Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_uETsvr9LE8eL6O0G13ND2ktxW8.roa
File: _uETsvr9LE8eL6O0G13ND2ktxW8.roa (raw, json)
Hash identifier: HsPCMpwUWKnWR3YgyXipDF22SWvo5lXIF1GlAwCRIv0=
Subject key identifier: FE:E1:13:B2:FA:FD:2C:4F:1E:2F:A3:B4:1B:5D:CD:0F:69:2D:C5:6F
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019D869F063EEAAAFD2A84A06D6D0CE68AEC
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_uETsvr9LE8eL6O0G13ND2ktxW8.roa
Signing time: Mon 13 Apr 2026 11:34:21 +0000
ROA not before: Mon 13 Apr 2026 11:34:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401322
IP address blocks: 151.243.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:86:9f:06:3e:ea:aa:fd:2a:84:a0:6d:6d:0c:e6:8a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 13 11:34:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fee113b2fafd2c4f1e2fa3b41b5dcd0f692dc56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cd:83:3e:f4:2f:cd:52:ef:0b:f5:8c:39:a7:
03:d0:3e:3a:ba:e8:64:05:24:09:03:c3:1e:c9:15:
11:f8:9a:3a:d1:62:0b:5d:38:64:6e:99:36:ff:2f:
84:2f:1c:5e:e7:99:32:4c:bd:95:1b:41:1c:02:ee:
64:88:5e:9f:ca:3e:81:c7:fa:00:8e:b5:68:27:e8:
8c:1e:23:6d:fd:4a:a3:35:05:c2:43:82:90:89:ef:
48:84:8f:ea:e8:63:70:85:95:1f:0e:ca:2a:78:9e:
93:6e:da:a0:56:7e:3c:a7:aa:15:3e:7a:de:e3:34:
74:1b:17:3f:bf:d1:66:4b:70:a2:d3:a3:40:5f:fc:
e6:d8:9a:62:ad:6d:c6:d7:79:00:4b:a8:10:8b:c1:
b5:51:fa:f0:22:38:34:20:99:49:84:e0:98:f6:eb:
dc:5d:1e:6e:d3:35:f4:31:04:c5:11:3f:dd:f7:d6:
84:25:14:1a:5d:48:87:fc:4d:83:a4:78:0a:c0:2d:
94:5e:45:d1:84:18:e3:e9:ae:bd:36:00:bb:a5:bb:
5d:a1:1a:2f:cb:6c:e3:5a:42:98:cb:1d:33:3f:c3:
c0:10:b5:68:a0:30:e0:49:83:87:10:ac:d3:36:4e:
db:a9:81:23:86:78:e0:2f:37:54:54:28:8e:e5:aa:
8b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E1:13:B2:FA:FD:2C:4F:1E:2F:A3:B4:1B:5D:CD:0F:69:2D:C5:6F
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/_uETsvr9LE8eL6O0G13ND2ktxW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b3:28:ad:e4:f3:59:da:6a:9e:f3:df:05:36:fe:9c:71:92:
89:4c:a5:f1:8b:8b:2c:de:08:0c:ef:48:53:04:91:09:fe:80:
1f:d0:a4:58:b5:e8:14:b1:9d:55:c7:a0:fd:aa:25:91:ec:e6:
91:37:4a:b8:c9:66:6d:d9:9b:d2:82:05:92:f2:f1:82:c6:ae:
07:99:af:bf:d4:c9:14:70:4b:b9:df:23:94:08:c2:8e:fd:5d:
09:77:b1:08:4a:b0:68:09:79:f3:d4:bd:95:ab:3b:43:53:0c:
f8:94:3b:62:f0:fd:5a:3b:ce:da:17:65:d2:b5:4d:48:c9:46:
b5:24:9f:d7:5d:30:09:f4:bf:ae:e1:18:ef:fc:af:6a:a0:ba:
62:a6:09:c9:93:8d:06:61:24:e6:a6:df:3d:bf:57:18:3d:27:
ab:e5:76:ed:84:d0:2e:7d:32:f3:09:f7:af:46:c1:4b:53:a8:
10:08:43:5e:2c:52:27:dd:6c:db:97:2a:90:59:f5:e4:a0:d7:
b1:3d:9f:2c:36:0b:42:6f:59:2e:d2:8f:1d:0e:c8:ad:4f:24:
0c:2f:32:22:61:16:56:9a:c5:ce:28:42:8b:c4:29:56:fc:ad:
58:17:6f:6d:96:37:49:a3:3c:e9:c7:e0:7a:2d:67:da:64:c4:
48:2f:3e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:28:40 2026 by rpki-client