Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/1-a5-vfrfTugaq2dPJBFnOFly9dw.roa
File: 1-a5-vfrfTugaq2dPJBFnOFly9dw.roa (raw, json)
Hash identifier: e7clwKT7V4iFQZMWiuDOC7g3BMnCDyuqeXJiUTm63rA=
Subject key identifier: F9:AE:7E:BD:FA:DF:4E:E8:1A:AB:67:4F:24:11:67:38:59:72:F5:DC
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 019C3F2238A7D6AD7AD6DD70BA9B379B2D5C
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/1-a5-vfrfTugaq2dPJBFnOFly9dw.roa
Signing time: Sun 08 Feb 2026 21:22:13 +0000
ROA not before: Sun 08 Feb 2026 21:22:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401479
IP address blocks: 93.127.128.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:3f:22:38:a7:d6:ad:7a:d6:dd:70:ba:9b:37:9b:2d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Feb 8 21:22:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f9ae7ebdfadf4ee81aab674f241167385972f5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dc:10:8c:bb:93:a7:81:4b:5f:ce:1a:db:5a:
65:bd:65:d2:ae:d0:98:e2:d6:17:6b:df:6d:0f:47:
f2:21:10:e4:42:9f:63:a5:34:aa:a9:0b:5c:db:4a:
3c:1a:70:82:3f:18:99:65:40:7a:8b:f4:45:e0:00:
99:9f:94:7c:3a:08:16:42:a5:69:a0:17:f5:cc:b5:
b3:9b:54:70:56:23:42:33:7a:c8:c2:74:26:b4:51:
2f:b4:23:9a:6c:e6:3c:0c:ce:bc:d5:7e:c2:4c:81:
31:91:8e:c4:b5:ce:59:2b:c4:7c:c2:3f:9c:9a:9b:
a9:50:f7:9e:9d:2a:b7:d4:31:cc:80:1a:8b:f8:61:
1f:06:5f:e8:4c:03:a5:31:ff:85:a6:4c:53:8e:22:
11:5a:b9:e4:51:3b:6d:4c:10:b5:4d:22:c5:36:36:
7c:06:8c:82:f8:52:c6:4d:6a:58:2d:40:11:6e:b6:
89:62:10:9c:03:54:f6:27:10:e4:1f:2a:d9:c3:4b:
e6:37:7b:34:88:75:7e:31:dd:cc:28:cd:9b:07:19:
71:3c:96:e7:59:72:fd:cb:aa:df:43:79:18:48:81:
1e:51:8a:95:bc:88:65:6c:5a:17:f3:a8:2e:43:ec:
de:e7:23:90:31:3e:5c:e0:88:01:a2:51:aa:67:82:
f9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AE:7E:BD:FA:DF:4E:E8:1A:AB:67:4F:24:11:67:38:59:72:F5:DC
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/1-a5-vfrfTugaq2dPJBFnOFly9dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.128.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:de:6b:fc:b1:a6:7b:84:33:cb:b7:2d:de:63:15:83:ad:d0:
d1:75:0e:bd:38:17:c4:0c:ce:21:04:9c:25:84:ec:dc:e6:20:
f8:cd:f0:55:f7:f7:ae:84:b3:c0:68:9d:d8:dc:aa:88:38:0e:
ce:95:0a:b6:e2:9c:1e:5c:aa:ad:36:1f:4c:56:3c:4d:51:16:
63:4a:82:d5:8a:9d:f6:d4:da:e0:72:f7:46:0d:c0:bb:ec:53:
e2:73:b3:5e:a2:c4:4f:84:74:59:5e:56:ee:cf:ba:f6:71:e8:
82:20:e1:1a:ff:48:a5:2a:24:0a:70:01:1b:e1:d3:6f:25:92:
fc:ae:b0:a6:39:db:cb:ed:14:0d:7b:75:5f:9c:f7:7e:45:21:
5e:78:e4:9b:4a:44:07:6a:8c:e5:71:37:62:12:ce:27:af:85:
0b:ac:06:9f:96:6e:e6:9e:28:5c:d8:9a:87:3c:60:b8:58:b6:
9d:5a:b0:7f:0c:40:b1:7c:eb:70:a6:c3:b1:69:fc:07:08:77:
e7:14:46:4c:01:6c:86:bd:f0:45:54:c0:65:df:f6:51:04:8c:
d0:04:15:df:47:7f:0d:a4:c0:09:c2:de:a4:94:d0:97:14:2a:
e9:d3:2f:20:e1:82:43:83:8d:06:eb:77:c8:d0:77:7c:97:84:
a9:83:ec:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:05:51 2026 by rpki-client