Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/Op-QM0ZeBonslNV_XZMxgfLOi_k.roa
File: Op-QM0ZeBonslNV_XZMxgfLOi_k.roa (raw, json)
Hash identifier: jNGzEh7XdI+Ksi/VvlKKJ/GO/d7313iihcXahkwRvFo=
Subject key identifier: 3A:9F:90:33:46:5E:06:89:EC:94:D5:7F:5D:93:31:81:F2:CE:8B:F9
Certificate issuer: /CN=e964d2705a9b26fd482a9c10e926eae7bda41e9b
Certificate serial: 019EB0AF7D6F62F131CB0D91B4213E5F1A85
Authority key identifier: E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/Op-QM0ZeBonslNV_XZMxgfLOi_k.roa
Signing time: Wed 10 Jun 2026 08:39:11 +0000
ROA not before: Wed 10 Jun 2026 08:39:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197529
IP address blocks: 185.198.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.mft
rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b0:af:7d:6f:62:f1:31:cb:0d:91:b4:21:3e:5f:1a:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e964d2705a9b26fd482a9c10e926eae7bda41e9b
Validity
Not Before: Jun 10 08:39:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3a9f9033465e0689ec94d57f5d933181f2ce8bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0e:dc:04:be:56:8a:ee:d7:63:00:27:a9:ad:
d3:ec:f7:07:3b:c0:d5:54:d7:f5:c2:15:15:f7:4e:
b4:46:76:8d:10:9b:a4:7c:2b:0d:b3:57:59:13:c6:
85:07:d8:28:a1:70:6a:8e:8d:c9:d1:34:e8:35:0d:
30:ec:91:ae:27:ed:63:85:72:38:50:79:5f:96:b3:
fa:16:6b:38:ca:6c:87:16:5d:1e:f7:7b:83:f8:d4:
f0:e8:d5:17:e4:b7:76:9d:4a:55:cc:cb:62:1c:e2:
9f:a5:af:cc:2e:48:d7:3d:87:d5:1f:f6:50:78:31:
32:54:38:8c:fb:67:dc:e1:3b:02:d3:2c:1c:4d:79:
d8:35:0f:bd:51:9e:a5:58:9e:8e:6c:6b:f6:20:69:
b8:eb:64:36:08:fb:c4:ce:47:00:99:87:79:39:50:
c6:54:ae:a6:1b:00:63:87:f3:27:74:8e:93:84:0e:
1d:64:50:f1:47:09:dd:c0:6d:71:d5:8e:a6:21:c9:
fa:31:db:a1:84:09:4f:22:f9:fd:32:99:73:d2:3b:
eb:67:48:ce:ff:d3:75:1e:1b:fa:15:14:b4:a4:6c:
3f:e9:31:46:df:09:79:e7:e0:8f:09:68:18:ba:d1:
d2:1f:0b:49:1c:11:4b:e0:78:08:6e:ea:45:bc:cd:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9F:90:33:46:5E:06:89:EC:94:D5:7F:5D:93:31:81:F2:CE:8B:F9
X509v3 Authority Key Identifier:
keyid:E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/Op-QM0ZeBonslNV_XZMxgfLOi_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.113.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c0:c8:27:fd:f8:9c:9d:cc:fa:f8:14:e1:c3:88:4a:ff:4e:
c3:36:3c:b5:bb:c1:cf:b7:a6:fd:25:65:b1:13:48:d5:09:0e:
77:0f:85:3c:a2:18:e1:dd:a1:0b:59:28:0c:98:09:94:86:d0:
cb:b1:b9:ef:b5:6d:19:85:8f:90:58:40:21:85:03:f7:fd:2b:
88:73:f9:bd:7a:b1:ba:c1:3b:5a:f4:cd:3e:26:c3:a0:a0:eb:
21:dc:f5:29:09:ad:94:ef:a1:26:7d:09:5d:55:a6:b9:be:43:
49:2f:7c:ac:96:86:50:0a:a9:de:f7:e2:aa:fe:26:6c:46:b2:
84:ba:10:d7:4b:66:c0:62:27:1d:1c:85:9a:3b:12:8c:14:5c:
1e:65:1e:61:cc:a2:4f:a3:92:04:55:cb:c0:d2:e5:aa:70:21:
a0:12:b4:f4:e1:71:f6:89:12:9d:0d:c4:2b:57:ae:38:46:2a:
8b:dc:b6:70:ff:6c:28:68:37:01:db:a7:42:00:b0:3c:7b:25:
d1:e8:c3:a3:e8:d7:a6:d6:b6:7e:90:98:02:3d:a5:62:c1:fb:
dd:66:9b:61:d4:aa:00:d0:31:4b:6c:3c:8e:26:ef:1d:5c:7a:
b4:28:b6:6e:a9:0c:7b:d9:c5:1a:3a:20:a4:4e:63:87:2b:d3:
52:f1:2b:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ6wr31vYvExyw2RtCE+XxqFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5NjRkMjcwNWE5YjI2ZmQ0ODJhOWMxMGU5MjZlYWU3YmRh
NDFlOWIwHhcNMjYwNjEwMDgzOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTlmOTAzMzQ2NWUwNjg5ZWM5NGQ1N2Y1ZDkzMzE4MWYyY2U4YmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApg7cBL5Wiu7XYwAnqa3T7PcHO8DV
VNf1whUV9060RnaNEJukfCsNs1dZE8aFB9gooXBqjo3J0TToNQ0w7JGuJ+1jhXI4
UHlflrP6Fms4ymyHFl0e93uD+NTw6NUX5Ld2nUpVzMtiHOKfpa/MLkjXPYfVH/ZQ
eDEyVDiM+2fc4TsC0ywcTXnYNQ+9UZ6lWJ6ObGv2IGm462Q2CPvEzkcAmYd5OVDG
VK6mGwBjh/MndI6ThA4dZFDxRwndwG1x1Y6mIcn6MduhhAlPIvn9Mplz0jvrZ0jO
/9N1Hhv6FRS0pGw/6TFG3wl55+CPCWgYutHSHwtJHBFL4HgIbupFvM33JQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDqfkDNGXgaJ7JTVf12TMYHyzov5MB8GA1UdIwQY
MBaAFOlk0nBamyb9SCqcEOkm6ue9pB6bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNldUU2NGcWJKdjFJS3B3UTZTYnE1NzJrSHBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hNjYzNmQtY2M1My00Y2VlLTg0Y2Mt
ZjRlMzYxZTRkYTJkLzEvT3AtUU0wWmVCb25zbE5WX1haTXhnZkxPaV9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC9hNjYzNmQtY2M1My00Y2VlLTg0Y2MtZjRlMzYxZTRkYTJk
LzEvNldUU2NGcWJKdjFJS3B3UTZTYnE1NzJrSHBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucZxMA0G
CSqGSIb3DQEBCwUAA4IBAQA0wMgn/ficncz6+BThw4hK/07DNjy1u8HPt6b9JWWx
E0jVCQ53D4U8ohjh3aELWSgMmAmUhtDLsbnvtW0ZhY+QWEAhhQP3/SuIc/m9erG6
wTta9M0+JsOgoOsh3PUpCa2U76EmfQldVaa5vkNJL3ysloZQCqne9+Kq/iZsRrKE
uhDXS2bAYicdHIWaOxKMFFweZR5hzKJPo5IEVcvA0uWqcCGgErT04XH2iRKdDcQr
V644RiqL3LZw/2woaDcB26dCALA8eyXR6MOj6Nem1rZ+kJgCPaViwfvdZpth1KoA
0DFLbDyOJu8dXHq0KLZuqQx72cUaOiCkTmOHK9NS8SvH
-----END CERTIFICATE-----
Generated at Sat Jun 13 14:45:19 2026 by rpki-client