Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6BanIUv96-YNSi4M5YT8khhGqV4.roa
File: 6BanIUv96-YNSi4M5YT8khhGqV4.roa (raw, json)
Hash identifier: xWejjqXeUVuPlenawhHvReZ7+IXe5s32ViXnCLyA0/M=
Subject key identifier: E8:16:A7:21:4B:FD:EB:E6:0D:4A:2E:0C:E5:84:FC:92:18:46:A9:5E
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EBD6D897910324B2C357950DB1660EB44
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6BanIUv96-YNSi4M5YT8khhGqV4.roa
Signing time: Fri 12 Jun 2026 20:02:12 +0000
ROA not before: Fri 12 Jun 2026 20:02:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213915
IP address blocks: 31.56.188.0/24 maxlen: 24
94.183.217.0/24 maxlen: 24
94.183.219.0/24 maxlen: 24
94.183.220.0/22 maxlen: 24
94.183.220.0/24 maxlen: 24
94.183.221.0/24 maxlen: 24
94.183.222.0/24 maxlen: 24
94.183.223.0/24 maxlen: 24
94.183.228.0/24 maxlen: 24
94.183.229.0/24 maxlen: 24
217.60.12.0/24 maxlen: 24
217.60.16.0/22 maxlen: 24
217.60.16.0/24 maxlen: 24
217.60.17.0/24 maxlen: 24
217.60.18.0/24 maxlen: 24
217.60.19.0/24 maxlen: 24
217.60.20.0/24 maxlen: 24
217.60.21.0/24 maxlen: 24
217.60.22.0/24 maxlen: 24
217.60.23.0/24 maxlen: 24
217.60.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:6d:89:79:10:32:4b:2c:35:79:50:db:16:60:eb:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 12 20:02:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e816a7214bfdebe60d4a2e0ce584fc921846a95e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:6e:4f:a8:ee:24:88:04:1e:80:f6:89:91:
8d:36:c8:d6:13:53:37:d4:7b:55:6a:23:65:51:93:
24:fe:bd:29:55:29:82:5d:0c:1f:e4:1a:c3:6f:7c:
a5:ee:af:ca:49:fb:6d:44:2d:b6:ca:53:91:7e:bb:
18:44:93:ab:a5:b5:4a:5d:e6:b6:1b:fd:7f:83:71:
42:71:fa:6f:60:32:ee:0a:eb:84:c9:ed:56:92:6a:
d6:6b:92:eb:ff:e0:31:2c:f9:55:f5:23:c2:de:88:
d8:f9:ff:0c:2f:f0:77:ef:b5:09:df:6a:31:ec:17:
a0:71:b6:40:9c:1c:27:39:49:13:fb:dc:c7:82:d1:
70:3d:fb:d0:f3:ce:f9:24:db:ae:c6:ed:39:29:93:
6a:38:80:c3:22:bd:41:31:33:c0:ce:db:41:47:22:
f3:a9:1b:21:38:67:10:a2:84:bc:39:45:a3:66:2d:
a8:73:9b:ea:c7:9e:5f:13:57:53:19:a7:47:e2:b3:
af:20:db:49:ec:73:44:3a:74:86:64:97:e0:6b:04:
1d:f4:0f:4f:f8:d9:1f:59:87:d0:05:c6:2f:c9:03:
7a:43:18:50:e5:e7:f1:bd:b1:4a:8f:74:1c:2a:39:
3e:c1:eb:83:53:e3:f3:c6:47:8d:35:7e:76:46:95:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:16:A7:21:4B:FD:EB:E6:0D:4A:2E:0C:E5:84:FC:92:18:46:A9:5E
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6BanIUv96-YNSi4M5YT8khhGqV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.188.0/24
94.183.217.0/24
94.183.219.0-94.183.223.255
94.183.228.0/23
217.60.12.0/24
217.60.16.0/21
217.60.68.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:bf:2a:9f:d1:16:8b:ad:da:50:c2:f8:8b:31:76:43:47:1a:
86:cc:9c:82:43:1d:33:a3:05:c0:f7:e9:d7:8f:5b:dc:01:41:
41:07:0a:d6:ca:77:f5:cc:bb:55:df:57:50:1d:c2:75:52:40:
fd:77:fd:3a:b4:22:39:d1:4d:de:88:fe:e7:14:c7:71:9a:54:
83:7e:d9:f7:ae:d5:ac:1f:db:e3:4a:32:74:0b:26:55:79:c3:
86:b6:7c:c6:95:7f:3c:42:15:2d:36:b5:b4:74:1e:7a:32:12:
81:d4:4a:8d:1d:9b:f4:1a:1c:b2:79:9d:ae:34:93:31:61:ad:
a0:94:2c:a9:aa:28:9d:bb:dc:50:60:c1:6f:e5:01:be:63:8e:
bc:50:ea:5e:2a:55:c1:ec:43:47:01:c6:ca:27:c3:46:e8:07:
2d:c6:03:75:2d:9f:48:bc:38:8b:47:b8:ce:50:53:b8:80:b8:
5c:78:c6:f3:ba:ed:35:d6:c5:37:67:b5:3b:40:9e:80:bf:85:
61:d3:96:30:a6:4a:49:93:3b:f3:8a:96:0d:b6:34:5b:ff:81:
8d:5c:54:78:ca:9e:33:d2:fb:95:6a:92:c0:3d:04:3c:eb:70:
db:3f:60:d1:be:2d:48:f1:39:0b:97:84:e8:ff:8a:90:a4:f1:
c4:30:83:b8
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgISAZ69bYl5EDJLLDV5UNsWYOtEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjYwNjEyMjAwMjEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODE2YTcyMTRiZmRlYmU2MGQ0YTJlMGNlNTg0ZmM5MjE4NDZhOTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHZuT6juJIgEHoD2iZGNNsjWE1M3
1HtVaiNlUZMk/r0pVSmCXQwf5BrDb3yl7q/KSfttRC22ylORfrsYRJOrpbVKXea2
G/1/g3FCcfpvYDLuCuuEye1WkmrWa5Lr/+AxLPlV9SPC3ojY+f8ML/B377UJ32ox
7BegcbZAnBwnOUkT+9zHgtFwPfvQ8875JNuuxu05KZNqOIDDIr1BMTPAzttBRyLz
qRshOGcQooS8OUWjZi2oc5vqx55fE1dTGadH4rOvINtJ7HNEOnSGZJfgawQd9A9P
+NkfWYfQBcYvyQN6QxhQ5efxvbFKj3QcKjk+weuDU+PzxkeNNX52RpUOswIDAQAB
o4ICNTCCAjEwHQYDVR0OBBYEFOgWpyFL/evmDUouDOWE/JIYRqleMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvNkJhbklVdjk2LVlOU2k0TTVZVDhraGhHcVY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQAHzi8AwQA
XrfZMAwDBABet9sDBAVet8ADBAFet+QDBADZPAwDBAPZPBADBADZPEQwDQYJKoZI
hvcNAQELBQADggEBAE2/Kp/RFout2lDC+IsxdkNHGobMnIJDHTOjBcD36dePW9wB
QUEHCtbKd/XMu1XfV1AdwnVSQP13/Tq0IjnRTd6I/ucUx3GaVIN+2feu1awf2+NK
MnQLJlV5w4a2fMaVfzxCFS02tbR0HnoyEoHUSo0dm/QaHLJ5na40kzFhraCULKmq
KJ273FBgwW/lAb5jjrxQ6l4qVcHsQ0cBxsonw0boBy3GA3Utn0i8OItHuM5QU7iA
uFx4xvO67TXWxTdntTtAnoC/hWHTljCmSkmTO/OKlg22NFv/gY1cVHjKnjPS+5Vq
ksA9BDzrcNs/YNG+LUjxOQuXhOj/ipCk8cQwg7g=
-----END CERTIFICATE-----
Generated at Sat Jun 13 18:40:33 2026 by rpki-client