Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/v48JmomxhaoI6u0BG-SoULz1plM.roa
File: v48JmomxhaoI6u0BG-SoULz1plM.roa (raw, json)
Hash identifier: dhwyORgcffoV0wLuFDDS3LRqFm5mZR3KZS5s1MZubBA=
Subject key identifier: BF:8F:09:9A:89:B1:85:AA:08:EA:ED:01:1B:E4:A8:50:BC:F5:A6:53
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 019D8FF28EA4F15D36F1FE41647E4E9AF325
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/v48JmomxhaoI6u0BG-SoULz1plM.roa
Signing time: Wed 15 Apr 2026 07:02:11 +0000
ROA not before: Wed 15 Apr 2026 07:02:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 26769
IP address blocks: 193.31.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8f:f2:8e:a4:f1:5d:36:f1:fe:41:64:7e:4e:9a:f3:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Apr 15 07:02:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bf8f099a89b185aa08eaed011be4a850bcf5a653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:88:f1:f5:5f:f4:58:f8:8a:56:64:42:ce:91:
4b:64:61:79:36:2c:a4:2c:bc:c1:61:22:80:80:52:
5e:9f:e5:4d:af:ff:91:54:58:ca:48:23:2d:7a:ba:
f7:97:37:7f:61:cd:b4:3e:ea:5f:b2:1a:f3:c0:4e:
81:87:0a:13:33:10:e5:60:45:6a:37:af:f9:f4:12:
3a:4a:c6:d3:26:63:72:1d:47:42:2d:46:9f:26:be:
eb:ab:60:8a:b7:fa:ae:16:ad:e1:41:37:07:ef:c9:
90:cf:4d:7b:7a:ca:41:52:90:9e:82:2d:cb:d7:d0:
77:54:50:73:a5:82:91:d4:9f:9b:df:4d:0a:14:93:
88:37:b3:e0:2f:82:86:64:a7:29:4d:d8:82:65:ec:
2f:55:18:78:56:07:07:db:f5:f1:cd:99:19:1f:83:
3d:f6:f9:b5:72:f0:96:d7:9d:04:33:09:05:c1:3a:
ce:48:0a:76:c7:ea:c4:d7:47:2f:82:a2:44:75:07:
e3:c8:d0:17:56:69:9a:90:48:72:13:c4:f3:85:2d:
42:97:d8:d9:16:99:be:41:33:57:ea:cb:2a:74:9d:
01:a6:29:30:bb:38:8a:df:92:e8:83:16:a7:ac:f7:
cf:b2:66:7b:a4:81:93:8a:76:69:3e:be:cb:0d:44:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8F:09:9A:89:B1:85:AA:08:EA:ED:01:1B:E4:A8:50:BC:F5:A6:53
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/v48JmomxhaoI6u0BG-SoULz1plM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.60.0/24
Signature Algorithm: sha256WithRSAEncryption
72:24:18:86:29:2a:18:49:36:51:a8:3d:7b:f4:45:17:4e:3c:
a4:b9:6b:cb:9a:c5:46:d9:b6:13:45:76:48:11:10:2c:ff:88:
d3:5a:6b:70:d0:4a:c4:a5:55:ec:c9:86:0c:3b:82:9a:ad:ed:
b2:7a:d1:63:0b:fc:44:e9:5b:bd:4d:e2:0c:39:0b:b1:ba:0c:
0f:84:3c:31:aa:41:9b:19:51:e5:c3:ca:33:91:3d:7f:4b:47:
e2:eb:4b:5b:72:c7:e9:9a:b1:a7:f5:21:6c:53:d7:36:e1:7f:
cb:90:4e:84:d8:07:e4:7c:e1:fe:35:46:4e:d9:1e:e9:e5:c0:
4e:8f:12:9f:22:56:25:54:e8:7b:0c:2c:92:d2:09:17:06:97:
93:6b:91:e7:eb:7f:1c:b8:aa:bc:13:cb:8a:99:de:5e:99:c0:
04:e2:5d:2a:a4:0a:f3:b5:83:8f:e0:d6:70:1a:ea:7b:58:76:
87:5a:53:f6:0d:99:70:c0:5a:c4:4d:bf:83:ac:b4:23:3c:a3:
c7:bf:6a:ab:25:44:93:f9:57:4b:17:91:80:42:c9:cf:9b:d6:
8e:23:41:9a:de:7f:d8:70:71:ba:a8:80:ba:e4:92:84:01:4d:
46:7f:f9:da:de:39:a6:ca:26:cc:af:4d:0b:02:66:9a:1f:3d:
0a:07:01:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:40:20 2026 by rpki-client