Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/dqdPAo7SoYs1tK19l-YVixClG2U.roa
File: dqdPAo7SoYs1tK19l-YVixClG2U.roa (raw, json)
Hash identifier: msWagJ6KNBCbsXUgdn8kKfPT/03Z4H19UfDca0jlshc=
Subject key identifier: 76:A7:4F:02:8E:D2:A1:8B:35:B4:AD:7D:97:E6:15:8B:10:A5:1B:65
Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Certificate serial: 019E974127AA200CF49A71D49A2D74F1269D
Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/dqdPAo7SoYs1tK19l-YVixClG2U.roa
Signing time: Fri 05 Jun 2026 10:08:10 +0000
ROA not before: Fri 05 Jun 2026 10:08:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43937
IP address blocks: 87.251.0.0/20 maxlen: 24
93.89.16.0/20 maxlen: 24
2a02:7980::/32 maxlen: 32
2a02:7980:105::/48 maxlen: 48
2a02:7980:200::/48 maxlen: 48
2a02:7980:201::/48 maxlen: 48
2a02:7980:202::/48 maxlen: 48
2a02:7980:203::/48 maxlen: 48
2a02:7980:204::/48 maxlen: 48
2a02:7980:205::/48 maxlen: 48
2a02:7980:206::/48 maxlen: 48
2a02:7980:207::/48 maxlen: 48
2a02:7980:208::/48 maxlen: 48
2a02:7980:209::/48 maxlen: 48
2a02:7980:210::/48 maxlen: 48
2a02:7980:300::/48 maxlen: 48
2a02:7980:301::/48 maxlen: 48
2a02:7980:302::/48 maxlen: 48
2a02:7980:303::/48 maxlen: 48
2a02:7980:306::/48 maxlen: 48
2a02:7980:308::/48 maxlen: 48
2a02:7980:309::/48 maxlen: 48
2a02:7980:310::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:97:41:27:aa:20:0c:f4:9a:71:d4:9a:2d:74:f1:26:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Validity
Not Before: Jun 5 10:08:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=76a74f028ed2a18b35b4ad7d97e6158b10a51b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:24:b5:79:11:41:3b:b9:7d:b2:30:22:80:45:
99:6a:04:03:c4:34:42:36:bb:7c:c1:86:fe:cd:e9:
b9:32:05:c5:25:ae:a7:ff:c1:c2:4c:ea:97:13:99:
60:ed:76:59:3f:e7:6a:63:52:4e:f9:df:97:f4:f5:
c4:b0:9a:15:ab:55:6e:ab:a4:e8:99:ce:03:b8:88:
03:bd:42:7a:df:64:e6:f0:39:d1:97:90:e8:a1:27:
04:29:4b:2a:bb:c4:02:b7:32:13:72:2d:b6:c8:86:
24:34:e8:19:06:8e:49:d6:a5:0e:ea:14:74:de:1d:
ec:18:1c:ab:0d:b6:82:68:b2:78:73:1e:d7:1a:ae:
d5:38:84:af:6a:cc:4a:95:33:f3:69:87:8f:d0:23:
bd:de:78:fc:ad:39:ac:e0:db:21:58:bf:a3:97:a0:
cc:04:1f:98:04:73:04:33:88:5f:26:9d:61:9b:ff:
47:0e:45:fc:2c:ac:c7:43:bb:b0:a3:f7:c0:f4:19:
74:68:85:ad:4b:96:b5:2e:bb:34:51:00:1e:fb:ad:
be:0e:f8:ed:c1:7e:7e:5c:43:06:76:b5:9e:76:40:
73:19:96:9f:06:1a:e1:ac:b6:f9:b1:8a:af:d8:6b:
2a:8f:2a:1d:01:55:4f:39:d1:e2:b8:7f:b4:34:75:
76:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A7:4F:02:8E:D2:A1:8B:35:B4:AD:7D:97:E6:15:8B:10:A5:1B:65
X509v3 Authority Key Identifier:
keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/dqdPAo7SoYs1tK19l-YVixClG2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.0.0/20
93.89.16.0/20
IPv6:
2a02:7980::/32
Signature Algorithm: sha256WithRSAEncryption
2b:29:53:72:68:bf:af:0c:27:73:3c:1b:5f:e5:61:4d:9e:6f:
01:d2:08:8e:4f:be:ab:6f:a8:39:c3:35:b1:d0:f3:ee:9a:eb:
4b:30:3a:92:53:df:57:d1:33:7c:95:b3:42:18:80:f7:f7:cf:
79:ae:f7:a3:6d:b0:25:03:06:16:fc:17:c3:ce:4b:69:14:a5:
4d:8e:28:d1:ea:a9:d1:c1:22:07:18:33:1d:78:cc:0e:50:ce:
2f:a6:ca:9b:ba:82:52:60:71:1d:5f:1e:c3:d4:79:42:da:07:
91:b2:b0:8e:99:1c:c4:46:0b:35:c7:de:60:92:f8:0b:d1:de:
6b:cd:02:7a:11:63:d8:ae:07:67:91:04:b0:cb:3a:b5:7d:21:
02:17:91:01:43:a4:5e:44:69:8d:ec:49:24:58:7e:0e:22:69:
3c:bf:ae:ac:0f:85:9b:78:c9:31:a4:50:a9:c9:fd:32:93:1b:
fb:1d:be:1c:27:ff:09:ae:ea:cf:26:a9:70:08:09:51:5e:fa:
97:e0:09:e0:db:83:f9:67:71:ee:a7:fb:d8:9f:9b:ba:2f:44:
f5:f7:73:a2:27:e8:38:26:f5:41:9a:30:f4:36:b1:16:30:8d:
ed:dd:fa:24:c8:29:d7:06:29:56:56:40:1c:be:6a:75:0d:1d:
4e:c5:27:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:55:35 2026 by rpki-client