Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-6WgBt70aK-mv0LyTxD7An--fQ.roa
File: T-6WgBt70aK-mv0LyTxD7An--fQ.roa (raw, json)
Hash identifier: 1Yp8IIz9wyaJk1ipj1TtH0IJpIij6BIUgp89punA3J8=
Subject key identifier: 4F:EE:96:80:1B:7B:D1:A2:BE:9A:FD:0B:C9:3C:43:EC:09:FE:F9:F4
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019C28C872455E61243E35E183BF17D1AA64
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-6WgBt70aK-mv0LyTxD7An--fQ.roa
Signing time: Wed 04 Feb 2026 13:12:30 +0000
ROA not before: Wed 04 Feb 2026 13:12:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8751
IP address blocks: 80.96.28.0/24 maxlen: 32
85.122.8.0/22 maxlen: 32
193.226.85.0/24 maxlen: 32
193.231.133.0/24 maxlen: 24
193.231.169.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:28:c8:72:45:5e:61:24:3e:35:e1:83:bf:17:d1:aa:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 4 13:12:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4fee96801b7bd1a2be9afd0bc93c43ec09fef9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:ff:a4:e1:1a:93:0a:f8:72:67:92:3f:0c:
c8:80:3d:96:0d:80:78:91:13:0c:c3:26:91:4e:bf:
3b:a7:b3:57:53:dc:f0:ea:fd:24:36:02:3f:f7:0f:
e4:43:3d:20:2c:85:68:e0:eb:8e:fd:c2:47:3b:52:
56:33:c3:ac:8b:48:67:7a:ac:da:3b:55:f3:a3:6f:
cd:65:d6:41:a6:c8:ba:90:e6:b2:62:e5:cb:bf:79:
2f:c1:09:8c:ba:93:70:f8:fb:f1:7d:a4:21:b2:d7:
ae:bd:8f:8d:d1:b6:74:ef:25:83:5e:4b:00:2d:0e:
f5:ad:b3:d8:21:3c:1c:4f:2a:ff:53:6e:e7:02:99:
ae:f4:96:86:ca:13:80:ba:fe:a4:50:e3:79:7c:70:
e8:0c:44:6d:41:f0:aa:2b:23:e3:a2:cc:9a:e1:95:
f5:81:35:c2:dc:64:4e:36:da:8e:80:fc:04:8f:74:
02:f2:d4:c0:96:23:a6:ff:d3:eb:26:ea:49:6b:44:
21:10:88:e5:61:39:4d:40:e7:06:a4:03:bb:cf:d1:
c7:0e:a1:13:b6:c0:99:5b:86:c2:a2:34:af:a3:ec:
ad:08:16:ce:f7:18:1f:5b:bb:8b:33:4d:f7:5e:eb:
78:a0:18:73:bb:91:dd:9b:26:d5:f0:e3:41:d5:bb:
37:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:96:80:1B:7B:D1:A2:BE:9A:FD:0B:C9:3C:43:EC:09:FE:F9:F4
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-6WgBt70aK-mv0LyTxD7An--fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.28.0/24
85.122.8.0/22
193.226.85.0/24
193.231.133.0/24
193.231.169.0/24
Signature Algorithm: sha256WithRSAEncryption
08:53:54:d2:00:e9:44:46:e9:b6:21:db:fe:f1:09:b1:a4:87:
e9:96:f7:95:6e:c9:79:53:1f:13:20:70:7b:c5:12:f9:0b:57:
0a:c0:35:e1:e1:1f:12:cd:b6:db:d7:4a:4f:61:f7:57:bb:2a:
b9:a5:50:44:81:fd:a8:8c:9f:8b:d0:16:79:7f:c6:d1:b3:e3:
a1:b0:fe:aa:ff:82:5d:1d:2a:a0:77:45:e9:d7:e8:8d:32:26:
9a:d9:9e:57:05:b9:76:f6:88:08:63:39:1e:95:ee:61:f3:e2:
1a:c9:f5:c6:dc:d3:35:d6:8b:2c:f1:20:d8:43:4e:6e:66:40:
81:79:84:81:7d:47:d5:bb:b7:12:a7:c0:4b:05:87:1a:c6:1e:
81:0a:ff:da:8b:86:7e:5b:69:c6:37:f4:73:4f:89:38:91:fe:
09:ce:b2:24:de:3f:fe:19:8d:b6:20:14:5a:88:d5:88:09:6c:
f5:33:56:41:cf:b3:13:3f:33:de:60:32:a9:b7:ea:ab:59:1e:
ed:af:15:24:08:2f:c8:f0:9f:03:e5:1e:53:c5:59:55:6f:d7:
5c:2f:6a:72:7d:3b:2b:03:48:af:6e:e5:ea:d3:c3:9c:4a:17:
f0:a0:49:62:da:b9:61:f6:24:aa:ce:0a:97:62:a5:c4:0b:ae:
37:69:fb:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:54:27 2026 by rpki-client