Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/qPGTbE8x4Wp_tfxBYv5-LgXUsT0.roa
File: qPGTbE8x4Wp_tfxBYv5-LgXUsT0.roa (raw, json)
Hash identifier: 21vkK4ixyZYFfurT533ZcRSc4d1xi74IaqODbxY11HM=
Subject key identifier: A8:F1:93:6C:4F:31:E1:6A:7F:B5:FC:41:62:FE:7E:2E:05:D4:B1:3D
Certificate issuer: /CN=521f0cba10daa302e3b167cee5395f742f530b09
Certificate serial: 019E6F8155568F50874CC35F3472FA63E0B8
Authority key identifier: 52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/qPGTbE8x4Wp_tfxBYv5-LgXUsT0.roa
Signing time: Thu 28 May 2026 16:53:27 +0000
ROA not before: Thu 28 May 2026 16:53:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199524
IP address blocks: 87.76.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6f:81:55:56:8f:50:87:4c:c3:5f:34:72:fa:63:e0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521f0cba10daa302e3b167cee5395f742f530b09
Validity
Not Before: May 28 16:53:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a8f1936c4f31e16a7fb5fc4162fe7e2e05d4b13d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2d:55:29:52:44:e9:a8:30:3c:91:e7:e6:82:
38:55:76:98:ae:58:4a:a5:e6:ce:3f:0c:ba:46:2d:
77:47:b4:d8:76:f7:b7:ba:94:2a:51:5b:6f:54:01:
02:ef:00:0c:fc:56:58:74:db:47:63:e4:28:52:ad:
fc:0c:9f:77:60:84:18:2f:0e:f6:3d:b2:34:ff:42:
a5:b2:b6:12:00:35:e5:73:cf:aa:66:56:03:c4:ea:
c3:22:8a:58:b6:5e:86:41:24:4a:38:e6:e7:8c:16:
b6:0c:1c:2b:9c:a6:33:c8:8c:44:0c:69:a5:2a:d0:
bb:f6:bd:22:db:f4:5a:a3:64:66:32:2d:94:0c:31:
12:62:bf:58:3e:29:fc:53:ca:c1:d2:7e:37:c5:8e:
65:2a:df:ed:ee:68:9e:1c:80:6e:f7:f4:53:2d:7e:
0f:b7:d1:0c:0b:da:19:50:ee:9c:46:77:a1:0a:b4:
20:05:ec:53:68:b5:a9:2f:c8:fd:fe:88:37:cf:bf:
c1:e6:ed:37:c4:77:46:02:7d:56:1e:29:cb:6a:ff:
61:69:73:c1:ce:c3:e0:b4:35:44:37:67:16:bb:32:
68:f7:47:a9:18:11:88:20:b9:54:66:c0:a9:62:9c:
51:82:7d:c8:8c:5f:5a:e6:b8:c5:13:4e:fb:44:bc:
79:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F1:93:6C:4F:31:E1:6A:7F:B5:FC:41:62:FE:7E:2E:05:D4:B1:3D
X509v3 Authority Key Identifier:
keyid:52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/qPGTbE8x4Wp_tfxBYv5-LgXUsT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.76.142.0/24
Signature Algorithm: sha256WithRSAEncryption
31:33:dc:6e:cd:6b:a9:a7:9e:e3:a6:ac:7d:3e:df:3f:35:45:
64:de:6b:6b:d9:af:f4:b9:a9:65:af:1d:17:37:e4:98:2e:d7:
a6:1f:c1:26:ff:2d:17:f4:3a:49:e0:de:13:74:44:58:66:e5:
ef:fe:a1:a5:13:60:48:43:3d:f3:9e:a7:dd:50:e6:be:56:78:
e1:9d:7b:87:df:04:21:c8:78:8c:d5:3e:5b:83:35:05:50:ee:
63:2c:4d:2f:fb:a8:36:59:c8:45:1f:1a:69:9f:91:48:67:43:
c9:98:8c:3a:41:fe:34:c9:72:9c:c9:23:04:b9:7c:4c:80:35:
46:7a:9e:a1:9f:ac:89:43:c6:17:dc:9c:97:33:e5:c1:d8:c7:
2e:1c:fc:a5:3b:4a:ce:cc:1f:13:66:ab:06:7d:4a:b0:47:de:
28:41:55:96:ed:47:5f:1f:d0:31:e0:2c:a4:16:06:7a:80:3e:
24:dc:ea:b5:b4:92:6c:49:7d:12:f7:23:1d:27:72:e8:3e:2b:
ae:33:d0:4a:a1:d7:a0:a4:1e:27:bb:ee:12:52:a2:bf:ab:f1:
b1:f6:da:e0:f9:e8:b5:e0:b6:4d:1d:a5:df:37:94:50:3a:96:
a2:e3:7b:42:46:a2:05:8f:38:fa:8e:2d:bc:eb:1a:dc:3f:d0:
fa:02:40:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:23:32 2026 by rpki-client