Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/w6aVtPi_QGLU8BO4yYE5hc26NUU.roa
File: w6aVtPi_QGLU8BO4yYE5hc26NUU.roa (raw, json)
Hash identifier: D1OzGspWySA2P+VWszH41u2S7emBKgssmNnj37u02no=
Subject key identifier: C3:A6:95:B4:F8:BF:40:62:D4:F0:13:B8:C9:81:39:85:CD:BA:35:45
Certificate issuer: /CN=6ad70ef25e522c0d26e977a1d24ff77ead3ada19
Certificate serial: 019B7DCA59C7127E2E03732C2CBFD06FDFB2
Authority key identifier: 6A:D7:0E:F2:5E:52:2C:0D:26:E9:77:A1:D2:4F:F7:7E:AD:3A:DA:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/atcO8l5SLA0m6Xeh0k_3fq062hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/w6aVtPi_QGLU8BO4yYE5hc26NUU.roa
Signing time: Fri 02 Jan 2026 08:19:31 +0000
ROA not before: Fri 02 Jan 2026 08:19:31 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 21058
IP address blocks: 80.83.160.0/21 maxlen: 21
80.83.160.0/23 maxlen: 23
80.83.160.0/24 maxlen: 24
80.83.161.0/24 maxlen: 24
80.83.162.0/23 maxlen: 23
80.83.162.0/24 maxlen: 24
80.83.163.0/24 maxlen: 24
80.83.164.0/23 maxlen: 23
80.83.164.0/24 maxlen: 24
80.83.165.0/24 maxlen: 24
80.83.166.0/23 maxlen: 23
80.83.166.0/24 maxlen: 24
80.83.167.0/24 maxlen: 24
80.83.168.0/24 maxlen: 24
80.83.169.0/24 maxlen: 24
80.83.171.0/24 maxlen: 24
80.83.172.0/22 maxlen: 22
80.83.172.0/23 maxlen: 23
80.83.172.0/24 maxlen: 24
80.83.173.0/24 maxlen: 24
80.83.174.0/23 maxlen: 23
80.83.174.0/24 maxlen: 24
80.83.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/atcO8l5SLA0m6Xeh0k_3fq062hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/atcO8l5SLA0m6Xeh0k_3fq062hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/atcO8l5SLA0m6Xeh0k_3fq062hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:ca:59:c7:12:7e:2e:03:73:2c:2c:bf:d0:6f:df:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ad70ef25e522c0d26e977a1d24ff77ead3ada19
Validity
Not Before: Jan 2 08:19:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c3a695b4f8bf4062d4f013b8c9813985cdba3545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f7:17:50:c6:83:0a:df:ac:64:2d:6e:c6:80:
94:8b:d8:8d:e5:b7:8b:df:83:5e:f1:0e:02:41:ae:
e2:66:7c:bd:76:31:16:83:48:12:4f:e6:d0:0c:d6:
73:93:5e:0c:6a:67:32:bf:77:d3:6a:d8:02:a6:38:
dc:b5:40:d0:96:46:85:09:5f:8a:d2:32:09:b2:d6:
a6:b3:4e:7b:86:5e:c0:c9:9b:fd:d6:b5:59:5b:64:
47:29:04:cf:8d:6b:98:c3:73:61:44:2a:22:48:bc:
c4:8d:fd:a7:4d:20:a6:28:bd:45:65:cb:08:2d:9f:
ed:08:58:49:3d:7a:0b:48:32:4f:6a:85:4d:ab:7a:
51:21:2d:45:90:e2:d3:bb:d2:98:c0:a8:86:5d:d9:
81:9a:5f:67:c4:73:2d:48:3b:1d:79:d2:d3:49:95:
90:8a:be:3e:75:af:b3:95:97:b4:73:0a:bd:0e:5f:
dc:ba:2b:4e:da:d4:c7:4b:f0:bb:93:8c:c6:02:8b:
86:1d:7e:b8:ce:84:b0:8e:4e:47:cc:f3:a8:8a:9c:
17:e5:cb:e0:e6:a5:82:5e:6f:a3:24:79:36:f1:b0:
6c:13:c8:58:62:20:82:15:84:42:33:0a:ce:d6:5e:
49:41:ec:c8:d8:af:b5:f9:29:6c:19:6d:ae:b1:0e:
c6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A6:95:B4:F8:BF:40:62:D4:F0:13:B8:C9:81:39:85:CD:BA:35:45
X509v3 Authority Key Identifier:
keyid:6A:D7:0E:F2:5E:52:2C:0D:26:E9:77:A1:D2:4F:F7:7E:AD:3A:DA:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/atcO8l5SLA0m6Xeh0k_3fq062hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/w6aVtPi_QGLU8BO4yYE5hc26NUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23968a-fa36-4654-bfbf-9404e177200e/1/atcO8l5SLA0m6Xeh0k_3fq062hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.160.0-80.83.169.255
80.83.171.0-80.83.175.255
Signature Algorithm: sha256WithRSAEncryption
25:35:2a:67:e8:8f:8b:3b:d1:54:0a:61:5f:3e:46:46:2d:b7:
0b:95:0b:a4:f4:1a:da:c7:d4:0c:3a:3d:a5:ae:85:c1:36:1d:
f5:6d:3b:0b:5e:e2:dd:15:a9:fe:96:cc:c0:e6:11:9a:c3:af:
71:8b:82:ff:ee:aa:ea:99:41:69:d3:04:35:11:ea:15:bd:c2:
7b:7c:ed:f2:3c:75:40:56:b0:2e:3b:da:fe:df:71:47:33:85:
b7:20:4f:f6:08:8a:0a:96:53:52:cb:8a:a2:83:ee:8a:1e:d7:
75:45:73:f0:62:3d:e2:7c:07:b8:af:ec:23:3c:a2:93:c0:cf:
ef:dc:32:dc:f0:ee:3c:8e:eb:00:af:92:b8:06:99:00:90:f2:
81:7f:31:cb:2c:19:2f:45:7f:b1:90:dd:f2:5e:5e:00:0e:6a:
fb:ab:d8:a4:14:45:68:97:9d:e0:44:7e:bc:e7:07:fc:6f:db:
d6:56:99:ec:14:e0:92:87:78:56:52:8c:76:4f:02:a5:5d:84:
5b:2b:d2:bd:21:70:11:94:95:a1:47:04:a4:46:05:1d:f1:42:
6d:ee:be:c1:67:d6:5a:34:9b:d7:1c:ca:3b:1e:8b:25:a7:9a:
38:5e:20:a0:51:8e:ba:00:6d:89:71:02:17:a0:c3:f7:74:6a:
08:94:94:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:37:16 2026 by rpki-client