Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/w31idblgiUNKUk_LIT-LzFwAO0k.roa
File: w31idblgiUNKUk_LIT-LzFwAO0k.roa (raw, json)
Hash identifier: Vze4y124S1wqVoT3H487SgKmVoNpkquz3RZVumGNXCA=
Subject key identifier: C3:7D:62:75:B9:60:89:43:4A:52:4F:CB:21:3F:8B:CC:5C:00:3B:49
Certificate issuer: /CN=104a455eb31f63e390e21aa77fcc2af2ac343577
Certificate serial: 019B79EBD215C8FD9684867A052DA8CE3702
Authority key identifier: 10:4A:45:5E:B3:1F:63:E3:90:E2:1A:A7:7F:CC:2A:F2:AC:34:35:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/w31idblgiUNKUk_LIT-LzFwAO0k.roa
Signing time: Thu 01 Jan 2026 14:17:36 +0000
ROA not before: Thu 01 Jan 2026 14:17:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42067
IP address blocks: 91.151.160.0/24 maxlen: 24
91.151.161.0/24 maxlen: 24
91.151.162.0/24 maxlen: 24
212.93.160.0/19 maxlen: 19
212.93.160.0/24 maxlen: 24
212.93.161.0/24 maxlen: 24
212.93.162.0/24 maxlen: 24
212.93.163.0/24 maxlen: 24
212.93.164.0/24 maxlen: 24
212.93.165.0/24 maxlen: 24
212.93.170.0/24 maxlen: 24
212.93.176.0/24 maxlen: 24
212.93.177.0/24 maxlen: 24
212.93.178.0/24 maxlen: 24
212.93.179.0/24 maxlen: 24
212.93.180.0/24 maxlen: 24
212.93.181.0/24 maxlen: 24
212.93.182.0/24 maxlen: 24
212.93.183.0/24 maxlen: 24
212.93.186.0/24 maxlen: 24
212.93.187.0/24 maxlen: 24
212.93.188.0/24 maxlen: 24
212.93.189.0/24 maxlen: 24
212.93.190.0/24 maxlen: 24
212.93.191.0/24 maxlen: 24
2a00:50a0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:eb:d2:15:c8:fd:96:84:86:7a:05:2d:a8:ce:37:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=104a455eb31f63e390e21aa77fcc2af2ac343577
Validity
Not Before: Jan 1 14:17:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c37d6275b96089434a524fcb213f8bcc5c003b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:90:41:bd:90:52:5f:80:c8:69:ae:90:a3:97:
09:4c:8f:f3:53:a1:74:60:d2:64:23:3c:45:bb:04:
b9:68:44:a9:b2:40:65:9e:98:f7:6f:73:af:b5:85:
f2:d5:36:1a:61:75:a7:3e:6b:4c:b4:8c:89:0a:34:
05:e2:3e:00:e3:56:31:35:b3:85:97:7a:6c:46:73:
fe:9e:d6:ba:ee:89:e6:f3:ea:17:6a:17:39:82:da:
f1:48:71:72:6a:c2:9e:73:58:5b:d3:c4:18:d4:b8:
70:78:cb:d8:88:e1:35:7d:2c:e1:df:bb:dc:30:75:
0f:10:26:60:aa:3b:b7:dd:4a:53:fb:ea:d2:f4:e9:
95:8d:a2:bf:25:1b:2c:95:2d:b2:bc:50:33:99:04:
c6:63:cf:6a:c9:a2:ea:dc:fb:bf:7d:42:61:b8:c4:
43:59:d0:92:02:0c:4c:ee:77:46:a2:7a:3f:c8:58:
c1:6f:f7:3b:37:f7:2f:40:28:84:ee:fa:0e:fb:91:
e4:ce:a6:88:80:98:9b:cf:a0:9c:4f:83:b1:ea:95:
92:de:73:24:e5:48:64:eb:5f:0e:a1:e9:40:2f:ad:
a1:c6:d1:cf:2a:6f:ee:c6:af:3c:f0:52:87:a6:67:
ac:af:e3:0a:8d:d8:b9:ac:a8:de:46:8d:23:62:93:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:62:75:B9:60:89:43:4A:52:4F:CB:21:3F:8B:CC:5C:00:3B:49
X509v3 Authority Key Identifier:
keyid:10:4A:45:5E:B3:1F:63:E3:90:E2:1A:A7:7F:CC:2A:F2:AC:34:35:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/w31idblgiUNKUk_LIT-LzFwAO0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80e0c2-bab4-4713-8eb1-e651397ce855/1/EEpFXrMfY-OQ4hqnf8wq8qw0NXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.160.0-91.151.162.255
212.93.160.0/19
IPv6:
2a00:50a0::/48
Signature Algorithm: sha256WithRSAEncryption
29:b8:a6:7d:27:32:2c:88:8e:a8:78:99:e7:34:f4:eb:fe:f2:
56:74:62:0e:ce:ed:94:71:19:68:5d:f9:dc:5c:b4:7e:01:ec:
e5:44:70:7a:44:36:87:80:11:0b:8c:58:72:77:32:3f:35:98:
a0:b5:38:ea:1a:6e:a9:11:4b:c0:56:29:4f:ea:9c:6c:c3:8f:
8a:0d:47:28:67:b8:30:84:8b:d2:c6:ab:59:04:7e:20:61:f9:
98:00:48:bb:28:5c:ce:66:34:9a:e6:fd:1e:47:1a:14:e4:95:
fd:18:ad:7c:e1:57:34:84:3d:47:77:67:9a:41:95:14:9a:67:
98:02:71:33:b9:1a:a2:d6:a0:98:7f:11:1a:7d:66:f5:32:f4:
4e:ca:f1:dc:4e:ad:55:8b:4a:af:37:9f:8e:2f:ca:ee:7e:75:
31:73:75:24:3b:13:55:3d:4a:9b:d2:e1:00:ce:66:bd:bf:bb:
b0:2a:37:a9:c1:4d:63:6c:75:cb:0e:69:39:22:2c:fa:0c:bd:
e0:61:51:47:68:44:01:e8:7e:05:97:31:e6:4f:b1:cc:1e:5c:
d5:5c:fa:db:0e:e0:93:e1:da:cc:17:09:6b:1d:69:33:fe:76:
14:61:f1:c2:0d:85:1c:37:d5:0e:a9:c5:ac:a6:ce:cf:0a:0d:
da:f9:be:1b
-----BEGIN CERTIFICATE-----
MIIFHDCCBASgAwIBAgISAZt569IVyP2WhIZ6BS2ozjcCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwNGE0NTVlYjMxZjYzZTM5MGUyMWFhNzdmY2MyYWYyYWMz
NDM1NzcwHhcNMjYwMTAxMTQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzdkNjI3NWI5NjA4OTQzNGE1MjRmY2IyMTNmOGJjYzVjMDAzYjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15BBvZBSX4DIaa6Qo5cJTI/zU6F0
YNJkIzxFuwS5aESpskBlnpj3b3OvtYXy1TYaYXWnPmtMtIyJCjQF4j4A41YxNbOF
l3psRnP+nta67onm8+oXahc5gtrxSHFyasKec1hb08QY1LhweMvYiOE1fSzh37vc
MHUPECZgqju33UpT++rS9OmVjaK/JRsslS2yvFAzmQTGY89qyaLq3Pu/fUJhuMRD
WdCSAgxM7ndGono/yFjBb/c7N/cvQCiE7voO+5HkzqaIgJibz6CcT4Ox6pWS3nMk
5Uhk618OoelAL62hxtHPKm/uxq888FKHpmesr+MKjdi5rKjeRo0jYpMtJwIDAQAB
o4ICKDCCAiQwHQYDVR0OBBYEFMN9YnW5YIlDSlJPyyE/i8xcADtJMB8GA1UdIwQY
MBaAFBBKRV6zH2PjkOIap3/MKvKsNDV3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUVwRlhyTWZZLU9RNGhxbmY4d3E4cXcwTlhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC84MGUwYzItYmFiNC00NzEzLThlYjEt
ZTY1MTM5N2NlODU1LzEvdzMxaWRibGdpVU5LVWtfTElULUx6RndBTzBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC84MGUwYzItYmFiNC00NzEzLThlYjEtZTY1MTM5N2NlODU1
LzEvRUVwRlhyTWZZLU9RNGhxbmY4d3E4cXcwTlhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAaBAIAATAUMAwDBAVbl6AD
BABbl6IDBAXUXaAwDwQCAAIwCQMHACoAUKAAADANBgkqhkiG9w0BAQsFAAOCAQEA
KbimfScyLIiOqHiZ5zT06/7yVnRiDs7tlHEZaF353Fy0fgHs5URwekQ2h4ARC4xY
cncyPzWYoLU46hpuqRFLwFYpT+qcbMOPig1HKGe4MISL0sarWQR+IGH5mABIuyhc
zmY0mub9HkcaFOSV/RitfOFXNIQ9R3dnmkGVFJpnmAJxM7kaotagmH8RGn1m9TL0
Tsrx3E6tVYtKrzefji/K7n51MXN1JDsTVT1Km9LhAM5mvb+7sCo3qcFNY2x1yw5p
OSIs+gy94GFRR2hEAeh+BZcx5k+xzB5c1Vz62w7gk+HazBcJax1pM/52FGHxwg2F
HDfVDqnFrKbOzwoN2vm+Gw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 23:51:52 2026 by rpki-client