Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/vdgqBKwQkfA76s0H0FyOtcJZzV8.roa
File: vdgqBKwQkfA76s0H0FyOtcJZzV8.roa (raw, json)
Hash identifier: D7lmF99Lrcwh6wlVfBPPTqd81NKZPrrGaKS7PuCJof4=
Subject key identifier: BD:D8:2A:04:AC:10:91:F0:3B:EA:CD:07:D0:5C:8E:B5:C2:59:CD:5F
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 019C9F74558B7F18274F16D84B3174C638A0
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/vdgqBKwQkfA76s0H0FyOtcJZzV8.roa
Signing time: Fri 27 Feb 2026 14:15:27 +0000
ROA not before: Fri 27 Feb 2026 14:15:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 61087
IP address blocks: 194.39.110.0/24 maxlen: 24
2a0e:4007:fff4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:9f:74:55:8b:7f:18:27:4f:16:d8:4b:31:74:c6:38:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Feb 27 14:15:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bdd82a04ac1091f03beacd07d05c8eb5c259cd5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:03:fa:e6:22:ac:21:1d:e7:2a:a0:96:16:
c8:0b:01:1c:61:0f:1d:6c:90:71:03:43:ad:f3:36:
8e:cd:80:5a:3c:c2:41:b7:8c:65:15:e7:d8:09:69:
47:29:1c:a5:1f:f3:08:dc:81:05:6a:49:63:5b:fa:
ff:87:f6:4a:28:5a:8e:a7:79:f4:69:0d:2a:cc:2d:
33:ea:66:33:1d:c7:2a:57:a2:1b:3f:97:4e:eb:56:
45:6b:bc:d7:cc:16:08:3c:d3:d7:ce:8d:9e:a9:3a:
64:59:a2:55:63:ed:26:88:a2:0f:ae:0b:0f:4d:f3:
f3:4b:ba:20:54:3a:07:10:ea:89:d1:b8:bf:a3:dd:
61:4e:7f:b2:3c:82:2f:e4:77:fe:91:cf:dc:43:76:
8e:c6:cb:a9:58:5b:36:84:dd:ee:f1:02:e8:39:17:
f5:6b:80:52:e0:ba:e7:ca:5d:25:96:43:bb:1e:82:
9e:d1:16:b4:f7:d0:89:17:a5:7b:4a:97:d2:9b:89:
62:b2:26:2e:88:d8:05:da:ac:f7:53:a6:5f:46:b2:
a8:de:cd:fa:87:e8:99:3e:51:ea:ef:29:81:ec:36:
0b:d0:52:b9:29:da:ed:97:02:23:93:c3:71:5d:f8:
13:fb:dd:b4:d0:47:f4:a4:f7:5a:ff:ac:ed:c1:a3:
dd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D8:2A:04:AC:10:91:F0:3B:EA:CD:07:D0:5C:8E:B5:C2:59:CD:5F
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/vdgqBKwQkfA76s0H0FyOtcJZzV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.110.0/24
IPv6:
2a0e:4007:fff4::/48
Signature Algorithm: sha256WithRSAEncryption
c0:98:ef:d0:28:43:39:7a:46:8f:ae:e3:e1:bd:9f:62:91:8a:
b1:92:f9:56:da:97:06:69:83:24:81:7f:f8:35:62:c4:f0:63:
9e:68:fa:45:cf:e5:53:44:79:33:79:ca:5a:62:80:8d:49:3e:
59:a8:0e:c4:f3:d8:ff:4e:81:18:1a:ba:1a:d9:db:94:ef:54:
5d:09:82:49:e7:0a:0e:f6:dc:d9:40:18:dd:a8:c9:b3:17:21:
fd:15:27:57:41:58:aa:96:db:93:2e:38:47:27:db:05:04:a5:
8d:8a:21:92:a0:4d:71:4e:46:1c:d4:63:bd:37:1d:e9:70:67:
8f:1b:a4:3a:f2:1f:f7:1c:4d:4b:00:12:35:ff:0d:9b:cf:23:
03:b8:e0:b8:07:77:ca:64:66:62:00:ca:26:69:c3:10:7b:cb:
d3:f2:91:99:53:30:f1:b0:96:61:37:42:19:cd:5c:d5:af:92:
e6:80:fb:eb:b4:de:cf:29:4f:dd:08:8f:b8:fe:ee:f6:7b:53:
d2:3a:79:37:55:11:7f:03:d9:1b:73:89:bf:af:50:06:87:86:
4a:67:41:69:62:73:0f:47:64:5f:2b:19:ae:e1:97:69:91:8f:
8a:06:d4:2c:ca:e8:cf:50:26:a1:f1:2f:71:85:f3:79:d5:59:
4c:6c:8d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:53:09 2026 by rpki-client