Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/m6vsupmeQyRql3T3GouMS7KNoJg.roa
File: m6vsupmeQyRql3T3GouMS7KNoJg.roa (raw, json)
Hash identifier: ub8NUciskZsNMLT5E/zB0AhxXJIQy76bdWzUvUmIcvs=
Subject key identifier: 9B:AB:EC:BA:99:9E:43:24:6A:97:74:F7:1A:8B:8C:4B:B2:8D:A0:98
Certificate issuer: /CN=5fe53c0bfc3c8fb56b81191317144443e0e29d25
Certificate serial: 019DF8813B4FCBF2615AECD4AC2DD568FA57
Authority key identifier: 5F:E5:3C:0B:FC:3C:8F:B5:6B:81:19:13:17:14:44:43:E0:E2:9D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/m6vsupmeQyRql3T3GouMS7KNoJg.roa
Signing time: Tue 05 May 2026 14:18:32 +0000
ROA not before: Tue 05 May 2026 14:18:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 35661
IP address blocks: 89.126.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f8:81:3b:4f:cb:f2:61:5a:ec:d4:ac:2d:d5:68:fa:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fe53c0bfc3c8fb56b81191317144443e0e29d25
Validity
Not Before: May 5 14:18:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9babecba999e43246a9774f71a8b8c4bb28da098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:39:f7:9d:a2:2c:6f:09:11:29:c2:bc:13:31:
10:58:c6:f3:2d:84:dd:29:5c:b0:47:d9:6f:74:60:
59:52:2c:ba:5a:79:99:01:33:6c:91:ef:09:f0:67:
9c:4f:39:80:05:3e:08:bf:7d:72:42:ce:20:89:63:
78:32:56:81:06:59:ae:21:2d:3e:63:94:85:b4:cb:
38:93:73:48:3f:10:09:c0:12:e3:0b:ee:b9:b1:42:
3a:24:80:b2:c8:56:1e:63:05:33:77:3e:70:5b:1a:
ff:79:55:e5:7d:98:3d:33:2f:e5:19:fd:cc:0e:71:
f3:4c:78:26:85:91:9b:8c:4b:4c:80:87:2d:4e:aa:
60:58:c6:a3:48:65:4d:46:66:fe:e3:ad:99:46:be:
51:2a:44:35:47:eb:a5:c0:06:98:e4:38:87:e0:06:
4d:38:64:d1:20:61:d2:af:33:03:c3:7d:87:50:10:
d6:2e:e6:8a:e6:25:91:9c:74:70:9a:6d:b9:e1:aa:
67:f0:87:63:01:7b:44:87:59:c5:91:67:9d:6d:a7:
26:8a:0a:81:90:b6:8a:de:35:1e:39:92:27:f8:e2:
2f:d9:f3:cc:d5:6b:ba:42:6b:c6:24:c5:92:12:2b:
86:0e:94:eb:7f:9d:30:35:89:e9:d4:9b:5c:d5:9c:
b0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:AB:EC:BA:99:9E:43:24:6A:97:74:F7:1A:8B:8C:4B:B2:8D:A0:98
X509v3 Authority Key Identifier:
keyid:5F:E5:3C:0B:FC:3C:8F:B5:6B:81:19:13:17:14:44:43:E0:E2:9D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X-U8C_w8j7VrgRkTFxREQ-DinSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/m6vsupmeQyRql3T3GouMS7KNoJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bc6089-3d90-4529-bb47-5cf56ee435b3/1/X-U8C_w8j7VrgRkTFxREQ-DinSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.126.226.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:81:f0:7d:5f:47:f7:53:e7:19:9c:d2:42:b6:0e:05:09:8c:
4d:01:14:3e:8b:a4:41:31:e0:c4:81:fa:d5:de:68:c6:84:e3:
36:69:e3:58:49:75:78:df:8d:a1:44:e1:be:15:4b:6b:bf:81:
4a:86:29:43:e6:0f:fa:cb:1a:de:01:42:b4:78:5d:a7:42:7d:
88:d3:d3:1c:70:52:44:77:54:e4:e4:a0:c4:7f:f1:b6:05:9f:
bc:17:af:73:2f:45:26:ca:88:0e:b1:00:7d:08:a6:80:57:2c:
6c:d7:85:82:0a:c8:c5:30:72:37:c3:2c:da:dc:42:4e:7e:1b:
db:60:04:f6:81:09:e2:43:a9:0e:f1:68:31:61:89:8f:9f:02:
ad:dd:d8:8e:22:e9:58:7b:15:b6:d7:9c:77:79:02:2f:89:17:
98:ae:1c:c0:0d:d9:4e:cd:41:d6:12:16:3c:d6:13:0b:29:59:
24:8f:87:b4:e4:d0:76:6a:d3:2c:74:e7:f6:aa:54:57:0e:70:
52:5f:1f:a4:45:42:90:85:5d:f1:db:07:1e:1c:30:10:37:df:
02:fd:a3:fc:26:29:6b:69:ec:28:50:e5:98:66:12:5b:ee:4a:
dc:dc:71:0b:b8:74:da:fa:26:fa:41:46:72:f8:4a:90:80:6a:
e5:12:3b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:45:33 2026 by rpki-client