Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/F5d-Fefpo1nr_WMgmAsbMQGwWxA.roa
File: F5d-Fefpo1nr_WMgmAsbMQGwWxA.roa (raw, json)
Hash identifier: 7NUtw1c6NkOSFEAr9XUq8WZvoPwsa9AVTm9Pdvhvawo=
Subject key identifier: 17:97:7E:15:E7:E9:A3:59:EB:FD:63:20:98:0B:1B:31:01:B0:5B:10
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019E15D0107FB47CF436AB01B2A2CC233D37
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/F5d-Fefpo1nr_WMgmAsbMQGwWxA.roa
Signing time: Mon 11 May 2026 06:53:37 +0000
ROA not before: Mon 11 May 2026 06:53:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209888
IP address blocks: 82.152.128.0/24 maxlen: 24
82.152.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:15:d0:10:7f:b4:7c:f4:36:ab:01:b2:a2:cc:23:3d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: May 11 06:53:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=17977e15e7e9a359ebfd6320980b1b3101b05b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d8:8d:b6:a4:ce:99:3d:70:c6:2a:05:6d:71:
a1:6e:b3:db:1a:37:38:3b:51:96:22:33:22:bd:be:
ce:6f:25:a2:58:37:f0:0c:62:4b:27:80:4c:de:08:
dd:3f:86:e6:29:aa:29:c4:83:cd:a0:0c:31:c7:70:
68:e2:7d:97:19:94:a8:3c:76:b9:44:8d:41:6f:f7:
2f:ed:9a:81:a4:cd:43:f2:be:a5:79:67:24:d8:3f:
e0:32:f2:0d:fa:b2:ca:07:0b:cf:10:37:d9:ac:57:
9e:83:cb:50:94:e7:a3:b9:66:1a:30:2f:ff:97:9e:
3d:fc:bc:c0:c7:38:5f:03:90:9d:54:79:c4:2b:ff:
57:d8:17:9e:b8:ef:af:fc:51:1f:b4:9b:91:57:32:
80:c6:94:45:d1:01:3b:a6:ac:73:ea:04:fe:a2:40:
ad:b8:07:e8:b0:e5:7a:89:85:64:c0:44:96:f2:29:
46:d6:4e:eb:69:e6:f7:ab:78:bf:44:ea:40:f1:f4:
5b:2d:0d:85:14:19:9a:7e:6b:89:39:10:30:6f:79:
11:86:96:1a:d2:12:c7:98:5e:fd:57:79:4d:d2:19:
03:8f:e0:b6:03:d2:36:9b:42:0c:f7:45:ea:e7:13:
87:21:99:f4:f4:58:f0:4e:51:b4:29:19:18:0c:a7:
61:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:97:7E:15:E7:E9:A3:59:EB:FD:63:20:98:0B:1B:31:01:B0:5B:10
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/F5d-Fefpo1nr_WMgmAsbMQGwWxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.128.0/24
82.152.130.0/24
Signature Algorithm: sha256WithRSAEncryption
45:bb:0d:68:43:1e:64:ab:6b:d6:87:d8:da:cb:3c:20:ae:0f:
2e:be:5a:d9:89:68:9d:55:49:bb:3b:96:c1:7f:c5:c3:73:7a:
07:f6:27:94:b8:19:9f:5b:b2:7b:ca:65:89:17:44:c0:f6:16:
aa:9b:db:ce:6c:d9:b7:3c:12:61:3c:2f:cc:c4:b2:08:b3:90:
f6:2c:2d:4d:3f:0e:07:26:34:9c:58:20:73:59:79:23:e5:8c:
18:3a:b0:80:20:3f:2e:c3:87:e1:af:43:48:d1:37:d8:ad:2f:
5c:f7:38:79:d7:79:24:91:8a:c3:83:39:ca:52:9e:0b:f2:5a:
37:7c:e7:66:df:c9:e4:e0:eb:ea:8e:ec:dd:e8:0a:4c:ae:4c:
14:c3:e2:7c:d3:7f:09:bb:38:be:86:2a:76:00:2d:f3:19:a3:
3d:01:b6:02:4d:14:d6:0f:f6:49:e5:c1:6f:01:f5:30:8b:37:
9c:34:97:4c:56:84:22:e3:56:c4:f2:61:3c:21:f4:3d:c3:6f:
c2:f4:71:16:54:40:65:39:f1:b2:78:ad:62:8d:b4:f0:71:71:
a7:0e:cb:1d:fc:10:4e:66:3f:2a:d4:c6:31:95:86:1f:f3:1b:
dc:11:41:4e:73:41:01:fb:35:eb:f7:d8:52:bb:8f:0a:d5:dd:
bf:fd:f6:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:11 2026 by rpki-client