Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/B6KVvgx5TM8VN3l8pwcEtXd1Zv0.roa
File: B6KVvgx5TM8VN3l8pwcEtXd1Zv0.roa (raw, json)
Hash identifier: 8nF8dktPdwqwoKApiZ3hvMdTDPbdz2wRKZCsJzWa0NI=
Subject key identifier: 07:A2:95:BE:0C:79:4C:CF:15:37:79:7C:A7:07:04:B5:77:75:66:FD
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 019C47C0A45385A2D3F1C6ECA9C2CB11FE6A
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/B6KVvgx5TM8VN3l8pwcEtXd1Zv0.roa
Signing time: Tue 10 Feb 2026 13:32:13 +0000
ROA not before: Tue 10 Feb 2026 13:32:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 205570
IP address blocks: 203.202.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.mft
rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:47:c0:a4:53:85:a2:d3:f1:c6:ec:a9:c2:cb:11:fe:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Feb 10 13:32:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=07a295be0c794ccf1537797ca70704b5777566fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f1:91:e3:a4:07:a4:71:f2:ed:5b:0b:99:65:
e3:1c:f8:3f:1f:b8:01:17:06:bd:b3:0a:19:f2:4c:
c6:21:6b:f8:9a:d8:70:4f:70:0a:af:9b:dd:02:ab:
5d:4b:1a:b6:38:42:2e:83:65:0d:ee:cb:7b:1e:e2:
db:a6:24:83:74:6b:ed:6a:2e:da:26:a3:0a:c2:e0:
6d:d3:7c:fb:ef:03:68:82:34:b7:be:89:48:23:95:
93:8c:a8:cf:d9:1f:c5:c4:e9:c6:53:41:8b:43:f2:
9c:c9:de:03:e2:8e:4a:40:54:d4:bb:10:0b:12:1e:
43:16:0d:c8:19:39:f4:79:5c:03:ff:91:d9:17:7e:
0e:b5:52:72:be:0f:e0:b3:5a:56:07:49:4b:7e:84:
bc:63:fb:09:a6:a5:e2:44:c4:24:27:dd:63:c2:f5:
20:ac:2f:29:56:80:81:0e:15:88:02:ad:0f:fe:ef:
5e:86:ba:5f:7f:f4:38:42:c5:07:4f:38:60:9b:11:
cd:da:e3:97:2b:f3:67:d0:d2:28:58:e7:93:12:80:
f0:d3:43:dc:34:ac:f4:b6:a8:49:f2:3e:26:9f:13:
f4:4f:dc:8a:f2:48:c6:c4:e9:ac:6f:f7:03:63:fd:
21:39:66:b3:8a:6a:02:83:63:a5:ee:0b:be:8f:f2:
88:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A2:95:BE:0C:79:4C:CF:15:37:79:7C:A7:07:04:B5:77:75:66:FD
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/B6KVvgx5TM8VN3l8pwcEtXd1Zv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.202.233.0/24
Signature Algorithm: sha256WithRSAEncryption
18:08:f7:c5:88:d7:37:17:22:d4:d0:ba:de:9b:df:c5:7a:8e:
cb:08:33:bc:fc:7c:e6:3c:fa:f6:58:66:e4:a6:03:40:a9:11:
87:ca:34:99:f8:e6:99:fb:ac:50:1f:1a:8c:27:25:0e:c1:54:
6b:4e:8f:7d:12:c5:9d:8c:1f:09:1c:87:ce:07:86:b9:2c:1c:
d6:dd:c6:c2:3a:86:04:95:05:f4:3f:8f:d3:19:8e:8c:78:da:
79:1b:7e:bb:b8:16:c9:12:1f:92:2a:43:de:6d:83:ed:96:0e:
6d:47:ec:56:47:48:a7:87:8c:4e:88:21:6f:d6:c4:2e:67:c9:
72:36:bb:9e:00:34:9e:79:31:4f:09:e5:61:db:94:d7:9b:5d:
e8:d5:2b:4f:53:1b:9e:da:eb:7a:ba:83:bd:7a:67:a9:88:43:
51:e2:b2:5c:ae:da:fd:db:37:94:59:e4:98:40:a7:46:c7:64:
cb:11:33:d6:ce:1c:d2:60:b7:bb:05:a0:ce:17:33:5b:89:67:
b2:8e:a7:25:bc:18:66:4a:4a:93:35:33:f1:e0:4a:95:d4:b2:
0a:9f:f1:cb:1b:6f:39:27:2b:14:c1:1a:bf:a3:99:fc:2e:49:
23:fc:f1:56:a8:5a:89:1c:b4:53:7b:08:56:3c:7b:94:e7:a7:
13:aa:64:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZxHwKRThaLT8cbsqcLLEf5qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNTU5Y2U4ODlhZTQyNDExMjFmZTBhMTY1M2U0Yjk1NWYz
ZWRmNGIwHhcNMjYwMjEwMTMzMjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2EyOTViZTBjNzk0Y2NmMTUzNzc5N2NhNzA3MDRiNTc3NzU2NmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PGR46QHpHHy7VsLmWXjHPg/H7gB
Fwa9swoZ8kzGIWv4mthwT3AKr5vdAqtdSxq2OEIug2UN7st7HuLbpiSDdGvtai7a
JqMKwuBt03z77wNogjS3volII5WTjKjP2R/FxOnGU0GLQ/Kcyd4D4o5KQFTUuxAL
Eh5DFg3IGTn0eVwD/5HZF34OtVJyvg/gs1pWB0lLfoS8Y/sJpqXiRMQkJ91jwvUg
rC8pVoCBDhWIAq0P/u9ehrpff/Q4QsUHTzhgmxHN2uOXK/Nn0NIoWOeTEoDw00Pc
NKz0tqhJ8j4mnxP0T9yK8kjGxOmsb/cDY/0hOWazimoCg2Ol7gu+j/KIwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAeilb4MeUzPFTd5fKcHBLV3dWb9MB8GA1UdIwQY
MBaAFOBVnOiJrkJBEh/goWU+S5VfPt9LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYt
OTQ0OTk1N2ZkNWE1LzEvQjZLVnZneDVUTThWTjNsOHB3Y0V0WGQxWnYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYtOTQ0OTk1N2ZkNWE1
LzEvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8rpMA0G
CSqGSIb3DQEBCwUAA4IBAQAYCPfFiNc3FyLU0Lrem9/Feo7LCDO8/HzmPPr2WGbk
pgNAqRGHyjSZ+OaZ+6xQHxqMJyUOwVRrTo99EsWdjB8JHIfOB4a5LBzW3cbCOoYE
lQX0P4/TGY6MeNp5G367uBbJEh+SKkPebYPtlg5tR+xWR0inh4xOiCFv1sQuZ8ly
NrueADSeeTFPCeVh25TXm13o1StPUxue2ut6uoO9emepiENR4rJcrtr92zeUWeSY
QKdGx2TLETPWzhzSYLe7BaDOFzNbiWeyjqclvBhmSkqTNTPx4EqV1LIKn/HLG285
JysUwRq/o5n8Lkkj/PFWqFqJHLRTewhWPHuU56cTqmTR
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:14:42 2026 by rpki-client