Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l_v8wGpeNwC9ZT28Ti32qejrz7s.roa
File: l_v8wGpeNwC9ZT28Ti32qejrz7s.roa (raw, json)
Hash identifier: SMCRXOwObktZBcmY0uS3btTgWRJHeqMmgvai6F7iLh8=
Subject key identifier: 97:FB:FC:C0:6A:5E:37:00:BD:65:3D:BC:4E:2D:F6:A9:E8:EB:CF:BB
Certificate issuer: /CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Certificate serial: 019CC2F2EFD54BA9C4C26388AD4E7F5A0BCC
Authority key identifier: 0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l_v8wGpeNwC9ZT28Ti32qejrz7s.roa
Signing time: Fri 06 Mar 2026 11:40:26 +0000
ROA not before: Fri 06 Mar 2026 11:40:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 60664
IP address blocks: 185.97.176.0/24 maxlen: 24
185.97.177.0/24 maxlen: 24
185.97.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c2:f2:ef:d5:4b:a9:c4:c2:63:88:ad:4e:7f:5a:0b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Validity
Not Before: Mar 6 11:40:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=97fbfcc06a5e3700bd653dbc4e2df6a9e8ebcfbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:12:79:d5:61:b1:af:2c:d0:d4:08:ba:7c:31:
0d:33:fe:f0:25:fc:75:47:05:b8:f6:42:3b:79:1b:
7d:60:17:ab:b7:4c:62:8c:52:0d:64:2c:d7:01:bd:
d5:3c:f8:6c:b3:08:6e:50:78:6f:2e:cd:12:c5:d4:
e4:5b:59:34:66:b2:8b:75:e0:aa:83:ed:c0:b8:d4:
82:e0:87:ee:e3:57:c8:a4:70:73:6d:f4:41:13:41:
f8:aa:eb:ec:20:b0:76:09:b5:50:a3:8c:a5:7b:eb:
2e:37:4d:3b:6d:89:6d:45:5c:0d:84:ac:a9:9c:32:
bf:e6:f5:3d:eb:89:d2:1c:17:9c:8a:ad:1e:81:ef:
43:30:d6:a3:5b:50:7c:1b:75:97:2b:c2:4d:e7:81:
e4:9b:fe:43:eb:36:51:1f:ba:54:96:1f:0f:62:e6:
7e:2b:01:54:82:fe:f9:15:7d:3b:41:d4:c9:4e:6f:
c0:74:d6:e2:4a:5b:05:f8:77:31:28:13:70:9d:bc:
47:c8:a8:97:f4:f3:b4:4f:7b:09:d2:7c:7c:2a:de:
c9:40:87:3a:54:7d:08:02:92:58:68:2a:8a:3b:01:
70:21:ca:a5:2f:5b:de:9b:2b:e0:ac:82:c8:28:2f:
d2:77:e1:27:6c:51:f7:2d:44:a4:75:b7:38:4e:a6:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FB:FC:C0:6A:5E:37:00:BD:65:3D:BC:4E:2D:F6:A9:E8:EB:CF:BB
X509v3 Authority Key Identifier:
keyid:0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l_v8wGpeNwC9ZT28Ti32qejrz7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.176.0-185.97.178.255
Signature Algorithm: sha256WithRSAEncryption
87:46:2e:fd:1a:de:b4:f0:d6:58:cb:ca:b7:72:21:3a:2a:06:
40:89:48:e9:50:d6:c2:aa:08:6f:85:1a:c5:7b:b5:02:7d:f1:
91:91:f3:b9:d8:b5:45:1a:d2:b4:02:be:98:e5:a5:27:d6:04:
a3:be:29:13:83:6d:98:0c:13:64:91:4a:99:94:6a:77:d4:40:
fd:7d:8a:e3:e7:b7:cd:90:22:dd:29:ad:95:1d:01:34:f1:fe:
24:b1:d9:e2:7d:30:6b:f9:2d:70:db:37:da:e8:84:4d:fb:0a:
b1:9a:26:46:0b:32:bc:46:5f:99:5d:7b:6f:5a:47:53:2d:33:
f4:09:d7:dc:23:2b:d4:3e:49:95:35:e0:73:0c:a9:76:01:07:
f3:78:fc:e6:dd:ca:e6:33:78:2c:2d:2b:14:18:df:9a:cc:b4:
01:8a:30:ff:e0:a3:3e:bc:db:cb:23:82:1c:79:3a:46:25:7e:
06:e9:f0:3b:c5:9c:88:e7:f1:8b:4b:fa:58:51:af:73:24:86:
7d:13:28:69:02:34:d6:20:9a:b9:27:68:77:84:45:41:63:3f:
de:16:c4:53:de:a2:d4:02:92:90:0d:89:3c:d3:6d:f5:2d:21:
d1:13:5c:88:cc:b4:42:88:a6:57:70:8c:35:cd:1c:32:87:f3:
1e:7f:05:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:07:21 2026 by rpki-client