Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/6WoM_xG4wV-AhnwKf_EtMbG7hdA.roa
File: 6WoM_xG4wV-AhnwKf_EtMbG7hdA.roa (raw, json)
Hash identifier: 6pwcjqwtQhFnc6O4o0o2P45/PvuebPJ0qN/3US6rWIk=
Subject key identifier: E9:6A:0C:FF:11:B8:C1:5F:80:86:7C:0A:7F:F1:2D:31:B1:BB:85:D0
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 019C5209B20D102155A4B21210BCCB8CF168
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/6WoM_xG4wV-AhnwKf_EtMbG7hdA.roa
Signing time: Thu 12 Feb 2026 13:28:12 +0000
ROA not before: Thu 12 Feb 2026 13:28:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 34170
IP address blocks: 80.69.48.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
185.92.224.0/24 maxlen: 24
185.92.225.0/24 maxlen: 24
185.92.226.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.153.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.155.0/24 maxlen: 24
212.47.156.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
2a05:8200::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:52:09:b2:0d:10:21:55:a4:b2:12:10:bc:cb:8c:f1:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Feb 12 13:28:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e96a0cff11b8c15f80867c0a7ff12d31b1bb85d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:21:9e:9a:50:38:d6:32:88:25:c7:31:e0:a6:
c9:61:77:e0:9c:9e:28:39:5e:d1:1d:10:71:6e:94:
31:82:0c:32:61:a2:7c:85:ea:2b:75:6f:4f:7c:b0:
f8:b7:5f:00:35:8a:b8:c5:67:db:e6:30:99:b0:73:
72:18:62:9b:b2:27:74:bf:e1:08:4e:2e:a8:25:4b:
6c:da:a4:33:da:31:66:74:dd:2e:74:15:5c:e7:91:
98:23:f8:c3:31:ff:b4:2e:f1:02:f4:bf:73:92:2a:
5a:f1:aa:5a:45:05:d5:4e:95:6a:c9:0f:5c:d6:6b:
5b:c0:cc:96:bc:ec:ad:06:ac:c4:97:38:8c:15:1e:
9c:9e:9b:c5:48:dc:d5:ad:d1:96:5c:71:19:f2:c8:
bb:3d:8d:34:9f:8c:4d:6c:28:4e:da:84:c1:dc:0a:
0b:73:03:61:fc:47:9a:13:fd:b8:36:85:44:4c:34:
79:f0:fc:a9:c2:eb:d5:7c:f3:bc:52:de:92:4b:2a:
4f:ff:b8:21:f7:f5:44:72:6f:8f:a6:ba:8b:c2:8a:
7c:96:6d:63:b0:46:39:0e:7b:11:31:fe:e3:bf:6e:
a4:1f:b7:65:38:5f:50:e7:53:5e:92:b8:bc:10:d4:
4c:f6:51:ba:70:f9:6b:10:27:e5:cb:7c:ff:01:98:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:6A:0C:FF:11:B8:C1:5F:80:86:7C:0A:7F:F1:2D:31:B1:BB:85:D0
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/6WoM_xG4wV-AhnwKf_EtMbG7hdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/22
80.69.53.0/24
80.69.56.0/23
80.69.60.0/24
91.135.240.0-91.135.244.255
91.135.252.0/23
92.39.90.0-92.39.94.255
158.181.34.0/24
158.181.37.0-158.181.39.255
185.92.224.0-185.92.226.255
185.105.196.0/22
212.47.152.0-212.47.158.255
IPv6:
2a05:8200::/29
Signature Algorithm: sha256WithRSAEncryption
1f:6d:ae:fd:fb:d6:1b:a6:f7:31:ab:95:d7:c8:2a:fc:05:8c:
e7:fd:08:86:62:90:81:5d:ea:1f:13:53:18:00:bf:05:6b:1e:
84:1c:54:af:39:cf:97:c6:7d:c4:a3:1b:c6:5d:d3:4c:0e:3b:
5c:c4:8c:67:c5:32:40:90:f5:55:8f:dc:d6:8e:49:8a:5a:fd:
7f:df:c4:3a:6b:bc:3b:29:53:fb:5d:e4:61:f7:c1:0f:08:58:
3e:1a:64:33:4f:7e:d5:be:4a:41:62:20:d0:0a:25:c4:25:80:
c6:17:2f:7b:64:05:eb:0a:e4:d4:78:ff:f7:de:c8:43:09:7e:
a2:5b:67:73:1b:78:c1:b9:7a:e6:3b:cb:40:8c:39:38:09:88:
d7:99:46:2a:4c:3e:61:00:58:96:8c:e2:b4:a1:48:93:05:b6:
13:ee:42:22:fe:75:dd:a6:d9:76:07:57:c2:af:f6:7a:7e:f1:
82:10:da:a8:a2:c2:ac:aa:b0:cc:96:9c:c9:c3:d6:da:4e:1e:
70:77:c8:b1:23:2b:5e:4d:31:c0:84:c9:e1:cc:28:12:81:41:
3f:cd:a8:ca:67:01:82:6d:e6:73:4f:69:54:6c:ca:14:3e:1e:
3c:a0:d5:ba:e4:f0:f6:ad:5e:b1:e6:ba:e1:4f:e4:67:02:3b:
2b:c0:e6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:42:44 2026 by rpki-client