Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/uLaeGKv0bs_oO1vI3aT6N_vyvt8.roa
File: uLaeGKv0bs_oO1vI3aT6N_vyvt8.roa (raw, json)
Hash identifier: WgJz3pk2ezCDKffdanrCW5yiZF/5p4B0bPNVwrYCrNY=
Subject key identifier: B8:B6:9E:18:AB:F4:6E:CF:E8:3B:5B:C8:DD:A4:FA:37:FB:F2:BE:DF
Certificate issuer: /CN=162fee2e6906e0cfd7c94c37c64fabf41e14c7b6
Certificate serial: 019B7A5B50788FD0D4C871C5399E57D2E283
Authority key identifier: 16:2F:EE:2E:69:06:E0:CF:D7:C9:4C:37:C6:4F:AB:F4:1E:14:C7:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/uLaeGKv0bs_oO1vI3aT6N_vyvt8.roa
Signing time: Thu 01 Jan 2026 16:19:23 +0000
ROA not before: Thu 01 Jan 2026 16:19:23 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 35306
IP address blocks: 193.239.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7a:5b:50:78:8f:d0:d4:c8:71:c5:39:9e:57:d2:e2:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162fee2e6906e0cfd7c94c37c64fabf41e14c7b6
Validity
Not Before: Jan 1 16:19:23 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b8b69e18abf46ecfe83b5bc8dda4fa37fbf2bedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1e:ab:4c:d9:dc:7d:8f:f0:09:f3:0e:94:95:
b7:42:9e:2b:d9:96:7b:2d:cf:e3:6b:94:fc:64:56:
e7:5b:49:47:7d:ab:df:e3:f0:39:b8:ba:f5:dd:b0:
55:3f:39:55:04:20:7a:88:e8:48:63:9e:d5:d8:0e:
29:be:e2:ae:98:2d:82:ac:5d:78:60:9c:05:05:73:
fe:c5:49:56:be:ff:cd:81:29:bd:07:ad:4a:79:4d:
c6:97:87:0f:76:8e:3d:f1:ec:66:30:2f:56:ce:a5:
9c:5a:c0:f7:1a:82:6e:15:b4:d7:f8:3c:4d:87:58:
84:55:91:cd:95:f9:87:e0:66:2d:2b:9b:31:0a:d5:
27:a5:04:a2:6d:63:1f:64:25:f4:a6:ee:a7:75:22:
eb:7c:c5:fc:e6:78:49:e1:af:70:97:15:05:92:55:
ab:ae:cd:b2:50:20:ee:07:4e:18:f0:aa:66:c5:7f:
2d:67:6d:94:06:a8:ae:95:87:7b:2b:cf:41:f0:97:
2f:ff:67:ed:22:82:e6:61:68:de:73:c0:a5:25:2a:
1e:c4:78:d6:e9:b5:71:07:99:2d:de:07:36:9b:11:
02:e2:1e:1b:08:1d:11:7c:fd:67:86:ae:8d:bd:80:
16:89:65:a4:b2:29:96:5c:01:02:22:d6:84:33:ca:
fa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B6:9E:18:AB:F4:6E:CF:E8:3B:5B:C8:DD:A4:FA:37:FB:F2:BE:DF
X509v3 Authority Key Identifier:
keyid:16:2F:EE:2E:69:06:E0:CF:D7:C9:4C:37:C6:4F:AB:F4:1E:14:C7:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/uLaeGKv0bs_oO1vI3aT6N_vyvt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/390837-2b7b-4684-9557-69c7ea5d8714/1/Fi_uLmkG4M_XyUw3xk-r9B4Ux7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:83:10:a4:45:3c:06:0f:47:d3:47:3d:3c:1f:82:e3:2f:02:
fe:61:cd:9a:de:2a:4b:72:dd:82:36:a7:4d:84:03:84:ba:64:
38:13:52:ff:dc:21:8b:92:68:a1:46:06:d0:e5:37:5d:e2:29:
ed:d5:ac:19:20:c6:95:5c:87:ad:47:8b:b5:c4:99:98:be:9d:
4a:53:8c:10:95:cc:f1:20:56:97:9e:cc:4a:5c:28:cd:39:96:
9e:c8:0c:5f:15:b9:92:6d:29:72:46:06:28:ff:dd:7d:0c:a7:
8a:d3:c7:55:fd:09:14:b5:3b:97:fb:80:11:26:fe:4b:47:0b:
c0:e7:96:12:90:0a:e0:ec:27:6c:45:cc:48:71:84:3a:f2:3c:
0a:89:10:86:5d:f0:27:9e:fe:ed:6e:00:bf:fb:20:5a:34:16:
39:09:56:16:09:70:aa:64:29:a9:ab:e1:ea:e3:37:1b:ad:b3:
aa:04:89:15:73:6a:95:b4:39:83:c1:f6:88:22:da:74:e2:e1:
22:48:fa:23:71:da:9a:42:c8:c1:26:16:19:28:c7:9e:5e:24:
c5:0d:9c:bf:e3:56:9a:63:77:a3:6c:de:53:e0:f5:67:29:01:
4a:7a:7e:ee:e0:d2:5a:6b:07:9a:71:bc:de:75:2e:b6:91:c6:
4f:97:9f:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZt6W1B4j9DUyHHFOZ5X0uKDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmZlZTJlNjkwNmUwY2ZkN2M5NGMzN2M2NGZhYmY0MWUx
NGM3YjYwHhcNMjYwMTAxMTYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGI2OWUxOGFiZjQ2ZWNmZTgzYjViYzhkZGE0ZmEzN2ZiZjJiZWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR6rTNncfY/wCfMOlJW3Qp4r2ZZ7
Lc/ja5T8ZFbnW0lHfavf4/A5uLr13bBVPzlVBCB6iOhIY57V2A4pvuKumC2CrF14
YJwFBXP+xUlWvv/NgSm9B61KeU3Gl4cPdo498exmMC9WzqWcWsD3GoJuFbTX+DxN
h1iEVZHNlfmH4GYtK5sxCtUnpQSibWMfZCX0pu6ndSLrfMX85nhJ4a9wlxUFklWr
rs2yUCDuB04Y8KpmxX8tZ22UBqiulYd7K89B8Jcv/2ftIoLmYWjec8ClJSoexHjW
6bVxB5kt3gc2mxEC4h4bCB0RfP1nhq6NvYAWiWWksimWXAECItaEM8r6BwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLi2nhir9G7P6DtbyN2k+jf78r7fMB8GA1UdIwQY
MBaAFBYv7i5pBuDP18lMN8ZPq/QeFMe2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmlfdUxta0c0TV9YeVV3M3hrLXI5QjRVeDdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zOTA4MzctMmI3Yi00Njg0LTk1NTct
NjljN2VhNWQ4NzE0LzEvdUxhZUdLdjBic19vTzF2STNhVDZOX3Z5dnQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zOTA4MzctMmI3Yi00Njg0LTk1NTctNjljN2VhNWQ4NzE0
LzEvRmlfdUxta0c0TV9YeVV3M3hrLXI5QjRVeDdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwe98MA0G
CSqGSIb3DQEBCwUAA4IBAQCggxCkRTwGD0fTRz08H4LjLwL+Yc2a3ipLct2CNqdN
hAOEumQ4E1L/3CGLkmihRgbQ5Tdd4int1awZIMaVXIetR4u1xJmYvp1KU4wQlczx
IFaXnsxKXCjNOZaeyAxfFbmSbSlyRgYo/919DKeK08dV/QkUtTuX+4ARJv5LRwvA
55YSkArg7CdsRcxIcYQ68jwKiRCGXfAnnv7tbgC/+yBaNBY5CVYWCXCqZCmpq+Hq
4zcbrbOqBIkVc2qVtDmDwfaIItp04uEiSPojcdqaQsjBJhYZKMeeXiTFDZy/41aa
Y3ejbN5T4PVnKQFKen7u4NJaaweacbzedS62kcZPl58D
-----END CERTIFICATE-----
Generated at Mon Mar 2 22:31:43 2026 by rpki-client