Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/GowZ6AuuyxQx1zqdRbWy_1sfCPU.roa
File: GowZ6AuuyxQx1zqdRbWy_1sfCPU.roa (raw, json)
Hash identifier: uRxHwHLLmsE68GjqGWcO4XDEoDQla9lhVzsXVdtMS6o=
Subject key identifier: 1A:8C:19:E8:0B:AE:CB:14:31:D7:3A:9D:45:B5:B2:FF:5B:1F:08:F5
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019D902F220EE8FE5F54F957D55ACD66DAD6
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/GowZ6AuuyxQx1zqdRbWy_1sfCPU.roa
Signing time: Wed 15 Apr 2026 08:08:21 +0000
ROA not before: Wed 15 Apr 2026 08:08:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 48266
IP address blocks: 81.5.191.0/24 maxlen: 24
82.152.177.0/24 maxlen: 24
82.153.69.0/24 maxlen: 24
82.153.96.0/24 maxlen: 24
82.153.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:90:2f:22:0e:e8:fe:5f:54:f9:57:d5:5a:cd:66:da:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Apr 15 08:08:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1a8c19e80baecb1431d73a9d45b5b2ff5b1f08f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:06:36:18:ac:37:99:b1:4f:ee:fc:ca:53:a4:
f8:5c:74:dc:72:67:fc:68:e3:af:b1:74:fa:e4:23:
b9:2f:20:9a:9a:10:87:b7:ca:58:d4:f5:d3:f4:3a:
87:16:57:93:6f:84:e2:20:e2:ad:8d:9b:cc:c0:27:
95:7b:e5:d1:2c:a2:c6:c0:e5:fe:4b:1f:89:79:75:
3b:98:20:13:70:a1:99:0b:b5:b9:57:f1:92:2e:aa:
ea:af:81:7c:3e:b4:fb:3e:51:ad:b4:9d:87:10:62:
7e:73:2e:67:32:0f:46:47:d6:3d:a9:a7:11:51:00:
a9:4e:fe:83:90:95:bc:79:3d:1b:b9:27:13:65:6c:
10:90:47:01:e5:31:ee:56:91:5b:e0:72:c4:2e:6e:
43:1e:19:cb:a1:0f:f8:ca:64:61:d0:c9:8f:c8:c2:
40:b4:65:fe:4f:a9:cd:35:ee:47:11:1a:10:30:93:
db:b0:c7:98:a3:90:7e:8b:2f:e0:7f:4f:27:da:88:
5d:22:0b:30:13:06:4d:ac:3f:04:52:50:fd:1b:fb:
2a:60:5d:56:1f:5f:48:ae:82:78:94:d1:a2:19:dc:
a7:88:1a:de:01:e1:77:32:80:39:df:02:0d:db:c4:
9a:8a:f8:f4:e0:ff:bd:e2:30:0f:6d:89:f4:30:23:
3d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8C:19:E8:0B:AE:CB:14:31:D7:3A:9D:45:B5:B2:FF:5B:1F:08:F5
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/GowZ6AuuyxQx1zqdRbWy_1sfCPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.191.0/24
82.152.177.0/24
82.153.69.0/24
82.153.96.0/24
82.153.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:71:56:44:f2:81:ac:14:f4:13:ab:11:4c:42:ec:c8:e0:92:
c6:3e:cb:da:f8:b2:4d:f2:ca:cb:1a:ac:52:52:60:50:32:2f:
86:e9:f2:82:e3:a8:42:25:72:c7:0f:28:61:8e:1f:26:e1:a6:
65:13:bc:5f:ac:35:da:7c:30:54:87:74:3a:f4:3a:aa:10:ee:
e1:d6:43:c5:a4:83:fa:d5:a4:7d:10:a6:b4:a4:41:3f:36:b6:
5e:e1:62:a2:0f:ef:05:eb:ce:e9:d3:40:e6:43:a3:d3:56:fc:
ac:97:97:bc:0f:3d:7e:3f:2f:f2:43:45:42:19:26:83:5e:ec:
22:7d:13:6d:77:33:0d:eb:41:21:10:48:89:34:8a:85:70:8f:
df:2e:72:ff:c0:a6:69:d3:cf:95:b1:24:bd:ea:e6:ac:73:19:
54:0f:19:09:df:a3:c7:a0:de:a7:7c:53:96:54:b9:e3:54:0b:
bc:2d:db:13:60:0f:4f:fc:ae:0c:90:4f:ba:82:e1:0b:22:8d:
44:8f:d4:90:11:c4:32:42:4e:48:c9:b5:7e:62:02:e5:ab:69:
ac:7d:3c:2e:ba:8b:91:5c:4c:1b:92:60:23:85:cb:13:b1:95:
b8:0d:e6:9a:10:78:be:0d:26:ac:42:8a:6c:77:16:d3:ab:7f:
45:96:c2:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:20:38 2026 by rpki-client