Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-v6elgPkJeIPQ7fB-Beq4lEGXD8.roa
File: 1-v6elgPkJeIPQ7fB-Beq4lEGXD8.roa (raw, json)
Hash identifier: Uc1tPnDeMimWBtsEZj0XKPNT01hERUnZZshvWxwJayA=
Subject key identifier: FA:FE:9E:96:03:E4:25:E2:0F:43:B7:C1:F8:17:AA:E2:51:06:5C:3F
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019D1AE77737AC2AF8A0C5C4ADCDAA9377D3
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-v6elgPkJeIPQ7fB-Beq4lEGXD8.roa
Signing time: Mon 23 Mar 2026 13:34:30 +0000
ROA not before: Mon 23 Mar 2026 13:34:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206411
IP address blocks: 91.227.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1a:e7:77:37:ac:2a:f8:a0:c5:c4:ad:cd:aa:93:77:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Mar 23 13:34:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fafe9e9603e425e20f43b7c1f817aae251065c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:a2:c2:9a:68:62:17:e7:56:82:e7:1a:52:
a5:c5:ba:64:a7:1e:d4:8e:71:2c:0a:98:d1:8c:ca:
6a:c3:15:e5:46:53:0a:b5:cb:89:2d:09:8b:78:7c:
63:57:4d:e6:cb:99:c7:76:83:e5:d8:bb:41:5e:6c:
39:77:a5:0e:ce:d8:7e:b8:5b:e4:e3:92:47:2b:6a:
f1:0b:8a:1b:db:5d:eb:c0:f7:90:c6:a8:8d:3b:c3:
0e:8c:be:2d:40:23:90:67:5f:9b:43:f7:c5:f2:54:
64:8b:62:6b:8d:c9:fd:b2:c7:f6:50:e3:81:f9:96:
c6:9e:8b:8d:cb:43:f6:ae:f0:3a:61:46:fe:d1:8b:
41:9e:6a:3c:72:6b:da:38:e7:a0:75:57:24:a2:a4:
0b:47:a9:09:18:d3:0b:88:cb:23:9b:3b:95:b8:55:
6e:a7:16:cb:db:61:b7:2b:76:55:c2:31:bb:f5:de:
d8:f2:b6:48:77:c2:5e:a3:3e:c0:db:58:c6:5a:91:
da:fc:d6:3d:de:31:73:e1:5f:6d:d9:c5:63:59:74:
31:25:9f:04:cb:76:cb:c6:7d:b0:ac:72:d8:29:4e:
5c:4f:ed:34:76:11:73:a9:a5:bb:b4:bf:74:9f:ac:
b9:63:0e:3c:2d:5f:24:cf:2e:82:9b:e6:29:6b:bf:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:FE:9E:96:03:E4:25:E2:0F:43:B7:C1:F8:17:AA:E2:51:06:5C:3F
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/1-v6elgPkJeIPQ7fB-Beq4lEGXD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.186.0/24
Signature Algorithm: sha256WithRSAEncryption
61:0e:eb:96:3f:3e:bf:08:58:47:e1:09:ac:4f:07:d3:84:87:
22:d9:f4:56:14:06:be:f2:65:e0:ce:b2:ed:f0:08:7e:12:b4:
fd:c8:7b:bc:6d:e3:bf:61:04:d3:69:38:54:d2:4a:d8:be:45:
40:c3:be:98:82:d9:d6:56:7f:06:3c:6a:7a:35:a4:23:2b:4c:
d3:fe:ca:86:62:7d:b3:8a:5d:5e:1f:96:53:09:a2:68:8c:39:
64:7e:49:24:c5:c9:bd:70:5f:9f:f7:1b:ad:5a:50:99:48:94:
c1:0e:05:e9:ad:b4:63:2f:de:ab:51:11:38:87:27:70:e6:df:
ab:fe:e7:54:cc:65:ba:16:45:b9:7c:5a:7e:d1:ea:ae:4f:4d:
c3:f2:6c:9e:ca:cf:ef:13:f1:74:26:fb:ec:8a:ca:97:8a:e0:
93:5c:69:0c:2f:87:2b:02:2b:e8:bc:1b:a0:97:a7:be:ec:1a:
7b:08:86:69:d6:c1:21:38:4b:1c:fc:c8:11:c7:a1:19:de:e0:
fc:b5:5a:8c:86:0c:59:93:9e:3b:7b:01:61:cd:41:37:7f:41:
9e:b9:f4:31:20:c7:b5:11:94:63:5e:e5:6f:85:ee:b6:1d:bb:
cb:71:a0:ff:ef:fd:eb:23:81:ee:47:0c:ce:a8:8b:4a:af:13:
b7:86:7c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:46:59 2026 by rpki-client