Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/y2cm6-exYMkmOGgTU1Cd07TyLP8.roa
File: y2cm6-exYMkmOGgTU1Cd07TyLP8.roa (raw, json)
Hash identifier: VU+nMgrW6E4VxS9BCUWRqC49ToNwPX6PlXdXakhEGJE=
Subject key identifier: CB:67:26:EB:E7:B1:60:C9:26:38:68:13:53:50:9D:D3:B4:F2:2C:FF
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 019EBCCA8E24ABF8D56EF76B3D58A28EB986
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/y2cm6-exYMkmOGgTU1Cd07TyLP8.roa
Signing time: Fri 12 Jun 2026 17:04:11 +0000
ROA not before: Fri 12 Jun 2026 17:04:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401776
IP address blocks: 45.140.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bc:ca:8e:24:ab:f8:d5:6e:f7:6b:3d:58:a2:8e:b9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jun 12 17:04:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cb6726ebe7b160c92638681353509dd3b4f22cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:27:8e:2a:31:ca:fe:6e:67:31:7e:0f:7d:
e9:f2:8e:55:0e:26:3a:e4:87:47:f8:30:d7:36:28:
e4:d8:7e:29:04:36:b3:27:f2:3d:e9:fe:4b:19:a9:
6f:2d:d1:09:24:c6:0a:e3:00:de:ef:52:48:1d:3b:
73:33:a9:62:55:49:13:07:87:ab:82:6f:eb:5c:a4:
c0:26:d8:dc:fa:d3:10:66:4c:6e:ee:b1:17:23:b7:
0c:24:3a:01:6e:b2:ea:26:5f:ae:82:4b:d7:21:05:
95:ed:f0:d3:d9:f1:ff:07:79:20:b5:36:83:54:07:
72:9b:8b:b0:fa:93:0f:0b:92:c8:d4:66:49:e0:68:
94:b8:35:f8:9a:8a:94:f3:59:f2:9c:4f:c6:f3:76:
d4:6d:8b:81:d0:06:84:72:27:40:ab:d5:3e:ac:ba:
4d:d6:95:4e:a9:b8:bb:b5:4e:8d:f6:d4:e2:78:8c:
e4:bd:63:48:9d:f2:b2:da:1b:33:c5:9e:03:49:b7:
8c:a6:ae:b5:73:80:59:5a:09:1d:ea:a1:20:34:68:
e6:06:1e:bf:fe:cb:03:54:41:cd:20:ec:66:f8:c4:
6e:8c:a0:d5:e9:a1:b0:1a:22:44:2c:91:a0:f4:a9:
8c:31:de:a0:73:b1:45:41:e7:c9:ec:76:eb:3b:eb:
99:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:67:26:EB:E7:B1:60:C9:26:38:68:13:53:50:9D:D3:B4:F2:2C:FF
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/y2cm6-exYMkmOGgTU1Cd07TyLP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.209.0/24
Signature Algorithm: sha256WithRSAEncryption
83:97:53:99:d8:1c:c1:c9:90:00:c9:fc:36:32:39:13:0e:96:
7e:6d:f7:2f:09:ab:0a:5e:32:b6:ec:26:aa:31:e3:77:16:c9:
1e:05:fd:a7:13:03:24:f2:ab:01:5f:5c:40:4c:33:19:c0:fc:
3d:79:2c:06:05:84:9f:b5:29:eb:a1:f1:e9:dc:82:d1:62:28:
0d:58:c7:7c:4e:f3:fc:e5:5b:54:58:f3:52:eb:5d:5f:80:08:
74:b5:35:22:1d:06:98:c2:b8:3d:6f:c6:86:ae:98:d6:64:7c:
7e:9c:9f:12:b3:98:be:cc:c6:43:cc:40:06:91:f2:c0:cf:16:
69:d4:29:53:fb:3a:e0:c9:1f:58:31:2c:83:1e:03:e7:b1:06:
7e:31:e6:c4:19:1d:e3:a2:c5:11:a7:f7:56:74:f6:b9:ba:cb:
13:99:f1:d8:b3:14:1c:fb:31:9e:aa:39:9d:4a:db:7e:44:e3:
9c:45:3b:e2:ba:7e:f4:67:79:ad:94:57:31:4c:46:6d:a3:e4:
7c:e7:48:72:ab:fa:0d:95:6d:fe:2f:d7:f7:ae:59:25:a2:de:
d8:3b:64:18:f7:a6:95:f1:9c:88:e4:7d:92:17:72:ef:36:74:
c4:f4:20:cc:6a:67:ea:96:1a:33:a8:c4:47:24:fe:14:a9:40:
b9:41:94:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ68yo4kq/jVbvdrPViijrmGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2
Y2MyNjAwHhcNMjYwNjEyMTcwNDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjY3MjZlYmU3YjE2MGM5MjYzODY4MTM1MzUwOWRkM2I0ZjIyY2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1Mnjioxyv5uZzF+D33p8o5VDiY6
5IdH+DDXNijk2H4pBDazJ/I96f5LGalvLdEJJMYK4wDe71JIHTtzM6liVUkTB4er
gm/rXKTAJtjc+tMQZkxu7rEXI7cMJDoBbrLqJl+ugkvXIQWV7fDT2fH/B3kgtTaD
VAdym4uw+pMPC5LI1GZJ4GiUuDX4moqU81nynE/G83bUbYuB0AaEcidAq9U+rLpN
1pVOqbi7tU6N9tTieIzkvWNInfKy2hszxZ4DSbeMpq61c4BZWgkd6qEgNGjmBh6/
/ssDVEHNIOxm+MRujKDV6aGwGiJELJGg9KmMMd6gc7FFQefJ7HbrO+uZlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMtnJuvnsWDJJjhoE1NQndO08iz/MB8GA1UdIwQY
MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt
NjA3ZDRmMzdmNTlmLzEveTJjbTYtZXhZTWttT0dnVFUxQ2QwN1R5TFA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm
LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYzRMA0G
CSqGSIb3DQEBCwUAA4IBAQCDl1OZ2BzByZAAyfw2MjkTDpZ+bfcvCasKXjK27Caq
MeN3FskeBf2nEwMk8qsBX1xATDMZwPw9eSwGBYSftSnrofHp3ILRYigNWMd8TvP8
5VtUWPNS611fgAh0tTUiHQaYwrg9b8aGrpjWZHx+nJ8Ss5i+zMZDzEAGkfLAzxZp
1ClT+zrgyR9YMSyDHgPnsQZ+MebEGR3josURp/dWdPa5ussTmfHYsxQc+zGeqjmd
Stt+ROOcRTviun70Z3mtlFcxTEZto+R850hyq/oNlW3+L9f3rlklot7YO2QY96aV
8ZyI5H2SF3LvNnTE9CDMamfqlhozqMRHJP4UqUC5QZQO
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:54:49 2026 by rpki-client