Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/fuatlTRemlCttlH8SmYbA_IrUw4.roa
File: fuatlTRemlCttlH8SmYbA_IrUw4.roa (raw, json)
Hash identifier: N+0ekdKNHaEbyrcSPp2lK/dlcFVmVd7p8jmrALUYWYE=
Subject key identifier: 7E:E6:AD:95:34:5E:9A:50:AD:B6:51:FC:4A:66:1B:03:F2:2B:53:0E
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019E8E4CAD4FE23BE2B92B7B7EE6FCCACB59
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/fuatlTRemlCttlH8SmYbA_IrUw4.roa
Signing time: Wed 03 Jun 2026 16:24:10 +0000
ROA not before: Wed 03 Jun 2026 16:24:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 4213
IP address blocks: 103.102.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:17:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:4c:ad:4f:e2:3b:e2:b9:2b:7b:7e:e6:fc:ca:cb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jun 3 16:24:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7ee6ad95345e9a50adb651fc4a661b03f22b530e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:c7:88:e7:ce:0c:03:84:3a:0b:18:d6:60:
d3:c1:15:66:ae:eb:d6:89:cf:92:8d:30:ac:7b:2c:
e2:bf:c1:c5:8f:86:42:22:de:2e:78:8a:02:81:48:
e6:d1:0e:cd:b0:b1:b4:e5:06:36:11:b4:41:56:b1:
3a:2f:29:5b:82:0e:d5:7c:fd:80:b5:cb:4d:c0:96:
a6:a5:9e:c6:2e:75:20:ce:e3:a1:56:48:d9:b6:92:
dc:d7:0a:e2:10:c3:66:ce:a7:26:70:09:c7:54:9d:
a3:63:62:a1:64:ce:6a:79:8f:95:7c:33:3f:43:31:
0d:f5:bf:af:20:8e:8a:f3:ba:f9:51:d1:71:14:77:
9f:ec:10:f8:55:57:21:13:9a:9e:7b:e4:0a:af:bc:
78:59:04:fd:d6:e5:29:d1:ca:db:b6:ad:b5:30:6e:
21:55:15:ed:e3:86:c8:aa:01:4f:17:fe:76:d9:53:
82:5e:2f:05:89:50:a9:de:3d:90:c7:65:b5:ac:28:
9d:cd:72:13:cd:19:33:5a:10:90:63:23:8a:ad:b1:
57:da:9c:98:59:62:bd:d0:71:3b:a9:68:fa:a7:2f:
cc:b1:cb:44:1d:6f:31:38:80:4e:2a:a4:ca:35:65:
ae:d7:7b:7f:d7:ec:f4:86:19:f3:5b:70:95:27:fc:
ec:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E6:AD:95:34:5E:9A:50:AD:B6:51:FC:4A:66:1B:03:F2:2B:53:0E
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/fuatlTRemlCttlH8SmYbA_IrUw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.132.0/24
Signature Algorithm: sha256WithRSAEncryption
03:58:a6:30:21:84:15:1c:41:c2:07:ee:4e:93:6d:3e:ad:f4:
09:f5:61:59:b1:cf:e7:f9:c2:14:8a:5a:ae:03:37:f2:80:71:
48:e4:50:1a:4c:97:56:28:78:3e:12:70:05:ad:2c:a2:94:3b:
9b:ee:a0:e6:98:77:d2:5f:36:9a:36:00:96:ac:e9:2b:f6:66:
76:a4:31:9e:cc:31:88:74:f1:6b:fb:2c:88:9f:4c:08:5c:17:
36:d5:e8:db:20:e6:a1:97:57:9b:aa:f8:fe:fb:15:7f:7c:9a:
4f:e6:ad:57:94:31:74:4b:3b:e3:e0:f3:92:bd:e6:21:c3:98:
fd:98:46:a3:41:9f:ab:b3:7f:de:c7:66:f4:4d:90:dd:15:0b:
d6:6b:bc:23:23:60:53:2b:d5:3f:70:31:ed:36:87:eb:f0:c4:
cd:c7:e5:89:c6:40:34:59:22:95:4a:07:66:e7:2e:9f:99:f0:
be:fa:70:7c:52:e7:92:44:3b:5c:73:36:bb:95:a6:74:d9:c9:
2e:3e:b6:f7:31:70:51:e0:0c:b7:33:59:92:74:19:1d:06:a6:
c6:eb:27:18:42:e3:17:34:31:1a:da:95:46:61:36:14:46:83:
09:1f:7f:17:fe:f8:b9:58:cb:2d:59:17:84:03:47:ae:28:52:
8d:f7:bc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:40:38 2026 by rpki-client