Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/7n2infgWrE4JL7k5asjX7qnGyAw.roa
File: 7n2infgWrE4JL7k5asjX7qnGyAw.roa (raw, json)
Hash identifier: dte7Z2uBACH/Rgkx3WVltu9NnfogNr5K2lV1ZcQxYxg=
Subject key identifier: EE:7D:A2:9D:F8:16:AC:4E:09:2F:B9:39:6A:C8:D7:EE:A9:C6:C8:0C
Certificate issuer: /CN=95d108f0e85868c2bbe7db6d7377034c131eb224
Certificate serial: 019EAD786F32068CEBC4F14FD06305E583A4
Authority key identifier: 95:D1:08:F0:E8:58:68:C2:BB:E7:DB:6D:73:77:03:4C:13:1E:B2:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldEI8OhYaMK759ttc3cDTBMesiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/7n2infgWrE4JL7k5asjX7qnGyAw.roa
Signing time: Tue 09 Jun 2026 17:40:11 +0000
ROA not before: Tue 09 Jun 2026 17:40:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63023
IP address blocks: 179.255.185.0/24 maxlen: 24
179.255.186.0/24 maxlen: 24
179.255.187.0/24 maxlen: 24
179.255.188.0/24 maxlen: 24
179.255.189.0/24 maxlen: 24
179.255.190.0/24 maxlen: 24
179.255.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/ldEI8OhYaMK759ttc3cDTBMesiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/ldEI8OhYaMK759ttc3cDTBMesiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ldEI8OhYaMK759ttc3cDTBMesiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ad:78:6f:32:06:8c:eb:c4:f1:4f:d0:63:05:e5:83:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95d108f0e85868c2bbe7db6d7377034c131eb224
Validity
Not Before: Jun 9 17:40:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ee7da29df816ac4e092fb9396ac8d7eea9c6c80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:98:3d:04:17:44:3a:1d:1e:b1:f2:5b:26:40:
cd:ee:aa:34:ea:16:c5:e4:08:5f:e9:04:a8:0d:ca:
d3:59:ac:12:34:60:41:6e:f8:d6:24:54:a2:68:e5:
87:11:3a:8f:56:b5:a5:44:e5:6a:4b:e9:83:ae:8a:
c9:52:0f:3f:43:04:71:88:90:42:93:6d:4a:e2:62:
23:b3:18:39:02:25:3a:1b:b8:18:a4:22:d9:31:01:
8a:36:a8:72:4b:27:68:05:66:d0:38:73:68:0f:8d:
7e:a8:8c:be:b8:47:76:9b:f8:81:99:b1:40:03:ff:
f6:3d:7c:8c:69:30:72:90:5c:c0:04:08:6c:36:fc:
34:82:dd:dc:24:cf:54:fc:33:8b:20:b7:b7:f8:53:
29:6f:ce:07:26:5b:58:64:a4:ef:73:54:ef:cd:7c:
2c:64:01:f2:ae:cb:38:76:5a:66:db:7e:4b:22:28:
2a:39:8e:f9:68:63:fe:1b:ff:e7:04:57:ec:ba:e2:
a2:a1:41:6b:8c:f3:15:da:bb:97:bf:ba:da:03:76:
27:31:fe:af:0c:eb:59:6b:34:67:42:d7:13:21:58:
61:9a:37:d1:2c:eb:e3:29:f6:27:9c:9f:18:78:9c:
86:7f:00:58:6c:1e:62:6b:9d:f8:b4:38:4d:99:f3:
53:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7D:A2:9D:F8:16:AC:4E:09:2F:B9:39:6A:C8:D7:EE:A9:C6:C8:0C
X509v3 Authority Key Identifier:
keyid:95:D1:08:F0:E8:58:68:C2:BB:E7:DB:6D:73:77:03:4C:13:1E:B2:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldEI8OhYaMK759ttc3cDTBMesiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/7n2infgWrE4JL7k5asjX7qnGyAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ddb424-7eb2-495e-8bb6-72fb97d59ce4/1/ldEI8OhYaMK759ttc3cDTBMesiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.255.185.0-179.255.191.255
Signature Algorithm: sha256WithRSAEncryption
29:8d:ee:82:6b:82:6b:42:f7:dd:f3:81:39:d5:c1:a3:37:f0:
69:4b:ac:ca:87:75:c0:e2:0f:c1:92:22:1c:3f:3c:89:09:24:
a1:6f:f7:c6:47:0b:6d:1b:8a:35:fb:cb:f2:10:75:7a:b8:74:
93:30:70:9a:8c:35:34:a0:be:aa:a3:57:28:23:a5:2b:b6:f6:
bf:de:7c:88:e3:a9:41:ba:3d:5d:e9:91:bf:46:26:08:a1:be:
f8:ce:fa:c1:10:52:cf:12:e7:58:b7:8f:62:ed:07:f7:5d:5f:
bb:79:40:91:79:93:9e:1e:82:03:57:88:cf:9b:99:72:4f:ae:
f2:a7:9e:3d:73:9a:3a:b9:d1:8f:ee:f2:58:ab:ed:7b:a8:b6:
66:e1:06:97:38:bd:26:e8:e6:bf:90:49:70:dd:f7:8f:99:e4:
54:ad:9f:a6:a6:72:d0:c8:bf:08:52:d7:8b:fc:fb:84:a6:fa:
4a:56:fc:51:ef:93:23:02:9b:88:37:6e:08:84:74:26:69:cd:
8e:9e:90:da:2b:43:52:79:0d:c6:8d:06:77:49:ed:a3:77:2b:
5d:f0:d2:ce:0d:f1:5d:0f:a4:71:2a:b3:ee:6c:a3:af:90:be:
cb:0a:3a:a1:75:c6:fd:84:ce:0f:0d:3b:83:76:cb:3d:20:ce:
5e:f2:fc:ea
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZ6teG8yBozrxPFP0GMF5YOkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZDEwOGYwZTg1ODY4YzJiYmU3ZGI2ZDczNzcwMzRjMTMx
ZWIyMjQwHhcNMjYwNjA5MTc0MDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTdkYTI5ZGY4MTZhYzRlMDkyZmI5Mzk2YWM4ZDdlZWE5YzZjODBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypg9BBdEOh0esfJbJkDN7qo06hbF
5Ahf6QSoDcrTWawSNGBBbvjWJFSiaOWHETqPVrWlROVqS+mDrorJUg8/QwRxiJBC
k21K4mIjsxg5AiU6G7gYpCLZMQGKNqhySydoBWbQOHNoD41+qIy+uEd2m/iBmbFA
A//2PXyMaTBykFzABAhsNvw0gt3cJM9U/DOLILe3+FMpb84HJltYZKTvc1TvzXws
ZAHyrss4dlpm235LIigqOY75aGP+G//nBFfsuuKioUFrjPMV2ruXv7raA3YnMf6v
DOtZazRnQtcTIVhhmjfRLOvjKfYnnJ8YeJyGfwBYbB5ia534tDhNmfNTSwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFO59op34FqxOCS+5OWrI1+6pxsgMMB8GA1UdIwQY
MBaAFJXRCPDoWGjCu+fbbXN3A0wTHrIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGRFSThPaFlhTUs3NTl0dGMzY0RUQk1lc2lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9kZGI0MjQtN2ViMi00OTVlLThiYjYt
NzJmYjk3ZDU5Y2U0LzEvN24yaW5mZ1dyRTRKTDdrNWFzalg3cW5HeUF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9kZGI0MjQtN2ViMi00OTVlLThiYjYtNzJmYjk3ZDU5Y2U0
LzEvbGRFSThPaFlhTUs3NTl0dGMzY0RUQk1lc2lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACz/7kD
BAaz/4AwDQYJKoZIhvcNAQELBQADggEBACmN7oJrgmtC993zgTnVwaM38GlLrMqH
dcDiD8GSIhw/PIkJJKFv98ZHC20bijX7y/IQdXq4dJMwcJqMNTSgvqqjVygjpSu2
9r/efIjjqUG6PV3pkb9GJgihvvjO+sEQUs8S51i3j2LtB/ddX7t5QJF5k54eggNX
iM+bmXJPrvKnnj1zmjq50Y/u8lir7XuotmbhBpc4vSbo5r+QSXDd94+Z5FStn6am
ctDIvwhS14v8+4Sm+kpW/FHvkyMCm4g3bgiEdCZpzY6ekNorQ1J5DcaNBndJ7aN3
K13w0s4N8V0PpHEqs+5so6+QvssKOqF1xv2Ezg8NO4N2yz0gzl7y/Oo=
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:38:14 2026 by rpki-client