Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZUOpu_rQkVnanvi07cqM6U6vsPM.roa
File: ZUOpu_rQkVnanvi07cqM6U6vsPM.roa (raw, json)
Hash identifier: LFQQD7rqJ/l8Gc1eW79Ln9AAkzXePU/tZnl4hg1/tLs=
Subject key identifier: 65:43:A9:BB:FA:D0:91:59:DA:9E:F8:B4:ED:CA:8C:E9:4E:AF:B0:F3
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E17CEEE73CCA320C606359CD521235A16
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZUOpu_rQkVnanvi07cqM6U6vsPM.roa
Signing time: Mon 11 May 2026 16:11:37 +0000
ROA not before: Mon 11 May 2026 16:11:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197477
IP address blocks: 151.243.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:17:ce:ee:73:cc:a3:20:c6:06:35:9c:d5:21:23:5a:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 11 16:11:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6543a9bbfad09159da9ef8b4edca8ce94eafb0f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:14:f4:4e:82:b4:f0:fc:ca:90:e7:50:19:
70:df:e9:59:fc:50:60:62:16:a1:ec:a0:0e:ae:ea:
79:85:58:d0:4d:15:42:6a:b9:fd:c9:15:e5:67:e4:
a2:c8:0a:c6:68:ce:00:60:14:78:79:7f:de:e7:91:
6b:46:94:f1:da:ef:32:c7:cf:02:21:cf:9b:9a:8a:
3a:d5:ca:03:2e:4b:53:2c:28:20:8f:d1:5f:5a:29:
a4:8b:9f:14:f8:f1:82:a3:f4:9e:37:d3:7c:d6:91:
a6:ee:dd:fe:36:b5:21:1d:0b:40:99:f2:f6:eb:7e:
99:aa:56:de:aa:8a:97:5e:f9:ab:07:95:59:87:5b:
5d:60:0e:b9:fd:8d:52:e9:24:52:e6:24:14:2a:18:
b4:ac:42:2c:74:08:b7:0b:a4:be:6f:d4:16:33:f6:
42:15:7f:e6:9c:dd:28:60:e7:2d:f3:73:dd:a5:5d:
69:1a:e3:5f:8e:b8:3d:65:2c:09:b7:57:4a:16:a2:
ea:08:80:40:ca:09:0d:1d:4f:46:ee:08:5b:aa:91:
2a:98:60:f7:f7:39:d8:54:11:a7:b5:9e:6d:54:8d:
6a:4e:60:e0:de:3c:d8:e8:33:ad:e2:db:c2:23:8e:
92:b4:40:41:85:ec:19:bc:5d:58:3d:72:83:1a:7a:
5e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:43:A9:BB:FA:D0:91:59:DA:9E:F8:B4:ED:CA:8C:E9:4E:AF:B0:F3
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZUOpu_rQkVnanvi07cqM6U6vsPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.57.0/24
Signature Algorithm: sha256WithRSAEncryption
26:2c:c4:fc:dd:7a:67:d6:ec:ec:a5:b0:d7:b1:07:11:8f:39:
ce:b7:64:a0:d6:e8:08:df:c1:dd:46:17:02:d9:89:2c:39:50:
bf:dd:89:87:10:e4:dc:60:0e:ad:81:8c:c1:f2:26:d0:32:ac:
e6:16:9d:92:f8:d4:a1:2e:6c:b5:03:34:6f:c0:73:3f:80:c1:
c8:27:98:7a:f7:b5:ef:20:18:5d:91:2e:1a:9a:44:32:c1:9d:
0e:e8:41:ce:c7:cc:bf:9f:2c:c8:b8:9b:f7:4c:df:12:7a:40:
fd:98:2c:e2:12:92:26:56:56:df:1d:c2:6e:b8:ca:ed:d9:9c:
75:a0:c1:1d:02:d5:42:7c:c0:de:18:a2:c6:9b:6b:84:a5:21:
e9:1c:bc:a4:52:d1:4e:49:74:ba:61:bf:a5:9f:11:e9:35:91:
56:c1:a8:41:49:1b:64:8a:0c:47:f9:39:40:23:65:1c:1a:9b:
8d:40:f1:38:63:f9:b9:24:58:d2:2f:e4:f5:38:72:31:81:1f:
b2:8d:2e:28:7d:d4:c4:67:2f:ce:fe:fe:f0:6c:47:15:37:ae:
fa:8a:37:93:fe:bc:aa:60:7c:85:26:b7:7a:2d:d8:82:be:87:
96:2b:f1:59:a7:ce:32:5d:55:39:4d:ec:ed:94:29:fa:f7:ff:
14:83:4c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:47:37 2026 by rpki-client