Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/rtn6c156EaagR1kcRnRsNMZxyg4.roa
File: rtn6c156EaagR1kcRnRsNMZxyg4.roa (raw, json)
Hash identifier: A5bss8RGW9xuFJxQ4HNFbJLiobOG+o+FrW7m0YxyHFs=
Subject key identifier: AE:D9:FA:73:5E:7A:11:A6:A0:47:59:1C:46:74:6C:34:C6:71:CA:0E
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019DB9F2BF3F4BA152B13543A59ED7C3DBB0
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/rtn6c156EaagR1kcRnRsNMZxyg4.roa
Signing time: Thu 23 Apr 2026 10:46:26 +0000
ROA not before: Thu 23 Apr 2026 10:46:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198526
IP address blocks: 2a03:5840:155::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b9:f2:bf:3f:4b:a1:52:b1:35:43:a5:9e:d7:c3:db:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Apr 23 10:46:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=aed9fa735e7a11a6a047591c46746c34c671ca0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d7:3e:81:47:64:3f:41:75:ca:37:0d:96:4d:
08:93:49:2f:e5:96:4c:d5:f8:41:1d:07:71:2f:d6:
ee:22:fc:51:bd:31:d0:4f:4a:5c:c5:67:06:36:7e:
90:7f:8d:fa:ca:5c:15:0f:d9:71:49:c2:41:50:f0:
8b:11:14:8d:d6:3c:0c:18:8e:d7:1a:f9:72:e0:6f:
1a:a8:31:e3:d0:df:15:93:4b:a6:83:2b:ac:e7:3f:
f9:1f:b1:6f:ec:d3:d2:11:c5:0e:a2:59:94:0f:c8:
4f:ca:74:d2:e6:4a:b3:06:5c:14:74:95:5d:bc:05:
30:c9:21:a3:98:93:bc:2b:72:07:c6:dd:0f:24:33:
7e:fd:ae:6c:4c:98:1a:8c:57:d9:f6:2a:57:92:e5:
93:c9:a6:48:1d:3a:bd:7d:6e:38:bd:f8:36:07:f3:
92:07:80:d8:27:1b:1a:df:52:c6:ad:5e:18:44:30:
22:81:f9:c9:5c:7d:d1:c5:d0:5e:e1:77:42:34:5d:
fb:3b:98:b3:80:74:a6:c0:8b:23:8d:c6:c4:4f:3d:
82:35:ec:aa:2c:bb:9e:df:5e:b0:7a:00:ef:43:40:
dc:47:eb:de:79:e6:23:72:63:22:4d:16:de:70:e0:
99:bf:35:0c:30:26:d5:5d:c5:31:28:95:d5:bc:c6:
19:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D9:FA:73:5E:7A:11:A6:A0:47:59:1C:46:74:6C:34:C6:71:CA:0E
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/rtn6c156EaagR1kcRnRsNMZxyg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:155::/48
Signature Algorithm: sha256WithRSAEncryption
19:b1:f5:b5:4b:c2:c6:2b:1f:6b:92:c9:1b:0b:81:95:e6:49:
ad:4a:66:08:ba:fe:84:bd:30:4b:44:45:ac:fe:bf:c8:b8:5b:
7e:54:2a:65:57:f2:77:d4:b6:7b:d2:1d:8c:ff:d0:ce:6c:2b:
17:27:4a:5a:3c:d4:f6:71:2f:e1:5f:4a:d4:64:92:6f:b0:28:
e8:0c:94:1c:60:61:4d:94:27:a6:7e:cf:ed:f2:4b:99:e9:44:
50:95:53:18:76:b8:be:7b:4d:c6:3e:c2:f2:3b:0e:a7:c2:83:
2e:eb:c7:23:8a:f0:c8:b9:c3:f9:4e:b4:55:b1:f3:b1:fc:a4:
ce:d3:5e:f0:a2:d3:5c:12:4a:89:8a:05:63:d1:24:44:d8:a5:
1f:bf:da:0a:e7:9f:b8:21:42:a8:a6:d4:0a:2e:70:02:54:3a:
bc:52:76:9c:19:e2:3a:ae:13:e8:e2:fb:f0:18:23:ed:8b:1f:
48:81:d4:c5:22:6e:59:86:15:dc:4d:11:25:97:f1:c3:01:f8:
ed:c8:5e:bf:ad:85:80:27:71:7e:55:96:23:0e:99:ed:ac:35:
f5:08:dc:33:41:a0:17:26:65:03:12:e5:ec:69:97:82:eb:a2:
92:03:ac:02:b3:fe:9d:92:78:82:a8:aa:ca:d5:99:2c:23:4d:
29:df:19:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:42:58 2026 by rpki-client