Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Veo2IRep_bcCXuxvNyrnueEMNvI.roa
File: Veo2IRep_bcCXuxvNyrnueEMNvI.roa (raw, json)
Hash identifier: WDB1w/Jghx/ZqV6PBDs+mr9U7CC+PW593hS0Y0Xu79s=
Subject key identifier: 55:EA:36:21:17:A9:FD:B7:02:5E:EC:6F:37:2A:E7:B9:E1:0C:36:F2
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019C6126BAD896540F9C606FBD613F71196C
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Veo2IRep_bcCXuxvNyrnueEMNvI.roa
Signing time: Sun 15 Feb 2026 11:54:14 +0000
ROA not before: Sun 15 Feb 2026 11:54:14 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 36530
IP address blocks: 151.241.128.0/22 maxlen: 24
151.245.90.0/24 maxlen: 24
151.245.108.0/24 maxlen: 24
151.247.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:61:26:ba:d8:96:54:0f:9c:60:6f:bd:61:3f:71:19:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 15 11:54:14 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=55ea362117a9fdb7025eec6f372ae7b9e10c36f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:db:15:9c:d4:bd:e0:e8:39:f4:6a:70:dc:26:
a2:f0:94:d6:78:3d:21:b6:12:c3:a8:3f:fd:1b:d5:
3e:71:c7:dd:74:cd:ac:58:cd:00:e0:9e:22:62:71:
23:2d:19:a1:39:56:11:e1:4c:54:3d:b0:44:33:cf:
43:f2:b2:b9:42:d4:f7:30:a1:00:1a:23:97:9c:d1:
9c:32:b3:76:1a:98:02:7e:3a:c3:0e:18:1a:bb:fb:
24:a4:14:e4:70:c9:96:cd:d7:f7:09:38:e6:12:d4:
00:2d:2b:36:02:c3:83:75:cc:c1:39:bc:61:52:b7:
c4:36:e2:b0:de:a0:7b:3a:51:92:c6:d4:20:17:d7:
40:74:09:23:8a:a8:97:e2:95:a0:f0:d6:36:0d:b7:
15:0b:dc:11:85:38:61:85:c3:80:47:39:5d:31:1d:
c1:94:49:07:cf:b6:f6:db:39:f2:c1:4b:6e:99:73:
91:08:21:cd:28:2a:b8:2a:fd:ee:5d:8e:2a:17:5e:
44:e9:a7:33:7b:34:aa:1c:65:ac:f9:d1:fc:29:57:
2d:d0:e8:62:61:63:d4:17:69:32:c1:5f:8f:25:9d:
ce:9b:e4:40:b2:66:b8:91:f4:e6:c6:28:6e:ff:d8:
60:d1:bf:1c:5d:34:d9:56:ad:af:57:f2:75:2a:f4:
bb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EA:36:21:17:A9:FD:B7:02:5E:EC:6F:37:2A:E7:B9:E1:0C:36:F2
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Veo2IRep_bcCXuxvNyrnueEMNvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.241.128.0/22
151.245.90.0/24
151.245.108.0/24
151.247.162.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:62:13:5f:13:24:5d:37:12:e8:2d:90:81:93:b2:c4:62:4e:
5c:9a:bf:31:93:da:13:8d:47:79:1f:82:c5:c1:a0:d0:9e:d6:
55:4d:e2:0d:01:f2:80:81:e1:69:96:98:6b:25:f1:49:f9:e6:
f8:04:0a:4b:6e:ec:f6:8d:f4:70:b5:b8:37:4e:de:18:82:15:
c2:32:0c:cf:44:e1:85:62:fd:2b:37:de:dc:f2:c8:0a:10:b1:
b5:bf:3f:ed:ad:33:fe:8f:73:8e:69:cf:12:cf:82:e6:58:19:
41:b0:b8:ba:35:10:17:b2:31:a8:aa:d8:dc:c9:c5:36:fb:17:
85:89:60:40:57:41:b4:86:62:d5:74:5a:01:ce:95:2a:7b:b1:
0b:ba:49:bb:60:e4:16:ed:3b:54:26:6c:28:10:92:d4:f5:5c:
07:69:8d:a4:81:e9:c9:98:c6:73:25:c5:4c:5f:5a:a1:b3:3e:
3f:ef:ae:83:91:57:cb:7a:c5:7d:82:91:6f:f2:63:ed:f4:9e:
4e:9d:9c:df:7c:9a:da:af:f3:12:23:c6:40:97:1c:da:21:a5:
d6:95:57:95:76:e0:ee:65:c7:65:00:e7:f6:8f:9b:66:d3:4a:
c0:e5:ca:58:f4:b0:7c:45:ad:68:8e:92:37:1a:e9:dc:6d:ac:
2a:3d:c6:23
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZxhJrrYllQPnGBvvWE/cRlsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjYwMjE1MTE1NDE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWVhMzYyMTE3YTlmZGI3MDI1ZWVjNmYzNzJhZTdiOWUxMGMzNmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNsVnNS94Og59Gpw3Cai8JTWeD0h
thLDqD/9G9U+ccfddM2sWM0A4J4iYnEjLRmhOVYR4UxUPbBEM89D8rK5QtT3MKEA
GiOXnNGcMrN2GpgCfjrDDhgau/skpBTkcMmWzdf3CTjmEtQALSs2AsODdczBObxh
UrfENuKw3qB7OlGSxtQgF9dAdAkjiqiX4pWg8NY2DbcVC9wRhThhhcOARzldMR3B
lEkHz7b22znywUtumXORCCHNKCq4Kv3uXY4qF15E6aczezSqHGWs+dH8KVct0Ohi
YWPUF2kywV+PJZ3Om+RAsma4kfTmxihu/9hg0b8cXTTZVq2vV/J1KvS7OwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFFXqNiEXqf23Al7sbzcq57nhDDbyMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvVmVvMklSZXBfYmNDWHV4dk55cm51ZUVNTnZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCl/GAAwQA
l/VaAwQAl/VsAwQAl/eiMA0GCSqGSIb3DQEBCwUAA4IBAQBqYhNfEyRdNxLoLZCB
k7LEYk5cmr8xk9oTjUd5H4LFwaDQntZVTeINAfKAgeFplphrJfFJ+eb4BApLbuz2
jfRwtbg3Tt4YghXCMgzPROGFYv0rN97c8sgKELG1vz/trTP+j3OOac8Sz4LmWBlB
sLi6NRAXsjGoqtjcycU2+xeFiWBAV0G0hmLVdFoBzpUqe7ELukm7YOQW7TtUJmwo
EJLU9VwHaY2kgenJmMZzJcVMX1qhsz4/766DkVfLesV9gpFv8mPt9J5OnZzffJra
r/MSI8ZAlxzaIaXWlVeVduDuZcdlAOf2j5tm00rA5cpY9LB8Ra1ojpI3Guncbawq
PcYj
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:52:54 2026 by rpki-client