Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa
File: eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa (raw, json)
Hash identifier: EPkgNIk6bKUUZeeYQssHTaftEyd1+IqUJt3qVX40j0g=
Subject key identifier: 78:98:56:F7:3E:64:BB:DF:EA:84:D8:8E:EA:2C:3F:01:35:E8:10:7C
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 019C2884B05879A768C6DE1F57C2D00D6148
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa
Signing time: Wed 04 Feb 2026 11:58:30 +0000
ROA not before: Wed 04 Feb 2026 11:58:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44516
IP address blocks: 95.130.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:28:84:b0:58:79:a7:68:c6:de:1f:57:c2:d0:0d:61:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Feb 4 11:58:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=789856f73e64bbdfea84d88eea2c3f0135e8107c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:98:3d:96:1c:83:f4:d7:2b:4a:18:2c:57:
53:60:6d:59:81:f6:5a:f8:5c:de:a0:35:f5:a7:ae:
9e:38:16:5f:f7:06:44:e0:5e:84:40:2e:d2:c7:1f:
16:88:56:f2:ee:f7:95:a6:5f:ef:d8:83:17:da:42:
dd:5f:0d:c9:ca:b0:fb:6e:8f:9a:b7:73:dd:2e:57:
80:75:06:20:10:80:62:e2:10:aa:32:5b:01:58:96:
3a:df:46:d1:5b:ff:7e:ba:10:c9:49:93:0b:26:ea:
4b:c3:b7:dd:e7:88:17:5c:fd:3c:72:b8:23:d3:12:
3d:23:52:40:45:ff:8f:89:d4:f1:c2:1f:f4:3d:34:
7d:da:33:10:34:c8:90:80:39:aa:33:b8:c2:48:bc:
df:59:9c:73:52:fb:21:fe:2b:39:e2:ca:79:03:2a:
02:f9:e4:fa:70:3b:ea:8c:1c:e2:bb:f9:e4:c2:06:
47:b5:71:a0:f6:af:01:49:67:c7:a6:c6:c4:c8:86:
72:d4:8b:d4:e0:aa:74:c5:e9:df:db:4d:67:e3:3c:
f1:a7:f7:0f:06:29:ef:50:4d:fd:46:e0:ae:89:6d:
db:97:e3:6d:4e:01:25:0b:1a:3f:0f:73:c1:bf:01:
8c:85:81:09:bd:89:6c:a9:7b:76:aa:8a:43:c7:1c:
54:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:98:56:F7:3E:64:BB:DF:EA:84:D8:8E:EA:2C:3F:01:35:E8:10:7C
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:19:ef:26:3f:ee:c7:ff:46:ca:ea:5c:4b:27:a5:94:ff:87:
45:b4:92:b8:6e:c5:28:f0:22:3b:35:8b:74:8d:96:25:43:f3:
29:67:a8:0f:6c:74:dd:fe:aa:d8:1c:46:f6:8f:b8:b3:b7:35:
39:d9:7b:fe:b7:5e:1e:6c:8f:f9:f8:93:0a:3b:5a:7a:14:59:
60:f3:61:07:f0:eb:9a:68:5e:fd:cb:ed:10:1d:e7:e0:f0:e6:
e9:0a:12:34:f3:2f:c4:b7:4f:cf:a8:03:22:e0:f1:61:d6:2d:
6a:e3:84:49:30:74:0e:e1:69:ee:b1:08:dd:6c:7c:cc:c4:69:
68:7e:4b:da:bf:1e:9a:31:94:b4:d6:70:ce:f7:6f:73:b8:6f:
33:48:77:7d:07:ef:66:1c:4f:df:bb:82:95:ad:14:62:04:c8:
0f:55:46:e3:73:ee:8a:5c:12:05:d3:b4:cc:9a:15:c2:33:21:
7c:02:db:f8:dd:3b:0d:7c:10:90:93:5b:54:f5:a7:4f:40:43:
2e:33:cb:e7:13:53:1e:30:71:e1:50:52:5e:2f:7c:a2:e8:4d:
bd:36:49:f5:44:c9:2c:3f:f9:d2:34:a5:7c:01:d6:92:e3:65:
35:19:c3:c2:81:59:f1:ab:6c:5b:a7:e3:f4:be:3a:20:ca:15:
b6:75:4a:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZwohLBYeadoxt4fV8LQDWFIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxZjNlZjNlMGVhOTVhOTc1NTM3ZDVjMjVkOTNjYjc2YWY2
ODcyMzQwHhcNMjYwMjA0MTE1ODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODk4NTZmNzNlNjRiYmRmZWE4NGQ4OGVlYTJjM2YwMTM1ZTgxMDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIOYPZYcg/TXK0oYLFdTYG1ZgfZa
+FzeoDX1p66eOBZf9wZE4F6EQC7Sxx8WiFby7veVpl/v2IMX2kLdXw3JyrD7bo+a
t3PdLleAdQYgEIBi4hCqMlsBWJY630bRW/9+uhDJSZMLJupLw7fd54gXXP08crgj
0xI9I1JARf+PidTxwh/0PTR92jMQNMiQgDmqM7jCSLzfWZxzUvsh/is54sp5AyoC
+eT6cDvqjBziu/nkwgZHtXGg9q8BSWfHpsbEyIZy1IvU4Kp0xenf201n4zzxp/cP
BinvUE39RuCuiW3bl+NtTgElCxo/D3PBvwGMhYEJvYlsqXt2qopDxxxUcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHiYVvc+ZLvf6oTYjuosPwE16BB8MB8GA1UdIwQY
MBaAFAHz7z4OqVqXVTfVwl2Ty3avaHI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEt
MzUzYjNhNjMzYWRhLzEvZUpoVzl6NWt1OV9xaE5pTzZpd19BVFhvRUh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEtMzUzYjNhNjMzYWRh
LzEvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4LFMA0G
CSqGSIb3DQEBCwUAA4IBAQAsGe8mP+7H/0bK6lxLJ6WU/4dFtJK4bsUo8CI7NYt0
jZYlQ/MpZ6gPbHTd/qrYHEb2j7iztzU52Xv+t14ebI/5+JMKO1p6FFlg82EH8Oua
aF79y+0QHefg8ObpChI08y/Et0/PqAMi4PFh1i1q44RJMHQO4WnusQjdbHzMxGlo
fkvavx6aMZS01nDO929zuG8zSHd9B+9mHE/fu4KVrRRiBMgPVUbjc+6KXBIF07TM
mhXCMyF8Atv43TsNfBCQk1tU9adPQEMuM8vnE1MeMHHhUFJeL3yi6E29Nkn1RMks
P/nSNKV8AdaS42U1GcPCgVnxq2xbp+P0vjogyhW2dUp5
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:27:12 2026 by rpki-client