Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/1-vgGFvz6LQmOQPxtqaMJ_YTGNt8.roa
File: 1-vgGFvz6LQmOQPxtqaMJ_YTGNt8.roa (raw, json)
Hash identifier: AmBeC+zy/YaxNTSS3KOkdZNHjpPR3tIn2auAZnDvPtQ=
Subject key identifier: FA:F8:06:16:FC:FA:2D:09:8E:40:FC:6D:A9:A3:09:FD:84:C6:36:DF
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019CDFD9124E706A89840D76E8EB34F17306
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/1-vgGFvz6LQmOQPxtqaMJ_YTGNt8.roa
Signing time: Thu 12 Mar 2026 02:21:11 +0000
ROA not before: Thu 12 Mar 2026 02:21:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 210066
IP address blocks: 2a06:9801:8f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:df:d9:12:4e:70:6a:89:84:0d:76:e8:eb:34:f1:73:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: Mar 12 02:21:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=faf80616fcfa2d098e40fc6da9a309fd84c636df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e6:cc:6b:ee:f2:2d:74:b8:c1:e9:ab:f8:3a:
9a:ad:ac:ab:e7:91:3f:fd:af:43:82:65:f7:80:61:
c8:c5:f3:b9:39:0e:c4:24:07:4b:1f:78:cd:db:4b:
19:bb:31:fb:74:06:c9:60:c5:02:0f:df:af:d9:40:
57:84:43:48:49:ed:66:a7:22:09:5f:f9:ef:14:81:
04:21:7d:67:af:c9:49:35:8e:bc:f7:8b:e3:8c:7a:
80:7b:74:2a:f8:15:1a:bf:50:c2:cd:b2:48:91:47:
be:43:8a:62:aa:8a:90:94:19:97:54:cf:53:df:5e:
02:98:7d:d9:aa:d1:e9:a3:6f:64:06:82:f0:34:7d:
1a:c2:6d:23:79:4e:a7:6a:ee:d8:6c:c6:f5:c6:dd:
c9:dd:3d:58:29:42:9c:42:32:0a:92:a6:8f:26:68:
c9:64:41:44:bc:70:4a:04:d0:2d:aa:b7:21:fe:d9:
5a:4d:a3:d5:5c:15:18:bb:e8:df:64:bf:11:19:ed:
ce:2b:ae:a9:0e:66:71:6d:d5:18:1f:a1:47:8c:7e:
f2:33:38:1e:71:c6:85:ca:65:93:9d:8b:d0:8b:4b:
bf:97:e4:a1:3f:ff:27:12:49:26:f2:28:84:d4:f1:
7b:0c:bd:99:dc:b1:0c:78:ef:64:38:a5:81:07:1d:
00:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F8:06:16:FC:FA:2D:09:8E:40:FC:6D:A9:A3:09:FD:84:C6:36:DF
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/1-vgGFvz6LQmOQPxtqaMJ_YTGNt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:8f::/48
Signature Algorithm: sha256WithRSAEncryption
bb:d8:65:fc:c9:ea:f5:2d:63:e5:cc:fa:95:c3:34:69:6d:51:
90:21:e7:49:ca:b6:db:57:6a:29:c9:35:0f:c4:34:92:2d:64:
39:d2:56:23:89:1c:43:4b:5a:a1:d0:06:61:d7:61:97:a8:cb:
79:f5:e5:bd:a3:e2:84:02:b8:6f:c8:42:17:41:3a:4f:81:b5:
c2:b2:27:56:94:10:be:2f:d3:73:5a:f1:42:75:a4:76:6f:06:
28:a1:20:b9:db:46:ee:2e:62:fb:74:6f:a1:4f:a4:24:4d:69:
b6:c6:86:8c:4e:37:68:63:04:82:3a:92:a7:2e:ec:8f:d5:ae:
21:5c:d3:89:be:6d:3c:42:4e:7a:16:9c:ad:b6:f6:bc:15:32:
36:69:38:38:28:0d:0f:4a:a5:2d:a7:d7:4e:e9:ac:14:be:ae:
49:b1:9e:8c:d7:6e:fa:ea:59:a9:5b:31:55:0e:c9:df:5c:ad:
d1:fa:88:4e:3f:0e:2f:47:70:fe:47:60:63:af:a6:25:c3:7e:
bd:7e:ea:a3:1b:1c:9b:13:01:5b:f5:b7:db:c8:84:ac:16:6c:
58:b1:77:6d:d0:0c:30:32:b3:c0:a6:74:d2:7b:70:a1:44:7b:
53:1e:38:00:68:84:a8:b4:64:5d:4c:2e:7a:e3:70:bb:d1:b1:
2b:6f:a1:cf
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAZzf2RJOcGqJhA126Os08XMGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZDI0MjQxMjNlZDA3NzI1MzMwYmY4MTc5NDRmZDI3NmI3
Y2EzNmIwHhcNMjYwMzEyMDIyMTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWY4MDYxNmZjZmEyZDA5OGU0MGZjNmRhOWEzMDlmZDg0YzYzNmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+bMa+7yLXS4wemr+Dqarayr55E/
/a9DgmX3gGHIxfO5OQ7EJAdLH3jN20sZuzH7dAbJYMUCD9+v2UBXhENISe1mpyIJ
X/nvFIEEIX1nr8lJNY6894vjjHqAe3Qq+BUav1DCzbJIkUe+Q4piqoqQlBmXVM9T
314CmH3ZqtHpo29kBoLwNH0awm0jeU6nau7YbMb1xt3J3T1YKUKcQjIKkqaPJmjJ
ZEFEvHBKBNAtqrch/tlaTaPVXBUYu+jfZL8RGe3OK66pDmZxbdUYH6FHjH7yMzge
ccaFymWTnYvQi0u/l+ShP/8nEkkm8iiE1PF7DL2Z3LEMeO9kOKWBBx0AGwIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPr4Bhb8+i0JjkD8bamjCf2ExjbfMB8GA1UdIwQY
MBaAFDHSQkEj7QdyUzC/gXlE/SdrfKNrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWRKQ1FTUHRCM0pUTUwtQmVVVDlKMnQ4bzJzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8xYTZiMTctZTNmZS00YzZkLWI4YzEt
ZWQ4Y2ZhZjFiODFmLzEvMS12Z0dGdno2TFFtT1FQeHRxYU1KX1lUR050OC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTkvMWE2YjE3LWUzZmUtNGM2ZC1iOGMxLWVkOGNmYWYxYjgx
Zi8xL01kSkNRU1B0QjNKVE1MLUJlVVQ5SjJ0OG8ycy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoGmAEA
jzANBgkqhkiG9w0BAQsFAAOCAQEAu9hl/Mnq9S1j5cz6lcM0aW1RkCHnScq221dq
Kck1D8Q0ki1kOdJWI4kcQ0taodAGYddhl6jLefXlvaPihAK4b8hCF0E6T4G1wrIn
VpQQvi/Tc1rxQnWkdm8GKKEgudtG7i5i+3RvoU+kJE1ptsaGjE43aGMEgjqSpy7s
j9WuIVzTib5tPEJOehacrbb2vBUyNmk4OCgND0qlLafXTumsFL6uSbGejNdu+upZ
qVsxVQ7J31yt0fqITj8OL0dw/kdgY6+mJcN+vX7qoxscmxMBW/W328iErBZsWLF3
bdAMMDKzwKZ00ntwoUR7Ux44AGiEqLRkXUwueuNwu9GxK2+hzw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:18:35 2026 by rpki-client