b1:c2:06:b9:32:d5:
7b:36:2d:1a:58:75:d7:ae:db:88:53:42:8d:84:a8:
30:a2:56:53:b0:6c:28:89:11:24:74:33:98:1f:ef:
5b:99:74:d9:72:d9:99:06:e2:74:31:46:0f:cc:ae:
91:4f:bc:e1:0e:5c:89:98:8c:a9:43:44:0b:85:9c:
9d:83:62:cc:9e:78:c3:9b:cc:d5:01:dc:62:36:64:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:33:A0:05:27:37:C0:06:8D:50:F2:C3:5A:8D:91:AE:98:09:03:16
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_TOgBSc3wAaNUPLDWo2RrpgJAxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.247.229.0-151.247.230.255
Signature Algorithm: sha256WithRSAEncryption
4e:39:36:1d:fe:ad:d7:73:91:cd:2b:fd:04:dc:ab:ed:ca:ca:
1c:63:91:e4:37:1a:fa:6e:5a:18:7c:4d:55:1b:dc:a0:e1:e9:
aa:fb:4a:7a:97:88:19:21:55:4a:96:0a:fd:0c:b0:94:70:81:
d3:3e:d9:23:e6:0c:25:6a:4c:02:1f:1e:87:f2:4d:30:fb:bf:
04:b6:0c:b1:a2:27:e7:44:c8:47:6e:b2:ce:1f:3b:b8:8c:43:
8f:b6:ac:e9:a4:93:98:e7:e5:6c:c9:42:c5:9b:2b:72:41:b4:
04:91:29:1e:2b:b4:43:eb:80:35:9e:d8:2e:16:fd:a7:64:21:
e4:6b:5e:72:ec:f5:29:fb:55:8a:eb:9a:4d:0c:ba:5e:58:38:
82:99:58:55:54:69:19:83:22:3a:9b:86:d3:0d:bb:2a:b2:d7:
bd:10:bc:c9:f9:f3:f9:34:62:eb:cb:b7:13:a2:59:c6:56:8d:
cd:92:b7:a6:5e:66:9e:c5:ad:84:2e:ba:7b:f7:98:12:d8:2e:
6d:3c:90:91:ee:b1:e3:59:94:0a:91:b2:2a:e9:3b:54:b1:38:
95:bf:2b:5b:b7:20:fa:b4:b3:6a:d3:c3:e1:00:a3:a0:97:00:
96:3f:fd:55:fd:64:f8:41:9a:cf:fd:7d:8c:4f:4c:ff:83:b1:
97:34:4d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:19:44 2026 by rpki-client