Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gf0l764dBGWBSFfD4iEdLBzgluQ.roa
File: gf0l764dBGWBSFfD4iEdLBzgluQ.roa (raw, json)
Hash identifier: l2LIMXq8STm7m0Su/iNkNHfDfsCqXkaY58vZmbm8UNI=
Subject key identifier: 81:FD:25:EF:AE:1D:04:65:81:48:57:C3:E2:21:1D:2C:1C:E0:96:E4
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019DFBE53009A207727F85E1B1909D6C2456
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gf0l764dBGWBSFfD4iEdLBzgluQ.roa
Signing time: Wed 06 May 2026 06:06:34 +0000
ROA not before: Wed 06 May 2026 06:06:34 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201386
IP address blocks: 151.242.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fb:e5:30:09:a2:07:72:7f:85:e1:b1:90:9d:6c:24:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 6 06:06:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=81fd25efae1d0465814857c3e2211d2c1ce096e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:95:97:cb:e5:a7:ab:fe:50:d9:8c:c7:49:fa:
db:3f:c1:49:74:21:f4:b4:a8:4a:a4:e3:6d:bf:d1:
a9:54:32:9f:14:2a:40:f2:14:01:6d:99:27:80:80:
a1:b4:e2:0c:2a:9d:bb:f7:4e:4a:39:db:36:66:3c:
eb:e1:72:d4:63:f9:3e:80:c1:dd:46:d0:31:e6:e0:
9f:49:58:c3:28:0f:0f:9e:e7:63:3d:a7:a7:5f:86:
e4:a0:13:4e:3a:93:f6:b1:56:f0:f8:57:5f:70:56:
2e:00:57:73:d4:15:1b:aa:a4:98:a5:b3:9b:fc:40:
fc:76:e2:08:2d:70:74:da:0e:0c:e9:4a:d2:e5:61:
15:00:c6:3f:f1:21:f6:47:f8:d4:d8:03:89:0f:12:
e7:bc:79:f7:7a:dc:64:06:6e:6f:e4:38:1b:24:90:
be:02:d9:50:8b:35:f2:4d:98:16:46:e8:cc:46:74:
fc:8f:a0:04:02:73:a4:a9:59:91:39:f0:61:2e:76:
b5:8d:d6:3b:d8:d0:f6:a1:14:ed:53:29:fd:56:72:
a2:f4:bd:8d:f2:ee:a4:2a:e3:5e:a6:05:04:d5:46:
53:15:dd:05:ca:fa:97:e1:fb:24:7b:dd:64:df:2f:
13:3b:f3:28:11:85:a1:77:2d:a8:11:3f:58:d8:65:
d1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FD:25:EF:AE:1D:04:65:81:48:57:C3:E2:21:1D:2C:1C:E0:96:E4
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gf0l764dBGWBSFfD4iEdLBzgluQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.179.0/24
Signature Algorithm: sha256WithRSAEncryption
53:89:06:f1:6e:69:5b:ef:2f:d4:f5:cb:22:36:f5:58:30:74:
9d:07:5d:87:03:91:59:ee:a6:2e:73:b8:f7:e3:cc:71:be:fd:
bb:b3:1c:5e:42:17:2f:f9:b2:9f:28:84:a1:2b:d7:68:e1:16:
30:44:3c:e6:e9:aa:17:af:42:e9:34:b6:b7:8f:ff:5b:73:b5:
91:3a:bf:e4:2a:b9:9e:47:94:15:be:29:85:71:06:2c:1f:18:
2f:77:9a:36:4b:86:d2:ad:1a:e5:bf:3a:f7:b8:8e:e0:9c:b2:
10:5b:9e:54:54:03:87:d9:2a:cb:04:3d:44:73:4a:b1:ea:39:
33:41:82:d5:e8:eb:58:32:73:92:dd:49:95:f5:23:d4:2c:fa:
78:cf:2b:3d:e9:97:c5:24:9a:74:1d:da:36:86:bb:21:37:84:
d8:60:a4:4c:5e:98:93:d0:87:0c:66:61:c3:b4:74:fa:d7:6b:
7a:24:da:18:66:a5:2c:43:8b:be:9f:74:a0:9d:b2:7f:0a:00:
ac:a1:d1:fd:75:1e:82:52:6b:bc:2a:e4:62:84:14:d9:ad:9b:
92:20:d3:0f:ee:70:8c:9d:cc:66:66:c4:af:9b:09:fa:1f:c9:
60:c3:87:81:ad:9b:5f:e6:70:5e:6d:3f:28:21:00:46:47:af:
7f:58:72:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:38:42 2026 by rpki-client