Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/X7_AnCYj6KG81iuZFXkXCSkRGt0.roa
File: X7_AnCYj6KG81iuZFXkXCSkRGt0.roa (raw, json)
Hash identifier: SX9+Te5BzNZbNPTRep0F82YIXtUdzBRTbflrss8xGE8=
Subject key identifier: 5F:BF:C0:9C:26:23:E8:A1:BC:D6:2B:99:15:79:17:09:29:11:1A:DD
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E029736000764AE0ADD0C618FB0ED24BE
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/X7_AnCYj6KG81iuZFXkXCSkRGt0.roa
Signing time: Thu 07 May 2026 13:18:44 +0000
ROA not before: Thu 07 May 2026 13:18:44 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 154284
IP address blocks: 151.245.180.0/24 maxlen: 24
151.245.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:02:97:36:00:07:64:ae:0a:dd:0c:61:8f:b0:ed:24:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 7 13:18:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5fbfc09c2623e8a1bcd62b991579170929111add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:da:19:b2:88:7a:62:13:54:a4:9c:33:f0:c4:
37:98:de:62:21:6c:73:03:97:03:8c:74:3a:b7:1f:
b6:f2:da:6e:16:59:aa:9d:d9:01:06:a7:8c:a1:a5:
d2:77:d9:55:a7:a2:b1:a1:70:ba:ec:88:b8:4c:95:
dc:f8:0e:0e:8f:49:c0:5b:a6:a1:99:bb:6e:d2:56:
2e:25:e7:85:e8:de:32:5b:bf:23:d6:2e:13:85:ae:
12:52:72:65:73:d4:00:1d:d8:74:a5:15:cf:be:24:
a1:39:ce:b7:6a:33:52:1b:97:12:21:44:d8:9e:bd:
3c:46:de:7c:fd:52:5c:57:9c:e9:e2:1d:2b:c4:3e:
a7:01:c7:37:13:a4:4c:41:42:de:81:15:32:fa:4a:
e0:bf:ad:7c:9b:5b:54:51:74:04:72:ae:26:35:64:
d4:a1:aa:a8:1d:4f:b8:15:ce:4e:ee:14:1a:59:19:
d5:7a:df:72:7b:54:21:97:fa:ea:44:35:0a:da:20:
43:f7:27:26:60:33:1c:8a:17:27:ee:eb:f5:d0:a5:
e9:13:a3:20:29:52:c2:eb:9c:3f:16:15:3f:d7:4e:
e7:f7:71:b2:92:7d:4f:9d:ed:ea:7a:42:e1:fb:1b:
ee:12:47:ee:e2:32:c6:80:2f:90:79:80:ac:8b:68:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BF:C0:9C:26:23:E8:A1:BC:D6:2B:99:15:79:17:09:29:11:1A:DD
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/X7_AnCYj6KG81iuZFXkXCSkRGt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.245.180.0/24
151.245.183.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9f:c3:d5:ca:fa:2d:55:ce:ff:d4:ed:2c:fd:17:88:4f:3c:
04:6d:c9:c0:12:e3:46:d6:85:f1:d0:e9:34:e9:94:29:8b:1b:
1a:04:93:d9:00:ad:d4:e4:57:05:2e:95:ba:4a:01:aa:9e:6d:
7b:1d:5e:7c:9f:f7:08:1f:bd:ea:55:4b:57:93:e6:d7:2b:d4:
10:aa:23:5b:db:44:5b:2a:e6:22:9c:d0:e2:10:6b:ec:c9:bb:
77:38:2f:b0:96:b2:d4:c8:2e:bf:b9:87:4a:e6:11:63:b1:d2:
51:2c:92:ef:15:62:fb:63:d2:ba:40:36:98:61:34:ef:92:29:
bb:73:f0:3e:97:b7:15:ca:f1:bd:0a:97:01:15:37:ad:06:a7:
95:9a:8b:49:5b:2d:25:64:52:3b:7a:2c:2f:64:37:c1:9a:e6:
21:5e:6f:3c:46:19:b7:33:08:37:0a:63:2d:8c:a1:a1:69:27:
71:87:12:33:4e:a6:26:7c:71:91:46:16:81:25:e8:18:6e:ec:
af:3d:9a:b0:8c:5e:5d:21:0a:07:3c:70:18:86:c8:b8:c1:4d:
54:77:36:81:f9:f9:40:4c:49:c3:55:db:e7:a9:3e:db:53:af:
05:48:8e:75:c8:c1:d1:91:33:84:b1:14:08:63:29:ca:bb:db:
b2:2f:54:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:56:10 2026 by rpki-client