Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BP7qr8M9Z23XLTlfDphHEhcjcxU.roa
File: BP7qr8M9Z23XLTlfDphHEhcjcxU.roa (raw, json)
Hash identifier: 85o8Pl3rmdVnUnMaY3hy2eaNf9gxwwkYG9yKslohFoM=
Subject key identifier: 04:FE:EA:AF:C3:3D:67:6D:D7:2D:39:5F:0E:98:47:12:17:23:73:15
Certificate issuer: /CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Certificate serial: 019C6B980D82E1694A7D7E7790DB0C4221B2
Authority key identifier: 06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BP7qr8M9Z23XLTlfDphHEhcjcxU.roa
Signing time: Tue 17 Feb 2026 12:34:12 +0000
ROA not before: Tue 17 Feb 2026 12:34:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41439
IP address blocks: 195.66.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6b:98:0d:82:e1:69:4a:7d:7e:77:90:db:0c:42:21:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Validity
Not Before: Feb 17 12:34:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=04feeaafc33d676dd72d395f0e98471217237315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:19:b8:c0:38:e3:80:5a:d0:6f:37:c4:78:6c:
bb:e7:8f:98:8c:3e:48:c4:9b:40:38:a4:da:eb:6d:
a7:f8:ea:49:ac:17:a9:fe:d9:9b:70:0d:2a:aa:f0:
c7:40:cf:36:7c:4e:5d:24:fc:96:ca:05:1a:9e:61:
3d:f8:8d:d9:0c:cc:77:3f:06:26:8a:8d:10:5c:61:
3b:1a:b5:2f:10:16:f5:16:32:89:f9:18:eb:f5:f1:
58:2f:e7:12:b1:7d:02:66:d5:23:0f:89:a0:92:e9:
7b:da:c9:56:11:7b:f8:a5:e8:e6:c7:8d:44:6e:e5:
26:0c:34:c2:bf:b1:90:dc:74:b7:29:c5:a4:27:8d:
e4:57:0d:6c:16:9d:cd:2d:3f:14:24:00:1c:bc:12:
0e:d6:c6:a4:cf:ba:78:ec:c6:7b:e2:1c:45:08:20:
a6:59:43:6a:a3:65:50:8e:fc:48:d5:e6:5a:2b:9b:
7e:08:94:9d:c5:38:20:50:3c:c9:f9:4d:05:c3:6f:
22:5a:42:93:3f:b8:79:0b:70:b0:20:4e:3e:23:bb:
4a:95:57:86:69:d9:95:b1:8c:d2:b9:0d:33:18:41:
73:0e:13:83:cf:3e:5e:ae:14:3e:81:1e:3e:bc:a9:
15:90:94:c3:86:14:9d:a0:59:3a:0b:ff:9a:32:c0:
28:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FE:EA:AF:C3:3D:67:6D:D7:2D:39:5F:0E:98:47:12:17:23:73:15
X509v3 Authority Key Identifier:
keyid:06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BP7qr8M9Z23XLTlfDphHEhcjcxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:05:02:10:a5:35:28:8f:b2:d4:50:ea:e5:f0:59:02:f8:2f:
84:91:f1:63:6a:a3:ea:4b:38:69:8e:3d:76:e0:ad:96:ee:c3:
0b:a6:f8:e9:00:16:a7:38:b0:77:05:31:7e:4a:e1:3a:b1:84:
99:02:a8:1c:b2:92:23:9d:a0:66:6d:52:0d:17:0f:00:6c:03:
c7:3c:7b:4e:31:57:f1:a6:3b:a6:cc:49:63:a8:1a:5f:ab:92:
db:99:4c:44:f4:25:3f:1a:7e:87:84:2e:7d:08:9c:2a:7a:9a:
75:6f:69:be:57:96:d8:0b:53:83:3c:bb:72:aa:21:22:86:fe:
06:97:61:b8:92:0c:8f:e7:48:73:3a:9b:3b:53:7c:ef:e1:57:
cf:4b:13:28:d1:24:d2:12:e1:36:da:44:7c:b4:41:0d:86:2f:
0d:94:39:f3:ab:b4:92:b4:6b:58:ff:f9:0c:d8:dd:15:0b:f0:
54:21:31:9a:c6:31:47:dd:17:37:80:04:bb:cc:9e:0e:cd:83:
bc:e7:5a:af:59:72:ec:c3:66:62:3b:6c:f8:ea:7c:e5:82:13:
7c:09:17:9e:9b:6c:76:0d:35:92:c1:1b:7a:ff:1c:87:d9:13:
46:8b:76:bf:e9:b2:dc:a3:b1:a0:ef:bb:8d:5a:97:9b:dc:a5:
fa:fa:1b:3c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZxrmA2C4WlKfX53kNsMQiGyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NWE0NzBkYmFiOWMxYzMzNGYwZjg1ZjQxN2NkMWFhNDI1
ZTlmMTMwHhcNMjYwMjE3MTIzNDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGZlZWFhZmMzM2Q2NzZkZDcyZDM5NWYwZTk4NDcxMjE3MjM3MzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Rm4wDjjgFrQbzfEeGy754+YjD5I
xJtAOKTa622n+OpJrBep/tmbcA0qqvDHQM82fE5dJPyWygUanmE9+I3ZDMx3PwYm
io0QXGE7GrUvEBb1FjKJ+Rjr9fFYL+cSsX0CZtUjD4mgkul72slWEXv4pejmx41E
buUmDDTCv7GQ3HS3KcWkJ43kVw1sFp3NLT8UJAAcvBIO1sakz7p47MZ74hxFCCCm
WUNqo2VQjvxI1eZaK5t+CJSdxTggUDzJ+U0Fw28iWkKTP7h5C3CwIE4+I7tKlVeG
admVsYzSuQ0zGEFzDhODzz5erhQ+gR4+vKkVkJTDhhSdoFk6C/+aMsAoRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAT+6q/DPWdt1y05Xw6YRxIXI3MVMB8GA1UdIwQY
MBaAFAZaRw26ucHDNPD4X0F80apCXp8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmxwSERicTV3Y00wOFBoZlFYelJxa0plbnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zNzVhNjctOGM0ZS00YTQ2LTk5Y2Mt
NjUwNzhhN2Y2NWI4LzEvQlA3cXI4TTlaMjNYTFRsZkRwaEhFaGNqY3hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8zNzVhNjctOGM0ZS00YTQ2LTk5Y2MtNjUwNzhhN2Y2NWI4
LzEvQmxwSERicTV3Y00wOFBoZlFYelJxa0plbnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0JlMA0G
CSqGSIb3DQEBCwUAA4IBAQCKBQIQpTUoj7LUUOrl8FkC+C+EkfFjaqPqSzhpjj12
4K2W7sMLpvjpABanOLB3BTF+SuE6sYSZAqgcspIjnaBmbVINFw8AbAPHPHtOMVfx
pjumzEljqBpfq5LbmUxE9CU/Gn6HhC59CJwqepp1b2m+V5bYC1ODPLtyqiEihv4G
l2G4kgyP50hzOps7U3zv4VfPSxMo0STSEuE22kR8tEENhi8NlDnzq7SStGtY//kM
2N0VC/BUITGaxjFH3Rc3gAS7zJ4OzYO851qvWXLsw2ZiO2z46nzlghN8CReem2x2
DTWSwRt6/xyH2RNGi3a/6bLco7Gg77uNWpeb3KX6+hs8
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:45:26 2026 by rpki-client