Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vJcB6kM_UcmxwbA5ko8aOVvlpEM.roa
File: vJcB6kM_UcmxwbA5ko8aOVvlpEM.roa (raw, json)
Hash identifier: I7gV20zucV5CGqiNcMvm+AL8rpNu5CiE1w12ssEAvI0=
Subject key identifier: BC:97:01:EA:43:3F:51:C9:B1:C1:B0:39:92:8F:1A:39:5B:E5:A4:43
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019C2DD88FB4FE053F06AAA47DBCCB6716B9
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vJcB6kM_UcmxwbA5ko8aOVvlpEM.roa
Signing time: Thu 05 Feb 2026 12:48:13 +0000
ROA not before: Thu 05 Feb 2026 12:48:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.48.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.255.224.0/20 maxlen: 20
83.223.130.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
185.7.237.0/24 maxlen: 24
185.7.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:2d:d8:8f:b4:fe:05:3f:06:aa:a4:7d:bc:cb:67:16:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Feb 5 12:48:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bc9701ea433f51c9b1c1b039928f1a395be5a443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:72:02:ac:78:55:1d:bd:98:8c:33:1c:a7:87:
ed:c9:81:dd:08:7c:f5:a2:e9:a3:c0:ef:9f:c1:fb:
0a:78:18:b6:cf:33:a6:e8:fc:be:7b:44:6d:48:c0:
e0:b5:39:3e:f5:58:7a:65:96:22:a6:95:b7:29:8d:
eb:56:ae:fe:61:58:1c:14:9c:de:5a:8b:7f:39:8c:
15:ba:12:43:fa:90:40:6c:2d:48:19:76:bf:67:28:
39:d9:f8:e4:ab:8b:fe:ce:51:da:2d:e2:0d:1c:24:
6e:8b:96:36:af:81:79:6c:3f:18:10:bd:e2:2e:11:
d5:94:94:9d:de:f4:c2:34:40:ca:ae:ec:b6:ff:99:
12:ff:22:ca:22:a6:42:99:3c:b2:70:e8:17:7e:fa:
5e:0d:26:60:e1:df:51:36:0b:ac:d3:fc:0c:a8:ca:
82:3a:19:29:15:f2:a2:73:ce:e8:ac:cb:ac:35:f5:
c8:89:9c:ea:c3:5e:a3:c0:93:cc:ed:c9:af:64:ba:
22:9f:c8:ee:1e:81:46:0f:d1:2e:9e:4c:54:cf:3a:
91:3f:b8:be:86:ee:b1:af:70:db:72:8c:c1:81:c5:
18:dd:97:01:77:d5:69:5b:07:0c:91:63:de:ff:6c:
11:36:1a:d6:4c:33:a6:1e:f3:b5:b2:4e:de:ba:62:
56:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:97:01:EA:43:3F:51:C9:B1:C1:B0:39:92:8F:1A:39:5B:E5:A4:43
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vJcB6kM_UcmxwbA5ko8aOVvlpEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.48.0/24
80.81.53.0/24
80.255.224.0/20
83.223.130.0/24
83.223.137.0/24
83.223.142.0/24
94.101.237.0/24
185.7.237.0/24
185.7.239.0/24
Signature Algorithm: sha256WithRSAEncryption
46:03:5a:bd:63:8c:14:34:60:df:b2:f8:3f:aa:0c:88:33:0a:
07:0d:91:c5:3e:82:cf:30:aa:a1:7d:8d:5d:48:31:7d:35:c3:
a4:39:a7:05:03:74:67:8d:5f:c1:8c:20:dc:6f:cc:e4:8f:f5:
5f:56:67:3b:42:b7:ab:80:fa:1a:e6:c4:d2:de:f0:31:e9:65:
42:34:29:68:7a:28:16:93:c7:73:1e:fd:21:20:95:75:a7:30:
a8:35:f6:02:88:36:57:e5:58:8b:6b:b5:9a:4e:b9:62:91:6c:
7b:39:c8:42:87:31:f8:8b:cd:d6:70:02:60:46:f1:5e:9b:08:
d7:92:43:b6:f5:06:97:fd:39:33:1f:4c:39:e9:15:0b:28:fd:
c3:29:65:4c:3c:cc:be:8a:88:c5:5a:d2:40:58:c8:03:8b:95:
c8:b2:62:13:1f:24:f6:4e:4d:2d:d7:9e:38:aa:e0:2d:42:b3:
fc:2f:d6:57:14:8b:f7:94:c4:f1:1d:40:8f:9e:56:5d:d4:6d:
52:26:ff:23:62:c0:fa:c8:14:21:36:1e:84:af:cb:80:36:3d:
69:35:b7:ea:bc:7c:81:d3:53:06:af:3e:9d:6d:81:2b:e2:91:
2e:2b:ab:b4:19:49:2c:9a:4a:dd:62:14:57:ec:c4:fd:af:95:
f2:03:7c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:41:07 2026 by rpki-client