Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/m7EcG31gk4Uw0te4eJF9ztt2Hng.roa
File: m7EcG31gk4Uw0te4eJF9ztt2Hng.roa (raw, json)
Hash identifier: gFwk97kClWvXn+FH8Ous9hr20EHIEHjhNxf5KUqro/8=
Subject key identifier: 9B:B1:1C:1B:7D:60:93:85:30:D2:D7:B8:78:91:7D:CE:DB:76:1E:78
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 019CA9AB13F2771408FC33DBA37E45DAFFD5
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/m7EcG31gk4Uw0te4eJF9ztt2Hng.roa
Signing time: Sun 01 Mar 2026 13:51:27 +0000
ROA not before: Sun 01 Mar 2026 13:51:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 34984
IP address blocks: 131.222.224.0/24 maxlen: 24
131.222.230.0/24 maxlen: 24
131.222.231.0/24 maxlen: 24
131.222.232.0/24 maxlen: 24
131.222.233.0/24 maxlen: 24
131.222.234.0/24 maxlen: 24
131.222.235.0/24 maxlen: 24
131.222.236.0/24 maxlen: 24
131.222.248.0/22 maxlen: 22
131.222.254.0/24 maxlen: 24
203.202.233.0/24 maxlen: 24
2a05:d740::/30 maxlen: 30
2a05:d744::/30 maxlen: 30
2a06:e900::/30 maxlen: 30
2a06:e904::/30 maxlen: 30
2a07:4a00::/30 maxlen: 30
2a07:4a04::/30 maxlen: 30
2a0a:37c0::/30 maxlen: 30
2a0a:37c4::/30 maxlen: 30
2a0b:9800::/30 maxlen: 30
2a0b:9804::/30 maxlen: 30
2a0b:a280::/30 maxlen: 30
2a0b:a284::/30 maxlen: 30
2a0b:a300::/30 maxlen: 30
2a0b:a304::/30 maxlen: 30
2a0c:7440::/30 maxlen: 30
2a0c:7444::/30 maxlen: 30
2a0c:74c0::/30 maxlen: 30
2a0c:74c4::/30 maxlen: 30
2a0c:7540::/30 maxlen: 30
2a0c:7544::/30 maxlen: 30
2a0d:2cc0::/30 maxlen: 30
2a0d:2cc4::/30 maxlen: 30
2a0d:88c0::/30 maxlen: 30
2a0d:88c4::/30 maxlen: 30
2a0f:1180::/30 maxlen: 30
2a0f:1184::/30 maxlen: 30
2a0f:2380::/30 maxlen: 30
2a0f:2384::/30 maxlen: 30
2a0f:3380::/30 maxlen: 30
2a0f:3384::/30 maxlen: 30
2a0f:4580::/30 maxlen: 30
2a0f:4584::/30 maxlen: 30
2a0f:4680::/30 maxlen: 30
2a0f:4684::/30 maxlen: 30
2a0f:5580::/30 maxlen: 30
2a0f:5584::/30 maxlen: 30
2a0f:7100::/30 maxlen: 30
2a0f:7104::/30 maxlen: 30
2a0f:7300::/30 maxlen: 30
2a0f:7304::/30 maxlen: 30
2a0f:7c80::/30 maxlen: 30
2a0f:7c84::/30 maxlen: 30
2a0f:9fc0::/30 maxlen: 30
2a0f:9fc4::/30 maxlen: 30
2a0f:a140::/30 maxlen: 30
2a0f:a144::/30 maxlen: 30
2a0f:a500::/30 maxlen: 30
2a0f:a504::/30 maxlen: 30
2a0f:a700::/30 maxlen: 30
2a0f:a704::/30 maxlen: 30
2a0f:c780::/30 maxlen: 30
2a0f:c784::/30 maxlen: 30
2a14:4080::/30 maxlen: 30
2a14:4084::/30 maxlen: 30
2a14:4380::/30 maxlen: 30
2a14:4384::/30 maxlen: 30
2a14:4480::/30 maxlen: 30
2a14:4484::/30 maxlen: 30
2a14:4980::/30 maxlen: 30
2a14:4984::/30 maxlen: 30
2a14:4a80::/30 maxlen: 30
2a14:4a84::/30 maxlen: 30
2a14:4b80::/30 maxlen: 30
2a14:4b84::/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.mft
rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ab:13:f2:77:14:08:fc:33:db:a3:7e:45:da:ff:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Mar 1 13:51:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9bb11c1b7d60938530d2d7b878917dcedb761e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:20:70:65:4b:a3:fa:81:33:fc:2d:e5:43:7c:
24:2f:22:24:8f:ed:0f:36:fc:90:e8:04:6e:7a:22:
82:34:68:73:fd:f3:fa:ad:4f:5b:da:45:55:35:36:
bb:d9:f2:22:87:1c:22:77:49:b4:9a:00:64:f0:ec:
14:30:89:d1:6b:73:c6:a7:e5:ac:2b:3f:e4:55:d0:
8c:ff:17:12:17:10:d1:10:9a:90:6e:15:d5:52:ca:
d6:a7:63:01:9f:e4:96:b4:7f:78:01:60:12:32:17:
b3:ba:c1:6a:f3:09:81:b7:c1:c1:8e:d4:a2:03:76:
bd:5a:93:3f:66:58:c4:6d:c1:53:9a:30:94:fd:6e:
08:54:5e:b3:ec:7e:04:f4:fe:38:e2:65:19:10:ba:
f2:be:11:5e:84:3e:8c:95:76:7c:70:98:52:ee:ed:
e3:fc:89:21:c6:7a:4e:9b:45:02:db:73:52:41:6e:
ea:ed:26:d5:7c:3d:59:0b:58:f8:a1:0b:bb:b2:64:
93:a8:98:dd:40:c9:45:b2:96:80:68:fe:82:0a:64:
35:65:b9:f4:62:c4:87:77:19:37:56:00:ba:e9:22:
de:bb:6f:6c:57:3c:7c:1e:f2:54:aa:02:9a:5c:9d:
23:79:31:15:92:ed:1c:34:3c:b3:c3:6d:8f:94:1f:
bc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B1:1C:1B:7D:60:93:85:30:D2:D7:B8:78:91:7D:CE:DB:76:1E:78
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/m7EcG31gk4Uw0te4eJF9ztt2Hng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.222.224.0/24
131.222.230.0-131.222.236.255
131.222.248.0/22
131.222.254.0/24
203.202.233.0/24
IPv6:
2a05:d740::/29
2a06:e900::/29
2a07:4a00::/29
2a0a:37c0::/29
2a0b:9800::/29
2a0b:a280::/29
2a0b:a300::/29
2a0c:7440::/29
2a0c:74c0::/29
2a0c:7540::/29
2a0d:2cc0::/29
2a0d:88c0::/29
2a0f:1180::/29
2a0f:2380::/29
2a0f:3380::/29
2a0f:4580::/29
2a0f:4680::/29
2a0f:5580::/29
2a0f:7100::/29
2a0f:7300::/29
2a0f:7c80::/29
2a0f:9fc0::/29
2a0f:a140::/29
2a0f:a500::/29
2a0f:a700::/29
2a0f:c780::/29
2a14:4080::/29
2a14:4380::/29
2a14:4480::/29
2a14:4980::/29
2a14:4a80::/29
2a14:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
76:2a:0b:ff:56:77:61:76:d6:a9:18:bb:2c:ea:45:3d:65:80:
ed:20:16:27:2f:a2:1a:ed:34:31:27:ff:e4:3e:64:2b:36:3c:
2b:12:36:c4:28:e5:13:af:31:fd:89:1e:dc:f5:c9:8e:8b:21:
69:8e:b3:db:70:86:0f:a4:e9:b3:4b:f7:9d:23:2b:62:d2:c6:
46:43:fe:f4:3c:5c:39:71:d8:73:be:06:78:39:b8:3d:98:3c:
df:24:6c:06:64:82:22:b3:cf:88:95:ba:e2:30:bd:8e:01:32:
31:1e:43:7b:e3:d6:27:97:99:0a:1b:b4:64:32:d3:52:ee:20:
64:ca:bf:f9:a1:90:2f:48:66:cf:10:42:b6:8e:ee:eb:af:b7:
de:21:75:09:25:86:82:15:7b:cc:6e:b6:9f:60:d6:52:8a:5a:
86:a1:6e:82:a4:d2:68:f2:06:7b:ea:93:ad:24:4c:26:60:55:
fc:ce:a1:ce:69:58:b5:11:20:cb:60:e3:d9:94:8e:f5:f4:43:
e7:67:cb:8e:e7:3f:5d:e9:c7:12:b1:51:a9:9c:f0:a5:42:c7:
07:e1:ad:d7:16:32:39:ab:82:d6:d7:e9:37:55:37:2a:83:10:
be:8b:67:7d:63:89:d4:6d:d3:41:a4:1e:eb:8e:09:32:9d:98:
fb:f8:05:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:38:28 2026 by rpki-client