Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/_AA5fthFiTclsbhf6NA0nT4Steg.roa
File: _AA5fthFiTclsbhf6NA0nT4Steg.roa (raw, json)
Hash identifier: MDnWVYcQZKfA6/uFvn9trL+NakqMNIZrd3C9P79wBNc=
Subject key identifier: FC:00:39:7E:D8:45:89:37:25:B1:B8:5F:E8:D0:34:9D:3E:12:B5:E8
Certificate issuer: /CN=521f0cba10daa302e3b167cee5395f742f530b09
Certificate serial: 019E0E5959260F2977DCD201ED5909843B67
Authority key identifier: 52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/_AA5fthFiTclsbhf6NA0nT4Steg.roa
Signing time: Sat 09 May 2026 20:06:36 +0000
ROA not before: Sat 09 May 2026 20:06:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 397423
IP address blocks: 87.76.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0e:59:59:26:0f:29:77:dc:d2:01:ed:59:09:84:3b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521f0cba10daa302e3b167cee5395f742f530b09
Validity
Not Before: May 9 20:06:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fc00397ed845893725b1b85fe8d0349d3e12b5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:e4:3a:79:c9:bc:02:05:2d:1a:72:6c:20:
38:99:4c:c9:a3:7a:91:08:ab:99:8a:2a:4b:88:ca:
b1:6e:62:4c:92:7a:cc:4a:59:fb:b5:82:d0:e4:cb:
df:1e:51:fc:8f:32:98:cd:3d:e0:0b:0f:9e:72:85:
a0:e3:08:13:1d:c7:c0:fe:2c:ad:e6:f5:60:da:c1:
61:9e:dd:f0:43:87:92:f7:42:ed:37:8c:8c:dd:6c:
94:03:82:57:d1:27:a3:d8:9b:f7:ae:e6:3f:72:b8:
1e:c3:f8:3f:8e:de:57:2c:5b:1a:0d:82:09:57:f0:
d8:4b:e6:b4:ea:38:96:cf:5b:57:93:3b:c4:b1:99:
d7:ca:89:43:cb:c8:a0:3c:c3:07:4d:aa:d8:46:a5:
8b:3f:d0:30:ce:96:29:80:dd:b8:30:4c:fa:cd:7c:
6a:23:62:4c:39:4d:df:9f:40:3c:9d:2d:b3:94:13:
f6:ac:14:76:0b:8b:e2:79:e9:f5:5a:f5:05:5e:1d:
e4:b5:6d:8e:25:fb:f5:42:ef:72:53:79:7e:99:66:
8b:ae:ce:ff:bb:ce:d1:a9:1e:0d:7a:b6:2d:92:0e:
9b:f6:63:08:2b:79:92:cd:da:f5:79:e5:82:ef:c7:
4f:eb:2b:09:4c:05:0e:8f:73:fa:5c:ba:dd:5d:c4:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:00:39:7E:D8:45:89:37:25:B1:B8:5F:E8:D0:34:9D:3E:12:B5:E8
X509v3 Authority Key Identifier:
keyid:52:1F:0C:BA:10:DA:A3:02:E3:B1:67:CE:E5:39:5F:74:2F:53:0B:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh8MuhDaowLjsWfO5TlfdC9TCwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/_AA5fthFiTclsbhf6NA0nT4Steg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/68ce36-74e4-443b-aef1-3bb8b075d69f/1/Uh8MuhDaowLjsWfO5TlfdC9TCwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.76.208.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:07:80:84:eb:4a:a3:38:fe:4f:21:1a:0c:a4:2d:4d:82:58:
7c:bc:bf:fb:5a:04:68:00:d8:f9:03:b4:5c:59:45:bb:02:07:
68:23:97:85:1f:7c:1e:d9:81:82:4c:ac:84:d6:70:42:ac:a2:
7f:63:7c:55:66:9b:6a:a1:cb:17:40:bd:4b:20:33:97:52:94:
7a:ae:fa:65:3c:cb:84:72:05:6e:34:6f:5e:1e:d1:9b:d2:5e:
65:5b:c4:2c:7b:45:14:23:ce:24:fd:dd:98:71:b6:83:12:ee:
51:98:04:18:47:37:27:df:bd:98:c4:06:24:c2:ad:38:00:7c:
2f:93:7f:fd:f0:53:f0:74:dd:64:f2:51:fd:ee:c6:11:8d:a6:
f4:6d:19:2a:37:e6:52:e8:d7:3b:e5:2d:fc:70:4f:eb:cd:f4:
c0:c5:67:9e:a7:84:2d:ea:f0:c7:fc:71:9e:01:60:59:63:f3:
e1:31:8c:4f:53:1f:dc:09:d2:6a:9e:57:76:6e:d5:d9:74:90:
c4:56:9f:0d:21:dd:0a:8d:b7:8d:e1:9a:cd:14:9c:9a:1c:c7:
ce:17:4a:70:59:9d:d8:9c:aa:1b:09:5a:b0:2b:37:53:17:5b:
93:98:5c:24:df:8c:77:7f:12:44:52:a6:78:c6:40:36:77:e4:
72:89:b2:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ4OWVkmDyl33NIB7VkJhDtnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMWYwY2JhMTBkYWEzMDJlM2IxNjdjZWU1Mzk1Zjc0MmY1
MzBiMDkwHhcNMjYwNTA5MjAwNjM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzAwMzk3ZWQ4NDU4OTM3MjViMWI4NWZlOGQwMzQ5ZDNlMTJiNWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ7kOnnJvAIFLRpybCA4mUzJo3qR
CKuZiipLiMqxbmJMknrMSln7tYLQ5MvfHlH8jzKYzT3gCw+ecoWg4wgTHcfA/iyt
5vVg2sFhnt3wQ4eS90LtN4yM3WyUA4JX0Sej2Jv3ruY/crgew/g/jt5XLFsaDYIJ
V/DYS+a06jiWz1tXkzvEsZnXyolDy8igPMMHTarYRqWLP9AwzpYpgN24MEz6zXxq
I2JMOU3fn0A8nS2zlBP2rBR2C4vieen1WvUFXh3ktW2OJfv1Qu9yU3l+mWaLrs7/
u87RqR4NerYtkg6b9mMIK3mSzdr1eeWC78dP6ysJTAUOj3P6XLrdXcSlvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPwAOX7YRYk3JbG4X+jQNJ0+ErXoMB8GA1UdIwQY
MBaAFFIfDLoQ2qMC47FnzuU5X3QvUwsJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEt
M2JiOGIwNzVkNjlmLzEvX0FBNWZ0aEZpVGNsc2JoZjZOQTBuVDRTdGVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82OGNlMzYtNzRlNC00NDNiLWFlZjEtM2JiOGIwNzVkNjlm
LzEvVWg4TXVoRGFvd0xqc1dmTzVUbGZkQzlUQ3drLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV0zQMA0G
CSqGSIb3DQEBCwUAA4IBAQArB4CE60qjOP5PIRoMpC1Nglh8vL/7WgRoANj5A7Rc
WUW7AgdoI5eFH3we2YGCTKyE1nBCrKJ/Y3xVZptqocsXQL1LIDOXUpR6rvplPMuE
cgVuNG9eHtGb0l5lW8Qse0UUI84k/d2YcbaDEu5RmAQYRzcn372YxAYkwq04AHwv
k3/98FPwdN1k8lH97sYRjab0bRkqN+ZS6Nc75S38cE/rzfTAxWeep4Qt6vDH/HGe
AWBZY/PhMYxPUx/cCdJqnld2btXZdJDEVp8NId0KjbeN4ZrNFJyaHMfOF0pwWZ3Y
nKobCVqwKzdTF1uTmFwk34x3fxJEUqZ4xkA2d+RyibJz
-----END CERTIFICATE-----
Generated at Wed May 13 00:44:42 2026 by rpki-client