Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7RD2rFfYLnUcZb9RQE7mfqq-Pko.roa
File: 7RD2rFfYLnUcZb9RQE7mfqq-Pko.roa (raw, json)
Hash identifier: 9zOAh6OlI9e2ZjDDZ5XIL8Sifkh11k0sjX1V4W40gTI=
Subject key identifier: ED:10:F6:AC:57:D8:2E:75:1C:65:BF:51:40:4E:E6:7E:AA:BE:3E:4A
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 019D06FBFCBA80C166439BD3A512B8404875
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7RD2rFfYLnUcZb9RQE7mfqq-Pko.roa
Signing time: Thu 19 Mar 2026 16:44:30 +0000
ROA not before: Thu 19 Mar 2026 16:44:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199868
IP address blocks: 2a0c:9a40:8b10::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:06:fb:fc:ba:80:c1:66:43:9b:d3:a5:12:b8:40:48:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Mar 19 16:44:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ed10f6ac57d82e751c65bf51404ee67eaabe3e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:55:65:89:ad:8d:ed:04:e2:56:cd:a6:46:
25:71:ee:b1:96:b2:b0:13:f9:a3:f6:34:f8:c4:f3:
ef:98:13:e7:be:33:5e:c5:f3:4c:be:64:3c:af:ec:
2c:5c:52:10:76:5d:a3:0a:3f:56:13:2b:00:eb:91:
c9:ef:21:27:8c:37:fc:42:85:55:22:0f:8d:cb:cc:
34:16:cc:0c:0e:35:fe:92:d7:84:4b:2f:13:b9:2b:
80:21:07:34:f8:8f:08:e5:45:b5:be:58:d6:26:be:
d4:19:ac:8d:1c:9e:78:bd:19:91:75:51:96:7e:82:
22:f3:cc:3f:bb:57:6a:d1:a4:29:37:fb:89:e6:76:
88:00:ce:1f:e0:f0:a9:92:df:e4:e2:48:a0:86:0d:
39:0f:d3:b7:86:bc:de:d0:59:9c:04:11:19:82:09:
95:f8:cc:e6:75:dd:28:9d:d4:b8:ba:19:7c:99:bd:
dc:84:76:4a:66:ee:df:1e:7f:81:30:0f:5c:47:03:
43:4b:43:26:fa:fd:f7:ba:1f:c6:c2:a9:1e:79:66:
22:59:57:4e:10:e2:4d:46:2d:64:13:9f:a2:13:07:
80:00:98:a9:95:a0:a2:cf:e9:ed:a4:dd:91:68:4e:
26:df:a7:09:6c:ef:d7:ca:87:e5:15:ef:a8:e7:d0:
b1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:10:F6:AC:57:D8:2E:75:1C:65:BF:51:40:4E:E6:7E:AA:BE:3E:4A
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7RD2rFfYLnUcZb9RQE7mfqq-Pko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8b10::/48
Signature Algorithm: sha256WithRSAEncryption
3a:81:9a:3a:e3:6e:14:6c:40:c2:e4:76:49:cf:c1:39:f3:08:
77:ab:9e:3d:14:64:05:d3:b7:7a:77:29:7a:98:c3:79:16:87:
ab:05:50:e9:bb:9c:7f:2f:67:b3:65:9f:a7:ea:c4:11:de:38:
39:1c:ea:2c:09:63:ca:f7:02:b7:04:fb:9e:4e:75:e6:ea:36:
31:ff:29:9a:44:fe:6a:de:6b:9b:5e:2c:98:8b:ff:17:37:25:
eb:6a:5f:ae:a5:d7:55:a3:89:a6:5b:c6:a3:19:1f:be:24:0b:
f4:f7:0f:98:bd:ad:e1:b9:be:14:38:d2:55:e9:90:39:4b:bd:
d2:a8:df:aa:1f:df:3f:53:f9:89:5d:fa:ac:d9:a3:ca:be:29:
ba:13:8f:11:a0:7c:10:3a:e6:a4:bd:a6:2e:ae:12:9c:0d:83:
aa:a5:3e:94:47:e6:27:94:41:6e:82:1b:fc:bc:c6:23:7e:6b:
92:33:48:ac:2a:62:9f:ff:28:80:b3:ed:18:3b:77:d1:b8:a5:
99:4e:ab:74:9c:b2:6f:66:33:ef:24:e0:86:1e:f0:18:44:c9:
2e:9f:53:13:1d:9a:53:05:ad:05:51:e4:b6:58:bf:e8:43:10:
fd:70:1b:89:d7:bd:bd:3f:45:ac:7e:fa:be:cf:b5:f4:9e:ff:
08:d0:86:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:39:53 2026 by rpki-client