Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aW8r_HLR6VNKE_rmQu3mUgUkhGI.roa
File: aW8r_HLR6VNKE_rmQu3mUgUkhGI.roa (raw, json)
Hash identifier: FOBC/PenrqgXaUl84x0pIfjsizuSGSaxyOnTHxuyUA4=
Subject key identifier: 69:6F:2B:FC:72:D1:E9:53:4A:13:FA:E6:42:ED:E6:52:05:24:84:62
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019D9B4459E83756E1226DB62E5A01D83ADD
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aW8r_HLR6VNKE_rmQu3mUgUkhGI.roa
Signing time: Fri 17 Apr 2026 11:47:21 +0000
ROA not before: Fri 17 Apr 2026 11:47:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 200088
IP address blocks: 78.17.6.0/24 maxlen: 24
78.17.36.0/24 maxlen: 24
78.17.43.0/24 maxlen: 24
78.17.44.0/24 maxlen: 24
78.17.151.0/24 maxlen: 24
89.125.27.0/24 maxlen: 24
89.125.38.0/24 maxlen: 24
89.125.62.0/24 maxlen: 24
89.125.84.0/24 maxlen: 24
89.125.93.0/24 maxlen: 24
212.192.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 10:07:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:44:59:e8:37:56:e1:22:6d:b6:2e:5a:01:d8:3a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 17 11:47:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=696f2bfc72d1e9534a13fae642ede65205248462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b1:25:35:7b:6e:01:e8:00:11:eb:da:86:01:
1f:de:21:a3:21:14:af:dd:23:0e:74:7b:0d:6e:84:
67:6b:b1:5e:26:ca:3f:59:9e:86:2d:d6:35:c1:7f:
65:ed:4e:ed:eb:83:7d:42:e7:89:59:41:c9:bd:e4:
a8:a6:0e:cc:69:3d:5a:da:bf:04:71:7b:9a:27:05:
4a:4c:c7:bf:ef:7d:a5:b5:58:90:d7:e3:ef:c1:66:
71:28:42:29:06:7a:d0:59:7e:34:08:94:81:34:51:
d2:e2:17:9f:11:ba:17:95:12:1d:fe:a4:4d:c5:fa:
ef:4f:d2:ef:c0:fc:8c:0a:25:09:4d:29:51:1d:03:
56:4e:b3:76:18:7a:5d:2d:ad:15:36:07:67:bd:b7:
db:50:98:77:51:51:84:56:c6:07:35:68:7b:1a:6b:
b7:ca:aa:61:57:1e:47:65:45:12:37:ec:e9:1e:55:
76:7e:94:6a:74:45:18:65:34:80:b0:c1:0f:6a:be:
61:a7:84:cb:4f:ac:0c:88:78:5c:d6:b2:9a:67:aa:
8e:50:a7:8b:2c:60:7e:64:ab:9e:09:ac:e1:90:65:
e2:24:e2:0c:f2:00:3e:e3:39:db:35:b5:33:cd:06:
a0:13:3b:d2:c2:e6:08:69:f9:ac:a0:70:9d:f8:fa:
71:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6F:2B:FC:72:D1:E9:53:4A:13:FA:E6:42:ED:E6:52:05:24:84:62
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aW8r_HLR6VNKE_rmQu3mUgUkhGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.17.6.0/24
78.17.36.0/24
78.17.43.0-78.17.44.255
78.17.151.0/24
89.125.27.0/24
89.125.38.0/24
89.125.62.0/24
89.125.84.0/24
89.125.93.0/24
212.192.22.0/24
Signature Algorithm: sha256WithRSAEncryption
19:03:83:52:aa:38:56:23:67:f2:61:61:d5:f3:94:96:36:0f:
73:5b:1b:36:e6:aa:ed:af:96:8c:ca:52:52:39:8a:aa:fc:b3:
89:f6:93:7b:44:e9:20:c4:59:a7:85:05:d7:b5:7a:bb:61:e5:
3f:7d:eb:bb:78:72:68:f6:66:f3:f5:76:31:b1:c7:8e:7d:dd:
de:23:fd:cf:ce:fa:3b:8d:4f:df:1f:46:50:61:37:77:06:6d:
a7:25:0b:27:43:44:dc:66:d3:1d:c1:18:97:ff:93:29:02:e5:
4b:b9:e6:2b:d8:9a:92:62:b3:e0:32:9e:56:a1:cc:99:75:7f:
ec:3c:d6:20:b8:21:cd:eb:7d:db:7f:58:1b:4e:9d:99:45:cd:
ed:d6:d1:29:de:8b:53:48:9f:0e:01:1c:75:b6:22:99:cb:4c:
fa:4e:60:73:ff:d2:15:f3:ac:0b:3d:43:83:c8:85:31:ab:e8:
39:21:b9:c0:9e:c5:30:dc:e4:2e:9c:dd:d6:f1:51:cf:b3:a1:
4a:97:53:6b:55:03:7d:f1:63:2d:ea:48:00:6b:01:dd:ac:d0:
ca:e4:84:58:ea:30:92:da:ba:7f:93:1c:54:1b:44:a5:98:64:
a5:bb:a0:b0:d5:67:b3:b8:d7:eb:d3:7b:ff:d0:93:ea:c9:de:
f6:b6:5f:fc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Apr 19 16:33:47 2026 by rpki-client