Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/DpYS7lRrillfu9K51nCIniTqNmY.roa
File: DpYS7lRrillfu9K51nCIniTqNmY.roa (raw, json)
Hash identifier: UkQwWYpXy7K/OwHNGaKai/nAfoWeLWXYqtRRe4F8mQE=
Subject key identifier: 0E:96:12:EE:54:6B:8A:59:5F:BB:D2:B9:D6:70:88:9E:24:EA:36:66
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019C2A5582A1FB88B9745A4FCF27D399F52B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/DpYS7lRrillfu9K51nCIniTqNmY.roa
Signing time: Wed 04 Feb 2026 20:26:12 +0000
ROA not before: Wed 04 Feb 2026 20:26:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 36530
IP address blocks: 88.80.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:2a:55:82:a1:fb:88:b9:74:5a:4f:cf:27:d3:99:f5:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Feb 4 20:26:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0e9612ee546b8a595fbbd2b9d670889e24ea3666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:61:e9:08:57:f6:08:56:a4:f4:dd:9c:92:65:
da:13:66:f5:23:92:e5:a2:3e:26:e0:bf:32:fe:dc:
2b:24:b6:79:58:13:c3:3e:6c:24:08:a2:96:34:5d:
40:2f:26:6c:c5:b0:88:69:97:55:a9:5a:7a:b3:77:
47:e1:4d:f1:77:3e:80:14:13:26:ae:80:26:65:3c:
61:8d:44:37:71:3b:cd:7b:9b:ea:1f:56:2b:d4:c7:
0c:f8:26:b9:d5:89:9a:28:f7:4d:ce:1a:4b:df:c9:
4b:12:75:b9:d8:53:9b:67:a1:1f:bb:42:54:d3:e0:
80:a3:03:9d:9d:1a:27:60:75:70:e5:55:54:7b:16:
1f:59:2c:5f:28:27:57:d9:07:53:0c:89:08:3d:05:
1f:ee:93:3f:15:df:07:4c:e0:b3:7c:5f:c6:c4:a3:
e3:b9:ef:d8:37:c1:65:e4:ea:33:44:eb:6d:25:20:
2a:37:ee:b9:59:b2:83:48:aa:15:5d:57:2e:42:0e:
26:09:6c:43:63:bd:e1:f6:f5:51:85:b4:f5:1c:1a:
c7:ad:4e:f3:09:d1:67:03:39:57:81:30:61:8c:02:
e1:c7:40:24:ec:26:2a:61:7b:55:59:cd:d5:57:7c:
a6:e6:61:b2:2a:b9:25:a4:0e:11:96:f2:4a:96:0c:
5c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:96:12:EE:54:6B:8A:59:5F:BB:D2:B9:D6:70:88:9E:24:EA:36:66
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/DpYS7lRrillfu9K51nCIniTqNmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.137.0/24
Signature Algorithm: sha256WithRSAEncryption
94:42:f4:76:e2:9f:b0:a0:63:01:92:32:01:c4:ac:04:a4:a0:
74:7a:2b:de:44:e5:2d:42:c7:16:4b:d6:f0:c5:47:b3:2b:51:
b4:c0:0a:e4:0f:02:bd:46:58:07:8d:64:3e:3d:3f:bd:d4:19:
5a:34:24:a8:63:4b:6e:e1:a0:3f:23:9c:18:9b:0f:a5:bd:1c:
fb:49:e2:4a:70:1a:6e:dc:e4:16:f3:64:cc:a5:fd:70:0f:26:
6b:a5:55:b7:aa:6a:69:73:bc:29:6d:29:e9:d2:b4:24:16:74:
aa:49:8e:5a:14:cd:4a:22:30:e8:4a:a8:c8:ac:33:ca:95:4b:
c6:35:ec:a0:31:bb:3c:f9:c8:12:48:17:71:7c:b7:86:91:9b:
8d:68:82:32:ae:76:34:d6:30:fd:4f:7f:f8:ff:0f:db:8d:d7:
e7:c9:b5:db:a1:6d:24:d6:fa:71:1d:c3:52:c9:a2:d0:88:2c:
44:9c:a6:2d:82:5b:0f:ca:02:22:73:b3:3a:4f:68:ec:fa:7f:
b1:3f:17:9d:62:c8:87:da:87:f0:c1:e4:2e:91:9d:42:9e:3a:
db:30:52:26:43:61:ea:3a:a4:77:7d:52:6c:ce:0a:8f:0c:ad:
2a:c9:d9:69:59:ff:4b:59:37:b4:40:66:eb:d3:ea:7b:4a:6a:
29:3a:9a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:53:56 2026 by rpki-client