Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/8Sp2Kp3jnPB4ZfqqmTPpiHroHQ4.roa
File: 8Sp2Kp3jnPB4ZfqqmTPpiHroHQ4.roa (raw, json)
Hash identifier: zuITmcN7KraqQmqeOLgE30TGHOmkRXBKeq6NKb6N7JY=
Subject key identifier: F1:2A:76:2A:9D:E3:9C:F0:78:65:FA:AA:99:33:E9:88:7A:E8:1D:0E
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019DA11155ED15A2AA58393A2B553A7CB3B9
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/8Sp2Kp3jnPB4ZfqqmTPpiHroHQ4.roa
Signing time: Sat 18 Apr 2026 14:49:21 +0000
ROA not before: Sat 18 Apr 2026 14:49:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62563
IP address blocks: 2a13:dfc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a1:11:55:ed:15:a2:aa:58:39:3a:2b:55:3a:7c:b3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Apr 18 14:49:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f12a762a9de39cf07865faaa9933e9887ae81d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:18:3b:b3:54:33:b3:1c:09:7d:e4:e9:a7:
ea:03:6e:62:ba:7a:d7:f9:c0:f8:00:0e:c0:d7:8a:
2c:7f:9d:58:02:4a:f4:83:74:96:c6:a7:07:36:43:
0b:40:9f:3d:a4:2c:e4:38:85:6c:32:5f:cb:6b:e8:
15:73:b8:75:69:8d:ff:3f:e5:4e:45:4c:5e:0c:14:
31:db:cb:d3:1e:8c:0c:ad:61:41:47:d5:ec:78:87:
88:f7:4d:3b:7a:6c:71:29:e5:5b:08:6c:47:56:f5:
36:7b:d5:1f:fa:34:4f:20:d7:df:d8:66:c4:79:0e:
15:58:69:c6:40:8a:19:95:d3:9f:9d:7a:a8:c4:fc:
3c:55:d2:35:64:c0:fd:ff:9c:1e:71:e6:62:74:15:
2b:fc:08:d0:fc:79:8a:03:fd:c7:06:27:27:7c:d9:
86:ce:fb:90:32:94:d8:d1:bc:83:3d:83:58:1f:81:
70:e0:56:24:c5:ff:9f:42:eb:40:0b:d0:4f:6b:99:
d4:0e:9b:06:6c:f8:67:48:24:1b:2a:1c:31:82:4c:
5c:e7:aa:82:6b:a9:f8:1f:a6:c5:07:68:19:32:7d:
a7:cd:6c:bf:2b:1c:52:ee:c2:f3:86:66:1e:89:be:
20:8c:37:49:9d:c9:a1:10:60:b2:ed:96:ac:30:c8:
a7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2A:76:2A:9D:E3:9C:F0:78:65:FA:AA:99:33:E9:88:7A:E8:1D:0E
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/8Sp2Kp3jnPB4ZfqqmTPpiHroHQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:dfc0::/29
Signature Algorithm: sha256WithRSAEncryption
7a:2e:fe:6f:04:7f:48:5e:8e:0d:c5:7e:ea:64:9b:a6:d7:f6:
e2:a4:26:3d:ed:a0:37:b4:cf:ec:70:ba:9c:fc:ed:5a:49:fe:
dc:68:9f:a3:dd:9f:70:9d:1f:a5:f8:26:8f:f2:34:9c:49:29:
fc:17:59:96:1e:10:e4:ed:8b:08:3a:dd:86:ca:3b:5c:4f:b6:
c1:68:df:43:19:7b:38:72:5e:2e:06:52:6c:7e:57:f7:82:72:
3b:4c:60:42:42:62:9f:f1:90:92:40:35:b7:21:09:59:ca:03:
b2:10:52:9f:8f:c9:f0:05:6e:5e:f8:d6:9f:f2:5a:a8:83:ee:
d5:58:29:6e:75:b3:7a:4d:0a:58:0e:d9:0b:53:c7:ff:a7:e4:
e1:59:fa:ed:92:e5:2d:44:0f:78:a4:f2:70:3f:62:cd:35:29:
f1:ce:7b:88:96:15:02:63:be:34:18:2a:5a:02:44:18:56:13:
c6:ae:fc:e4:c0:80:dd:22:25:77:78:ae:23:55:d4:ed:1b:8e:
95:7b:88:a0:66:37:fc:0c:85:6a:74:d3:5a:0f:46:1e:37:71:
7a:6f:ff:e8:d8:20:8c:42:7b:4f:6a:b8:ea:95:a7:c3:6d:d6:
0f:53:ba:a8:84:ee:4e:09:93:bf:97:58:24:d5:74:a3:81:0b:
2b:c1:13:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:50:25 2026 by rpki-client