Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/FpEdWUHQL_0TrvDhhVtYR9F-0oo.roa
File: FpEdWUHQL_0TrvDhhVtYR9F-0oo.roa (raw, json)
Hash identifier: I3Xq4YVk31Rf5x+emOMZmlNqx+4FTfz2qea0Dug+Q1I=
Subject key identifier: 16:91:1D:59:41:D0:2F:FD:13:AE:F0:E1:85:5B:58:47:D1:7E:D2:8A
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019D93854F8A27AAA586D32BF8DC7669E414
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/FpEdWUHQL_0TrvDhhVtYR9F-0oo.roa
Signing time: Wed 15 Apr 2026 23:41:20 +0000
ROA not before: Wed 15 Apr 2026 23:41:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197959
IP address blocks: 185.154.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:93:85:4f:8a:27:aa:a5:86:d3:2b:f8:dc:76:69:e4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Apr 15 23:41:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=16911d5941d02ffd13aef0e1855b5847d17ed28a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6b:58:9b:87:e1:7f:2c:81:3a:47:2d:40:3e:
92:45:53:b8:57:5c:92:d3:80:95:eb:4a:eb:f6:54:
d3:86:4b:5f:df:a1:ce:91:47:3e:1e:22:57:2a:99:
37:f7:57:df:6b:d6:34:bf:99:f7:1e:13:63:46:83:
3c:8e:db:21:b8:17:e4:56:af:0a:83:3c:98:f4:24:
3f:f9:f5:10:c9:57:b5:0f:29:48:40:02:bf:52:6c:
79:ce:4d:29:bf:bb:23:6f:04:28:c4:81:c5:9f:91:
90:98:6d:d4:4e:c9:bf:6c:d6:75:00:8a:63:f4:47:
50:d2:29:e8:0b:7f:fa:83:b7:5a:a6:d3:f1:15:ca:
69:9d:7f:ce:95:bd:a3:53:5b:73:9c:5e:98:99:2f:
65:94:28:ca:ad:a6:1f:8a:5a:03:5b:47:6f:3b:87:
66:59:69:87:8e:10:b8:d2:b6:0c:9d:bb:ff:12:4c:
93:5f:fe:71:c4:7e:8a:96:6e:c5:83:f8:25:a8:85:
b8:ab:95:88:ef:5f:21:7a:44:6b:7c:c1:35:64:b6:
cf:59:b7:ff:06:36:45:8b:fa:98:df:80:7e:af:3a:
7a:a9:bb:f4:42:33:cf:05:cc:c3:9a:b3:eb:5d:81:
b2:e3:4c:39:0a:22:6f:ab:c7:8a:b6:6e:5a:35:bd:
0d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:91:1D:59:41:D0:2F:FD:13:AE:F0:E1:85:5B:58:47:D1:7E:D2:8A
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/FpEdWUHQL_0TrvDhhVtYR9F-0oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.153.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:44:53:ae:f7:f3:e8:7f:16:a7:6f:ad:95:ea:b5:2a:fa:10:
9f:09:79:75:b4:dd:64:35:f0:f6:bb:af:06:59:97:1a:e7:a3:
66:17:0b:bc:fc:d3:12:b3:21:91:ff:af:00:e5:53:58:ec:e9:
1a:4b:5c:6c:e2:16:d2:05:0f:37:1f:24:e7:ec:f6:53:89:0a:
77:e9:c1:b7:71:6e:65:eb:71:17:22:ad:ca:df:7b:dd:3d:0c:
1b:01:2d:fc:1e:e6:b6:7c:16:7b:e3:c5:f9:31:3f:03:2a:cf:
b9:91:67:a8:2b:d8:e2:5c:22:97:03:c4:fc:7f:be:4d:08:bc:
ed:07:a3:68:aa:fc:1b:15:14:42:34:b6:d7:47:97:9e:08:60:
ae:24:2e:74:61:7a:74:ce:97:83:42:35:e6:82:d6:c6:b6:85:
a2:ad:c5:08:24:2c:b3:e7:15:81:18:93:73:f5:5f:98:5d:04:
c9:4b:e9:d2:12:eb:de:c3:9f:14:ee:64:7f:29:14:70:ae:cf:
0a:d8:92:0c:72:a8:21:f5:9d:c1:7e:cd:96:b3:14:ae:e9:d8:
3c:aa:be:b2:c8:16:21:73:05:85:68:6f:39:0d:5d:cd:6f:69:
df:56:07:65:4c:09:d7:ce:bc:14:12:08:8d:ff:39:dc:fa:79:
c0:e1:f9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:48:59 2026 by rpki-client