Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/UEAaPo6VUETHn6B0u4mE40cQPvI.roa
File: UEAaPo6VUETHn6B0u4mE40cQPvI.roa (raw, json)
Hash identifier: oDl/sgYlJlPoPDa6gI6+975HLzl7ybSw7kcsMPOBkCo=
Subject key identifier: 50:40:1A:3E:8E:95:50:44:C7:9F:A0:74:BB:89:84:E3:47:10:3E:F2
Certificate issuer: /CN=f59cb923e4069bfe362e2d96ffab2ff31078317a
Certificate serial: 019B783482011BF832CE0D2B53582A0591F4
Authority key identifier: F5:9C:B9:23:E4:06:9B:FE:36:2E:2D:96:FF:AB:2F:F3:10:78:31:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Zy5I-QGm_42Li2W_6sv8xB4MXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/UEAaPo6VUETHn6B0u4mE40cQPvI.roa
Signing time: Thu 01 Jan 2026 06:17:45 +0000
ROA not before: Thu 01 Jan 2026 06:17:45 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 39632
IP address blocks: 91.208.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/9Zy5I-QGm_42Li2W_6sv8xB4MXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/9Zy5I-QGm_42Li2W_6sv8xB4MXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Zy5I-QGm_42Li2W_6sv8xB4MXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:78:34:82:01:1b:f8:32:ce:0d:2b:53:58:2a:05:91:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59cb923e4069bfe362e2d96ffab2ff31078317a
Validity
Not Before: Jan 1 06:17:45 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=50401a3e8e955044c79fa074bb8984e347103ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:93:b2:55:ee:ab:25:21:34:ed:ae:20:b8:b9:
50:95:9e:4e:da:ab:88:1e:d8:1b:61:9f:ce:72:af:
37:02:9a:17:69:1c:d8:d4:62:5e:c8:2b:2f:30:7d:
2f:e2:51:87:93:8d:6a:79:aa:44:61:7c:e0:11:c9:
e3:81:ce:c8:af:dc:db:97:da:6b:e7:96:f1:08:8b:
5d:3a:2d:68:88:c3:fc:5e:45:66:52:36:3d:25:6d:
60:ee:5f:5f:a7:82:eb:93:f9:1b:db:b3:97:a6:6e:
8d:a3:01:6a:5c:a5:27:d5:a6:d0:45:0d:84:36:6a:
8d:61:b3:d1:e2:87:34:c6:23:89:95:82:ac:0e:ac:
fd:f1:68:27:c8:35:33:69:f9:ad:52:21:7f:14:d0:
b7:36:23:61:63:58:cb:c3:0b:8d:be:7a:df:8b:3f:
8f:8c:02:d2:97:2e:f2:5b:68:2b:3f:ed:a5:a6:e7:
8e:f8:49:82:56:cc:26:84:52:3e:b5:f7:a3:6d:eb:
e3:3c:df:2c:e5:1f:0e:c3:ae:92:c3:ce:b9:56:98:
29:52:82:b8:6d:f4:3e:41:15:80:8b:67:95:0a:09:
b7:47:25:77:9b:76:60:8c:e8:0a:f6:b7:e6:a8:72:
ba:82:e1:e0:a4:c0:63:d1:78:f5:03:59:e3:2c:d6:
57:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:40:1A:3E:8E:95:50:44:C7:9F:A0:74:BB:89:84:E3:47:10:3E:F2
X509v3 Authority Key Identifier:
keyid:F5:9C:B9:23:E4:06:9B:FE:36:2E:2D:96:FF:AB:2F:F3:10:78:31:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Zy5I-QGm_42Li2W_6sv8xB4MXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/UEAaPo6VUETHn6B0u4mE40cQPvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/726298-0279-4b93-a985-a04ad22e33f3/1/9Zy5I-QGm_42Li2W_6sv8xB4MXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.26.0/24
Signature Algorithm: sha256WithRSAEncryption
41:8b:8c:d3:ef:ef:fd:87:c0:75:f0:58:a1:ee:fd:0c:0d:5f:
8d:44:1b:3d:ea:0a:72:91:25:fd:34:8b:88:6d:0c:29:f4:bf:
6c:90:42:31:b7:1c:d9:c4:31:8e:11:a9:6c:55:5a:b5:62:2d:
05:b0:fd:7f:27:f1:b3:0d:ad:35:86:8b:a8:2f:23:48:d3:0c:
c1:4a:67:55:3f:06:00:76:e3:ad:b4:fe:fc:65:9d:5f:dd:b0:
66:fe:64:5a:23:e6:13:c4:03:f4:a0:08:fc:d1:9c:96:74:b9:
62:35:63:5a:a4:1a:03:d6:af:66:3c:02:fa:ba:45:1c:e1:11:
c4:4e:8d:76:a6:9f:ac:e8:79:c4:75:d2:90:72:ed:61:91:b7:
33:06:ef:d9:47:8f:2d:04:4a:3b:50:06:d2:6f:a3:33:40:21:
c6:70:50:ee:a7:69:6a:fd:86:95:10:1e:d0:73:a9:07:01:d3:
55:7b:65:27:de:eb:38:39:a7:2d:cf:88:c5:82:e2:83:40:2d:
0a:5e:01:c8:12:34:16:26:2d:32:5e:dd:90:ee:70:c7:1c:c0:
e5:df:db:5e:bf:2e:e0:74:d6:2a:b0:08:e9:5a:1e:41:e7:8b:
74:c8:d8:06:4f:3f:32:32:e6:8e:41:dc:35:45:f8:3b:35:3f:
7a:74:e0:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZt4NIIBG/gyzg0rU1gqBZH0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1OWNiOTIzZTQwNjliZmUzNjJlMmQ5NmZmYWIyZmYzMTA3
ODMxN2EwHhcNMjYwMTAxMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDQwMWEzZThlOTU1MDQ0Yzc5ZmEwNzRiYjg5ODRlMzQ3MTAzZWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZOyVe6rJSE07a4guLlQlZ5O2quI
HtgbYZ/Ocq83ApoXaRzY1GJeyCsvMH0v4lGHk41qeapEYXzgEcnjgc7Ir9zbl9pr
55bxCItdOi1oiMP8XkVmUjY9JW1g7l9fp4Lrk/kb27OXpm6NowFqXKUn1abQRQ2E
NmqNYbPR4oc0xiOJlYKsDqz98WgnyDUzafmtUiF/FNC3NiNhY1jLwwuNvnrfiz+P
jALSly7yW2grP+2lpueO+EmCVswmhFI+tfejbevjPN8s5R8Ow66Sw865VpgpUoK4
bfQ+QRWAi2eVCgm3RyV3m3ZgjOgK9rfmqHK6guHgpMBj0Xj1A1njLNZXuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFBAGj6OlVBEx5+gdLuJhONHED7yMB8GA1UdIwQY
MBaAFPWcuSPkBpv+Ni4tlv+rL/MQeDF6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVp5NUktUUdtXzQyTGkyV182c3Y4eEI0TVhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MjYyOTgtMDI3OS00YjkzLWE5ODUt
YTA0YWQyMmUzM2YzLzEvVUVBYVBvNlZVRVRIbjZCMHU0bUU0MGNRUHZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MjYyOTgtMDI3OS00YjkzLWE5ODUtYTA0YWQyMmUzM2Yz
LzEvOVp5NUktUUdtXzQyTGkyV182c3Y4eEI0TVhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9AaMA0G
CSqGSIb3DQEBCwUAA4IBAQBBi4zT7+/9h8B18Fih7v0MDV+NRBs96gpykSX9NIuI
bQwp9L9skEIxtxzZxDGOEalsVVq1Yi0FsP1/J/GzDa01houoLyNI0wzBSmdVPwYA
duOttP78ZZ1f3bBm/mRaI+YTxAP0oAj80ZyWdLliNWNapBoD1q9mPAL6ukUc4RHE
To12pp+s6HnEddKQcu1hkbczBu/ZR48tBEo7UAbSb6MzQCHGcFDup2lq/YaVEB7Q
c6kHAdNVe2Un3us4Oactz4jFguKDQC0KXgHIEjQWJi0yXt2Q7nDHHMDl39tevy7g
dNYqsAjpWh5B54t0yNgGTz8yMuaOQdw1Rfg7NT96dOCl
-----END CERTIFICATE-----
Generated at Mon Mar 2 20:51:44 2026 by rpki-client