Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/slA82WP_VU7ODQ8vUg0JDfoLGXE.roa
File: slA82WP_VU7ODQ8vUg0JDfoLGXE.roa (raw, json)
Hash identifier: uRkzTB028wlP9aSgZraF4khx6ZKPBzunp3sVcsD/9As=
Subject key identifier: B2:50:3C:D9:63:FF:55:4E:CE:0D:0F:2F:52:0D:09:0D:FA:0B:19:71
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 019D766ABE7687402BCFE5FCA957044B1C84
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/slA82WP_VU7ODQ8vUg0JDfoLGXE.roa
Signing time: Fri 10 Apr 2026 08:03:20 +0000
ROA not before: Fri 10 Apr 2026 08:03:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 41439
IP address blocks: 195.66.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:76:6a:be:76:87:40:2b:cf:e5:fc:a9:57:04:4b:1c:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Apr 10 08:03:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b2503cd963ff554ece0d0f2f520d090dfa0b1971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:c8:7a:4e:d4:fb:bc:1b:b3:4b:c4:55:09:
48:e4:8e:eb:1e:5e:ec:49:0c:29:21:ae:a6:5e:f5:
e1:1a:9d:ed:65:9c:f9:45:00:b5:08:00:34:b0:d4:
7f:6f:fc:d0:08:fd:ca:4d:35:8f:f5:0f:98:fd:ce:
db:f7:3e:fb:ae:ed:54:c9:ef:06:e1:cd:3a:ac:68:
2f:82:f9:2c:e3:92:12:e1:0c:db:43:31:f0:f6:fe:
69:cd:a0:95:23:07:ae:7d:05:2d:52:24:02:f5:93:
81:5f:b3:e4:03:4a:d0:5d:49:f8:4e:de:0e:80:70:
2e:19:61:4c:0c:e6:6b:c8:ff:19:11:6d:96:fb:e1:
fa:1a:91:2a:c6:25:6c:c1:a1:24:42:fb:0f:14:0c:
14:12:92:bc:3e:9b:af:cf:d5:ca:89:41:07:0a:fa:
38:8f:67:c5:b6:9d:a9:37:2d:e2:8f:52:d7:80:dc:
bc:a1:ad:be:d3:ec:8f:6e:b0:06:d9:46:55:ba:b5:
f8:ce:b9:6a:88:5c:4a:53:0b:b9:c5:ed:91:42:7d:
fb:ee:e3:c8:fe:16:63:a7:db:da:10:fc:46:31:e8:
30:4e:de:a6:e8:d8:4e:51:c2:5f:b6:6e:a4:1b:16:
e8:31:dd:e4:d1:3b:28:6e:b6:de:44:19:dd:23:dd:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:50:3C:D9:63:FF:55:4E:CE:0D:0F:2F:52:0D:09:0D:FA:0B:19:71
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/slA82WP_VU7ODQ8vUg0JDfoLGXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
31:cf:50:69:7d:03:89:1e:21:3d:2a:ca:12:76:fe:dd:51:a6:
46:15:71:64:e3:be:59:83:93:d9:57:e1:97:07:a7:f0:8e:81:
18:5c:1f:2f:15:9a:cb:7f:d4:76:cc:7f:e2:59:70:1b:6b:a4:
33:ee:49:d5:5b:2f:13:1b:e5:e5:b1:50:f3:18:fb:b9:dd:3e:
3e:8c:04:58:bc:70:66:3c:95:78:2e:7e:ec:09:eb:21:69:45:
09:fc:a1:81:31:ef:ca:c5:61:c5:3a:81:61:ef:33:08:7e:67:
42:7e:e7:54:44:02:37:99:2a:8c:a4:3d:66:9a:dc:dc:d7:30:
2d:80:ca:e6:81:ed:12:43:de:32:d8:78:eb:48:e6:f1:74:7e:
ad:3e:d9:c7:8e:b0:26:bf:cf:58:9f:f8:de:ed:7b:de:f3:11:
c1:8c:42:d9:e8:87:20:ae:27:3b:c6:ac:f8:50:aa:28:5d:89:
17:ce:ee:3b:c5:9c:69:96:85:06:e4:7f:a9:fd:6c:bc:a9:02:
9a:8a:cc:8b:d1:e8:52:d1:35:b4:c5:19:a4:37:fa:8b:b3:a4:
74:c2:6f:d2:9b:a8:f6:eb:8e:51:d5:1b:4a:46:fc:ad:57:e4:
af:05:0a:b3:84:66:25:5d:2d:8e:02:34:fa:66:8d:3b:d5:74:
ad:86:a3:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ12ar52h0Arz+X8qVcESxyEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy
NjhmNTQwHhcNMjYwNDEwMDgwMzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjUwM2NkOTYzZmY1NTRlY2UwZDBmMmY1MjBkMDkwZGZhMGIxOTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrDIek7U+7wbs0vEVQlI5I7rHl7s
SQwpIa6mXvXhGp3tZZz5RQC1CAA0sNR/b/zQCP3KTTWP9Q+Y/c7b9z77ru1Uye8G
4c06rGgvgvks45IS4QzbQzHw9v5pzaCVIweufQUtUiQC9ZOBX7PkA0rQXUn4Tt4O
gHAuGWFMDOZryP8ZEW2W++H6GpEqxiVswaEkQvsPFAwUEpK8Ppuvz9XKiUEHCvo4
j2fFtp2pNy3ij1LXgNy8oa2+0+yPbrAG2UZVurX4zrlqiFxKUwu5xe2RQn377uPI
/hZjp9vaEPxGMegwTt6m6NhOUcJftm6kGxboMd3k0TsobrbeRBndI90BWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLJQPNlj/1VOzg0PL1INCQ36CxlxMB8GA1UdIwQY
MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt
N2FhN2ZjMzU5NjU1LzEvc2xBODJXUF9WVTdPRFE4dlVnMEpEZm9MR1hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1
LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0JlMA0G
CSqGSIb3DQEBCwUAA4IBAQAxz1BpfQOJHiE9KsoSdv7dUaZGFXFk475Zg5PZV+GX
B6fwjoEYXB8vFZrLf9R2zH/iWXAba6Qz7knVWy8TG+XlsVDzGPu53T4+jARYvHBm
PJV4Ln7sCeshaUUJ/KGBMe/KxWHFOoFh7zMIfmdCfudURAI3mSqMpD1mmtzc1zAt
gMrmge0SQ94y2HjrSObxdH6tPtnHjrAmv89Yn/je7Xve8xHBjELZ6Icgric7xqz4
UKooXYkXzu47xZxploUG5H+p/Wy8qQKaisyL0ehS0TW0xRmkN/qLs6R0wm/Sm6j2
645R1RtKRvytV+SvBQqzhGYlXS2OAjT6Zo071XSthqPT
-----END CERTIFICATE-----
Generated at Sun Apr 19 13:59:57 2026 by rpki-client