Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/Rzeq7uRqZnk8SYr1S-gNBpMtCtQ.roa
File: Rzeq7uRqZnk8SYr1S-gNBpMtCtQ.roa (raw, json)
Hash identifier: 1VVXryV1Hs/+cZ3mRyBsAdzqa0XA+yJ5M5FF8w4p2MI=
Subject key identifier: 47:37:AA:EE:E4:6A:66:79:3C:49:8A:F5:4B:E8:0D:06:93:2D:0A:D4
Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd
Certificate serial: 019B7911094352B4E9722C5C623CE5C0D34E
Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/Rzeq7uRqZnk8SYr1S-gNBpMtCtQ.roa
Signing time: Thu 01 Jan 2026 10:18:38 +0000
ROA not before: Thu 01 Jan 2026 10:18:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204949
IP address blocks: 213.134.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:11:09:43:52:b4:e9:72:2c:5c:62:3c:e5:c0:d3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd
Validity
Not Before: Jan 1 10:18:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4737aaeee46a66793c498af54be80d06932d0ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dd:53:bd:ba:17:8e:f7:56:7d:eb:ac:c9:bd:
dc:3a:87:d4:77:04:b9:c5:03:05:74:2c:a9:05:c9:
5f:26:c9:49:12:82:64:ae:46:cc:a8:6c:df:4e:be:
f8:aa:4d:1b:4f:b1:b6:c1:9e:ef:aa:ee:03:2a:db:
80:88:93:a8:96:0f:76:e3:e3:59:8b:8d:37:63:86:
f2:cc:14:35:31:ba:d9:af:ad:52:2b:7b:a6:b3:67:
93:eb:ca:8b:82:ae:24:9e:6c:ee:d5:ed:a6:89:f3:
9d:c3:e3:f4:57:e4:ac:aa:3b:22:6a:9f:36:49:43:
3c:63:fe:d2:1a:b2:97:bc:09:32:b0:a5:a6:e1:af:
dc:c8:88:94:fb:67:d8:1a:ca:d6:b5:ed:98:0a:12:
b4:dd:07:b6:50:b4:c4:8b:05:7b:65:5f:f1:bb:af:
57:61:b9:5a:45:d3:27:30:a0:62:55:68:90:13:44:
9a:63:f4:c2:9a:7f:f9:38:e9:c0:94:e2:f9:0f:c2:
97:dc:6a:72:bf:f2:63:75:4f:8e:b7:9d:a7:b8:90:
5e:17:35:fa:7f:b1:ca:9c:b8:bd:33:bf:f4:cc:59:
ee:48:ce:9a:71:d5:c4:7e:74:d4:58:37:51:17:6a:
c9:81:39:60:2a:dc:b7:7e:4c:5b:13:69:7f:65:a6:
87:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:37:AA:EE:E4:6A:66:79:3C:49:8A:F5:4B:E8:0D:06:93:2D:0A:D4
X509v3 Authority Key Identifier:
keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/Rzeq7uRqZnk8SYr1S-gNBpMtCtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.134.10.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:6c:7b:7a:fa:f9:f4:a1:a6:ae:d3:e3:ae:98:a5:3d:b8:69:
01:a2:c8:5f:67:5c:be:2d:43:d7:88:f1:6d:de:89:f0:d3:8f:
f7:a4:2d:bd:ce:56:2a:4f:e2:ea:d4:79:14:05:0f:9c:c0:12:
dc:4e:ac:37:32:3a:d0:e7:89:a0:b6:d2:96:e7:6e:ea:c6:db:
ba:d9:9d:93:77:14:c5:06:04:5c:a0:21:95:d8:7a:1e:15:1e:
ae:6a:1c:fd:d2:b2:1b:cd:a3:b2:33:0a:32:1a:17:1d:f5:b8:
89:26:41:a2:bf:08:eb:00:ca:ae:c7:da:72:2e:4f:aa:1f:7c:
9d:5d:2d:4d:50:5d:89:54:67:38:14:a4:26:64:69:de:ca:ec:
3b:10:d2:49:4f:14:45:92:8e:e4:79:35:26:d6:65:2b:d9:8f:
d5:e8:a7:d9:f2:b4:09:dc:7e:d3:ca:8b:c5:f6:35:d4:ed:df:
6f:73:f8:b2:dc:87:f5:88:45:f4:16:4d:d8:40:24:d4:fc:98:
a5:4d:1a:76:17:43:0e:4e:55:db:a4:37:bb:f6:f3:d8:f3:09:
90:dc:36:09:34:c6:a9:3b:7a:36:89:29:ff:a3:6d:e5:37:df:
88:22:03:b3:f3:4a:12:65:21:26:ce:1d:e2:27:7e:11:df:c8:
dc:01:dc:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZt5EQlDUrTpcixcYjzlwNNOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNzQ0ODFiODdkZWNmNjM4MzdlMjY5NzQ2MmM5ZTQ0NzAw
ZDRiZGQwHhcNMjYwMTAxMTAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzM3YWFlZWU0NmE2Njc5M2M0OThhZjU0YmU4MGQwNjkzMmQwYWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj91TvboXjvdWfeusyb3cOofUdwS5
xQMFdCypBclfJslJEoJkrkbMqGzfTr74qk0bT7G2wZ7vqu4DKtuAiJOolg924+NZ
i403Y4byzBQ1MbrZr61SK3ums2eT68qLgq4knmzu1e2mifOdw+P0V+Ssqjsiap82
SUM8Y/7SGrKXvAkysKWm4a/cyIiU+2fYGsrWte2YChK03Qe2ULTEiwV7ZV/xu69X
YblaRdMnMKBiVWiQE0SaY/TCmn/5OOnAlOL5D8KX3Gpyv/JjdU+Ot52nuJBeFzX6
f7HKnLi9M7/0zFnuSM6acdXEfnTUWDdRF2rJgTlgKty3fkxbE2l/ZaaH6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEc3qu7kamZ5PEmK9UvoDQaTLQrUMB8GA1UdIwQY
MBaAFJp0SBuH3s9jg34ml0YsnkRwDUvdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAt
Y2Y0NDcwMDllMzQ5LzEvUnplcTd1UnFabms4U1lyMVMtZ05CcE10Q3RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAtY2Y0NDcwMDllMzQ5
LzEvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1YYKMA0G
CSqGSIb3DQEBCwUAA4IBAQA/bHt6+vn0oaau0+OumKU9uGkBoshfZ1y+LUPXiPFt
3onw04/3pC29zlYqT+Lq1HkUBQ+cwBLcTqw3MjrQ54mgttKW527qxtu62Z2TdxTF
BgRcoCGV2HoeFR6uahz90rIbzaOyMwoyGhcd9biJJkGivwjrAMqux9pyLk+qH3yd
XS1NUF2JVGc4FKQmZGneyuw7ENJJTxRFko7keTUm1mUr2Y/V6KfZ8rQJ3H7TyovF
9jXU7d9vc/iy3If1iEX0Fk3YQCTU/JilTRp2F0MOTlXbpDe79vPY8wmQ3DYJNMap
O3o2iSn/o23lN9+IIgOz80oSZSEmzh3iJ34R38jcAdwj
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:04:27 2026 by rpki-client