Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FjGtFm_MO92sgbmiHw9TuQ3Txz4.roa
File: FjGtFm_MO92sgbmiHw9TuQ3Txz4.roa (raw, json)
Hash identifier: 3tTXkWwMz8rcBm8nRBHLq2MECIruHDzrduWlKXSm8bk=
Subject key identifier: 16:31:AD:16:6F:CC:3B:DD:AC:81:B9:A2:1F:0F:53:B9:0D:D3:C7:3E
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 019EB2E71ECEB8B43FC3B762B731C51D2EB5
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FjGtFm_MO92sgbmiHw9TuQ3Txz4.roa
Signing time: Wed 10 Jun 2026 18:59:11 +0000
ROA not before: Wed 10 Jun 2026 18:59:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 59651
IP address blocks: 45.159.21.0/24 maxlen: 24
45.159.22.0/24 maxlen: 24
77.83.24.0/24 maxlen: 24
83.97.117.0/24 maxlen: 24
88.218.45.0/24 maxlen: 24
88.218.47.0/24 maxlen: 24
146.19.44.0/24 maxlen: 24
176.126.104.0/24 maxlen: 24
178.20.29.0/24 maxlen: 24
178.20.30.0/23 maxlen: 24
185.202.108.0/24 maxlen: 24
193.31.126.0/24 maxlen: 24
193.151.189.0/24 maxlen: 24
193.151.191.0/24 maxlen: 24
194.99.24.0/24 maxlen: 24
194.99.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b2:e7:1e:ce:b8:b4:3f:c3:b7:62:b7:31:c5:1d:2e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jun 10 18:59:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1631ad166fcc3bddac81b9a21f0f53b90dd3c73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c3:bb:39:77:5c:bb:ba:ed:32:32:25:67:f3:
28:52:b9:d4:52:af:40:c9:48:27:45:be:0f:99:bc:
66:1f:e1:3b:a9:27:56:3a:cb:e0:45:71:87:5e:17:
6f:9c:0c:bf:94:86:4a:bb:c3:69:77:1b:36:52:4f:
68:28:56:a0:df:b8:ac:72:77:ad:6b:70:ce:74:fa:
1e:14:a2:22:d5:89:f2:db:a9:a9:be:70:60:6d:79:
9d:41:3b:80:98:ed:a7:81:cf:8f:0f:27:a4:10:ef:
33:b8:c0:f9:0d:db:37:c1:66:42:c0:2a:89:2a:5c:
ee:dd:48:73:e1:b1:59:94:93:d3:9e:93:73:b4:70:
b7:bd:fe:b3:c7:b1:e4:b1:30:9b:1d:5c:9f:77:02:
22:f0:9b:cc:a6:2f:8d:2a:8b:91:d5:4e:2b:95:df:
c5:3f:93:8f:34:3f:4c:24:53:c1:5b:f3:d8:4d:cb:
9d:be:6f:d1:89:c8:72:e1:c0:bc:56:71:ec:a8:9f:
be:aa:39:6d:0d:20:cd:83:51:d9:b5:45:07:ac:f8:
44:d6:66:f1:92:a5:73:e3:01:81:86:c4:37:a5:f2:
bd:13:97:5b:5f:7f:e9:ec:50:48:13:24:79:58:44:
e7:68:19:41:69:71:3b:98:c9:3b:d0:01:51:87:65:
09:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:31:AD:16:6F:CC:3B:DD:AC:81:B9:A2:1F:0F:53:B9:0D:D3:C7:3E
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FjGtFm_MO92sgbmiHw9TuQ3Txz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.21.0-45.159.22.255
77.83.24.0/24
83.97.117.0/24
88.218.45.0/24
88.218.47.0/24
146.19.44.0/24
176.126.104.0/24
178.20.29.0-178.20.31.255
185.202.108.0/24
193.31.126.0/24
193.151.189.0/24
193.151.191.0/24
194.99.24.0/24
194.99.26.0/24
Signature Algorithm: sha256WithRSAEncryption
30:dc:75:11:3c:2f:82:a5:49:ac:33:56:31:23:48:a1:02:ec:
ef:78:18:ac:dd:b9:24:d1:98:66:2a:6e:39:1f:a0:cb:d2:22:
04:01:99:b8:2c:bd:d6:89:5d:d6:52:11:13:be:f7:16:f7:30:
bb:99:cd:06:5b:23:a0:08:0a:2a:67:b2:ac:b2:22:9c:77:95:
01:4d:00:4b:49:55:7c:3b:81:e9:19:2c:b9:c4:af:dd:f0:69:
1e:d5:d2:85:36:f4:b9:6e:d6:9a:85:fa:0b:c2:8d:20:19:f4:
5a:fb:96:c0:cf:33:5a:f4:d6:b3:8f:45:6d:15:f1:e5:69:02:
d5:d8:49:66:b9:99:bf:45:e1:50:d9:0e:31:01:1f:9a:ff:bd:
01:2c:5c:f6:15:d4:90:e2:62:78:a0:a1:fb:f8:cb:6f:d4:66:
04:be:ab:10:8f:51:c4:4a:2b:f4:4f:05:2f:da:9c:90:17:3d:
d4:ca:5a:45:ac:dd:41:51:ce:dc:23:9f:c2:67:23:1e:49:97:
fa:7f:b3:b4:38:67:f0:c9:e1:6e:13:a8:16:0c:75:ff:6f:5e:
eb:ef:c4:77:6e:63:eb:c9:4c:7b:10:04:27:ae:7a:5c:b0:5a:
d3:46:c6:25:56:71:26:a8:a3:cb:ce:6c:3b:1a:12:83:db:49:
94:1d:60:5a
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAZ6y5x7OuLQ/w7ditzHFHS61MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2
OWExZmQwHhcNMjYwNjEwMTg1OTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjMxYWQxNjZmY2MzYmRkYWM4MWI5YTIxZjBmNTNiOTBkZDNjNzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5MO7OXdcu7rtMjIlZ/MoUrnUUq9A
yUgnRb4PmbxmH+E7qSdWOsvgRXGHXhdvnAy/lIZKu8Npdxs2Uk9oKFag37iscnet
a3DOdPoeFKIi1Yny26mpvnBgbXmdQTuAmO2ngc+PDyekEO8zuMD5Dds3wWZCwCqJ
Klzu3Uhz4bFZlJPTnpNztHC3vf6zx7HksTCbHVyfdwIi8JvMpi+NKouR1U4rld/F
P5OPND9MJFPBW/PYTcudvm/Richy4cC8VnHsqJ++qjltDSDNg1HZtUUHrPhE1mbx
kqVz4wGBhsQ3pfK9E5dbX3/p7FBIEyR5WETnaBlBaXE7mMk70AFRh2UJbQIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFBYxrRZvzDvdrIG5oh8PU7kN08c+MB8GA1UdIwQY
MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et
OTk0ODA2ZjA4MWYwLzEvRmpHdEZtX01POTJzZ2JtaUh3OVR1UTNUeHo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw
LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBqBAIAATBkMAwDBAAtnxUD
BAAtnxYDBABNUxgDBABTYXUDBABY2i0DBABY2i8DBACSEywDBACwfmgwDAMEALIU
HQMEBbIUAAMEALnKbAMEAMEffgMEAMGXvQMEAMGXvwMEAMJjGAMEAMJjGjANBgkq
hkiG9w0BAQsFAAOCAQEAMNx1ETwvgqVJrDNWMSNIoQLs73gYrN25JNGYZipuOR+g
y9IiBAGZuCy91old1lIRE773Fvcwu5nNBlsjoAgKKmeyrLIinHeVAU0AS0lVfDuB
6RksucSv3fBpHtXShTb0uW7WmoX6C8KNIBn0WvuWwM8zWvTWs49FbRXx5WkC1dhJ
ZrmZv0XhUNkOMQEfmv+9ASxc9hXUkOJieKCh+/jLb9RmBL6rEI9RxEor9E8FL9qc
kBc91MpaRazdQVHO3COfwmcjHkmX+n+ztDhn8MnhbhOoFgx1/29e6+/Ed25j68lM
exAEJ656XLBa00bGJVZxJqijy85sOxoSg9tJlB1gWg==
-----END CERTIFICATE-----
Generated at Sat Jun 13 13:40:09 2026 by rpki-client