Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/AuUO_2nojen66WlGiolepOvX49M.roa
File: AuUO_2nojen66WlGiolepOvX49M.roa (raw, json)
Hash identifier: 8bQ2m0qspgGLeEntrk9gejaiydTwb1cwJB94m7ellzo=
Subject key identifier: 02:E5:0E:FF:69:E8:8D:E9:FA:E9:69:46:8A:89:5E:A4:EB:D7:E3:D3
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 019C339512B4DDE6AFE40D2809675F12C3DC
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/AuUO_2nojen66WlGiolepOvX49M.roa
Signing time: Fri 06 Feb 2026 15:32:13 +0000
ROA not before: Fri 06 Feb 2026 15:32:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 103.216.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:33:95:12:b4:dd:e6:af:e4:0d:28:09:67:5f:12:c3:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Feb 6 15:32:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=02e50eff69e88de9fae969468a895ea4ebd7e3d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b9:5b:7a:8e:14:b1:96:06:5d:f2:1f:27:d3:
17:8a:3e:00:0d:9a:9e:82:3c:2d:fe:ab:f7:4d:0d:
a9:47:c4:97:9f:63:9e:53:1b:21:f2:bc:f3:32:24:
82:74:ab:38:d3:ac:d9:32:ef:a9:6a:d1:02:7e:a5:
8e:1f:1b:4a:b8:43:6f:c7:39:b9:a4:1a:f2:9c:ec:
33:25:b7:48:1d:76:f1:d5:06:b2:33:8b:7c:fc:17:
27:56:77:e8:b3:88:ed:32:4e:e1:bb:0e:9d:b5:c1:
f5:1c:83:09:d4:f0:4c:d2:14:73:94:4d:f6:df:73:
08:60:93:2b:6a:a1:76:a5:7a:10:3b:79:01:78:14:
20:ff:8c:e9:d5:30:6a:ee:b0:b7:4a:6f:91:f8:86:
c9:e9:54:c4:33:5c:89:b5:38:8d:60:6d:95:01:9f:
90:b9:6a:b7:6a:46:db:c9:83:6f:12:50:93:c6:fd:
03:ec:5c:9e:5a:2a:91:d7:49:e9:11:59:2d:55:10:
bc:b9:10:18:50:0e:37:97:bb:9a:de:92:b0:cc:98:
95:9f:5f:9d:ba:f7:8f:36:e5:a2:89:3e:ef:63:26:
67:ab:d2:31:25:f9:58:4a:50:46:53:c2:ff:e1:8c:
71:11:73:e5:21:fc:25:cc:70:5a:f5:8a:00:4d:58:
54:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E5:0E:FF:69:E8:8D:E9:FA:E9:69:46:8A:89:5E:A4:EB:D7:E3:D3
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/AuUO_2nojen66WlGiolepOvX49M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.216.173.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:8b:ec:b1:63:e5:bf:64:90:b6:1c:90:c5:65:a6:7a:f8:be:
c9:d3:ba:d1:93:ec:4a:a4:5f:9c:39:ac:cc:05:cb:c4:39:dd:
b2:c6:23:1a:b9:b0:55:65:a0:85:8b:69:51:a3:d4:6a:02:d5:
39:ab:f4:d3:6c:e6:06:25:c8:9f:90:d8:26:67:09:2a:90:d9:
43:4a:33:01:0d:41:5c:7d:53:03:c5:b5:89:07:50:fb:34:f4:
2c:ad:5d:4f:0b:01:42:87:e6:5f:fb:02:2c:b8:15:e4:90:45:
4b:82:33:15:c9:ee:4d:2c:0e:a7:a8:fe:1b:a2:e5:be:0b:c1:
cd:5f:61:47:05:1c:20:0d:c9:7d:da:b7:16:40:95:b1:2d:21:
f0:13:f9:d8:01:89:8d:78:d4:d2:6d:c1:45:ad:78:3d:00:aa:
91:26:f1:c4:84:46:56:bd:c7:ea:7a:dc:61:8e:48:1d:7a:fd:
bc:84:be:9c:12:2f:36:7b:1f:6d:5c:ff:cd:38:8e:d8:8b:20:
79:2e:43:15:95:f1:ee:1a:31:af:a7:2f:79:c5:53:06:69:ec:
4f:91:96:14:89:a2:b4:5a:f5:6f:c1:f9:c1:9f:3c:c4:1c:35:
1d:83:3d:ad:a3:4b:be:1c:77:df:30:ca:1e:2c:fc:aa:48:a9:
ce:be:d8:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZwzlRK03eav5A0oCWdfEsPcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ODQ2NWIzN2IyZDRlOWY0MTNhMzFkYzdiN2U2Y2JhMmEz
M2RiOTYwHhcNMjYwMjA2MTUzMjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMmU1MGVmZjY5ZTg4ZGU5ZmFlOTY5NDY4YTg5NWVhNGViZDdlM2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA87lbeo4UsZYGXfIfJ9MXij4ADZqe
gjwt/qv3TQ2pR8SXn2OeUxsh8rzzMiSCdKs406zZMu+patECfqWOHxtKuENvxzm5
pBrynOwzJbdIHXbx1QayM4t8/BcnVnfos4jtMk7huw6dtcH1HIMJ1PBM0hRzlE32
33MIYJMraqF2pXoQO3kBeBQg/4zp1TBq7rC3Sm+R+IbJ6VTEM1yJtTiNYG2VAZ+Q
uWq3akbbyYNvElCTxv0D7FyeWiqR10npEVktVRC8uRAYUA43l7ua3pKwzJiVn1+d
uvePNuWiiT7vYyZnq9IxJflYSlBGU8L/4YxxEXPlIfwlzHBa9YoATVhUywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFALlDv9p6I3p+ulpRoqJXqTr1+PTMB8GA1UdIwQY
MBaAFAiEZbN7LU6fQTox3Ht+bLoqM9uWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUt
MmM3MDg2ZmRlZDkzLzEvQXVVT18ybm9qZW42NldsR2lvbGVwT3ZYNDlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUtMmM3MDg2ZmRlZDkz
LzEvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9itMA0G
CSqGSIb3DQEBCwUAA4IBAQCbi+yxY+W/ZJC2HJDFZaZ6+L7J07rRk+xKpF+cOazM
BcvEOd2yxiMaubBVZaCFi2lRo9RqAtU5q/TTbOYGJcifkNgmZwkqkNlDSjMBDUFc
fVMDxbWJB1D7NPQsrV1PCwFCh+Zf+wIsuBXkkEVLgjMVye5NLA6nqP4bouW+C8HN
X2FHBRwgDcl92rcWQJWxLSHwE/nYAYmNeNTSbcFFrXg9AKqRJvHEhEZWvcfqetxh
jkgdev28hL6cEi82ex9tXP/NOI7YiyB5LkMVlfHuGjGvpy95xVMGaexPkZYUiaK0
WvVvwfnBnzzEHDUdgz2to0u+HHffMMoeLPyqSKnOvtjh
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:05:53 2026 by rpki-client