Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/yMfq4tl4tsm_eKrlq_IfqdTQXZM.roa
File: yMfq4tl4tsm_eKrlq_IfqdTQXZM.roa (raw, json)
Hash identifier: nDCkpydlNUMF8c0eeQ/zyRieQdsyPAVg6iJ/0hF8kd0=
Subject key identifier: C8:C7:EA:E2:D9:78:B6:C9:BF:78:AA:E5:AB:F2:1F:A9:D4:D0:5D:93
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 019C6BAB415C45790D8D82C645CA6FDB9588
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/yMfq4tl4tsm_eKrlq_IfqdTQXZM.roa
Signing time: Tue 17 Feb 2026 12:55:11 +0000
ROA not before: Tue 17 Feb 2026 12:55:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 64289
IP address blocks: 194.110.60.0/24 maxlen: 24
2a14:3f80::/45 maxlen: 45
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:1ed0::/45 maxlen: 45
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:2b40::/42 maxlen: 42
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:6920::/44 maxlen: 44
2a14:3f87:6ba0::/44 maxlen: 44
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:e000::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:f001::/48 maxlen: 48
2a14:3f87:f002::/48 maxlen: 48
2a14:3f87:fc00::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6b:ab:41:5c:45:79:0d:8d:82:c6:45:ca:6f:db:95:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Feb 17 12:55:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c8c7eae2d978b6c9bf78aae5abf21fa9d4d05d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:15:80:4c:60:f5:4f:ef:c8:60:93:e8:ad:5f:
7c:62:30:b9:8a:78:93:48:b5:2d:1c:d9:dd:d9:cc:
44:a9:4c:1b:06:7b:b1:5e:b6:4d:c0:85:b0:45:59:
8d:47:ef:9d:c8:d7:f4:87:13:80:83:1a:d9:b5:ca:
85:43:c6:58:5c:7d:b9:b7:44:af:36:32:63:0c:d9:
4e:e1:ac:16:dd:6f:4a:06:72:d3:19:fe:11:dd:48:
c7:78:04:b4:8b:2b:3c:58:e3:1a:2c:e3:33:6c:d9:
a0:e2:aa:3e:69:da:41:7f:72:00:e7:68:34:a5:09:
f9:d6:10:f0:30:7e:5c:98:9b:0e:07:f6:78:82:04:
c9:3e:e9:1b:89:35:9a:2b:05:ee:be:84:aa:f0:ce:
47:2d:34:be:d8:f0:a9:f0:ae:99:f0:69:4c:63:8e:
36:5f:0b:30:8a:eb:39:e7:a6:8a:58:67:53:92:25:
f1:0f:ba:eb:52:b8:d1:ac:9a:07:de:bb:fd:b4:91:
96:b6:79:5e:39:78:15:d1:7b:fe:17:22:48:2b:ea:
fe:d3:fa:e4:6d:20:c8:4d:5a:47:aa:41:6f:6e:92:
7b:e4:74:bd:bd:1f:c6:30:ef:f0:ce:bd:9f:fb:f9:
e2:5b:43:e1:0f:0a:4a:19:e8:e7:24:a2:3a:ba:6e:
44:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C7:EA:E2:D9:78:B6:C9:BF:78:AA:E5:AB:F2:1F:A9:D4:D0:5D:93
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/yMfq4tl4tsm_eKrlq_IfqdTQXZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.60.0/24
IPv6:
2a14:3f80::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:1ed0::/45
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:e000::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
1d:d4:da:38:aa:08:21:79:10:66:2a:73:ef:c8:4b:87:57:65:
ca:9e:dc:b4:10:b4:61:e7:d6:d6:b6:e6:79:e2:d1:81:83:6c:
3b:2e:a6:2e:43:16:cb:4d:82:f6:a3:3a:00:f9:ba:9d:ea:e3:
97:c6:79:74:b2:6f:88:33:27:1b:45:7b:ac:01:42:8c:37:8f:
29:80:80:32:a5:a2:52:3e:ed:b8:20:1d:7d:11:ac:89:47:3d:
78:ea:e1:2f:18:71:f6:85:5b:83:8e:78:e3:cb:d9:3f:ff:34:
78:7d:6e:bd:59:66:63:be:4e:76:27:59:29:56:fd:4e:5a:3c:
ba:8b:27:aa:23:a4:40:96:96:22:46:a9:10:84:d1:e6:79:ad:
70:fb:4a:e5:4e:1b:b4:07:03:c6:73:b7:34:82:6e:32:d9:93:
5a:7f:2b:07:b9:1d:12:ec:96:cf:df:fb:e3:de:65:3a:4e:86:
55:79:77:47:ca:22:f3:31:21:f2:1e:28:89:95:da:21:69:e1:
ad:e9:db:05:44:f9:0e:2e:7d:1d:aa:fa:1d:9f:3b:a5:18:f8:
4d:5d:12:4b:a6:c0:36:b5:ef:a8:1e:30:da:56:a0:00:53:69:
d8:3e:c6:18:a6:91:10:0e:b4:fa:b9:ca:69:fa:f4:07:bf:46:
d2:1d:3b:57
-----BEGIN CERTIFICATE-----
MIIGFTCCBP2gAwIBAgISAZxrq0FcRXkNjYLGRcpv25WIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZWQzYmE2OGM3OGJmZjJjNDcyNDQwMGFkZTYzNDg0ODJm
YjQzNjQwHhcNMjYwMjE3MTI1NTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGM3ZWFlMmQ5NzhiNmM5YmY3OGFhZTVhYmYyMWZhOWQ0ZDA1ZDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthWATGD1T+/IYJPorV98YjC5iniT
SLUtHNnd2cxEqUwbBnuxXrZNwIWwRVmNR++dyNf0hxOAgxrZtcqFQ8ZYXH25t0Sv
NjJjDNlO4awW3W9KBnLTGf4R3UjHeAS0iys8WOMaLOMzbNmg4qo+adpBf3IA52g0
pQn51hDwMH5cmJsOB/Z4ggTJPukbiTWaKwXuvoSq8M5HLTS+2PCp8K6Z8GlMY442
Xwswius556aKWGdTkiXxD7rrUrjRrJoH3rv9tJGWtnleOXgV0Xv+FyJIK+r+0/rk
bSDITVpHqkFvbpJ75HS9vR/GMO/wzr2f+/niW0PhDwpKGejnJKI6um5E+wIDAQAB
o4IDITCCAx0wHQYDVR0OBBYEFMjH6uLZeLbJv3iq5avyH6nU0F2TMB8GA1UdIwQY
MBaAFGbtO6aMeL/yxHJEAK3mNISC+0NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMt
MGE0M2I3YTNlYjU0LzEveU1mcTR0bDR0c21fZUtybHFfSWZxZFRRWFpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMtMGE0M2I3YTNlYjU0
LzEvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBNQYIKwYBBQUHAQcBAf8EggEkMIIBIDAMBAIAATAGAwQA
wm48MIIBDgQCAAIwggEGMBADBQcqFD+AAwcEKhQ/gAAgAwcDKhQ/gABgAwcEKhQ/
gACAAwcEKhQ/gAEAAwcAKhQ/gAPRMBADBgMqFD+ACAMGAioUP4AYAwcDKhQ/gB7Q
MBADBgUqFD+AIAMGAioUP4AoMBADBgQqFD+AMAMGAyoUP4BAAwYCKhQ/gFADBgIq
FD+AYAMGAioUP4BwAwYCKhQ/gIgDBwMqFD+ArzgDBgIqFD+BWAMGAioUP4JAAwYC
KhQ/gmADBgIqFD+CcAMGAioUP4KIAwYCKhQ/hygDBgIqFD+HSAMGAioUP4doAwYC
KhQ/h5gDBgIqFD+HyAMGAioUP4fgAwYCKhQ/h/ADBgIqFD+H/DANBgkqhkiG9w0B
AQsFAAOCAQEAHdTaOKoIIXkQZipz78hLh1dlyp7ctBC0YefW1rbmeeLRgYNsOy6m
LkMWy02C9qM6APm6nerjl8Z5dLJviDMnG0V7rAFCjDePKYCAMqWiUj7tuCAdfRGs
iUc9eOrhLxhx9oVbg45448vZP/80eH1uvVlmY75OdidZKVb9Tlo8uosnqiOkQJaW
IkapEITR5nmtcPtK5U4btAcDxnO3NIJuMtmTWn8rB7kdEuyWz9/7495lOk6GVXl3
R8oi8zEh8h4oiZXaIWnhrenbBUT5Di59Har6HZ87pRj4TV0SS6bANrXvqB4w2lag
AFNp2D7GGKaREA60+rnKafr0B79G0h07Vw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:04:29 2026 by rpki-client