Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/PZ4pye6_7166g23AECIvJy9Vhao.roa
File: PZ4pye6_7166g23AECIvJy9Vhao.roa (raw, json)
Hash identifier: 4jYAbauCnevFtoSRsUY9ZzLogbgVs0jCgKmDbNXpnd8=
Subject key identifier: 3D:9E:29:C9:EE:BF:EF:5E:BA:83:6D:C0:10:22:2F:27:2F:55:85:AA
Certificate issuer: /CN=4fbb63df06de00c843da63977349595471e51a26
Certificate serial: 019C74FA66A471D5E81A6330E5F32811F169
Authority key identifier: 4F:BB:63:DF:06:DE:00:C8:43:DA:63:97:73:49:59:54:71:E5:1A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7tj3wbeAMhD2mOXc0lZVHHlGiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/PZ4pye6_7166g23AECIvJy9Vhao.roa
Signing time: Thu 19 Feb 2026 08:18:13 +0000
ROA not before: Thu 19 Feb 2026 08:18:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199490
IP address blocks: 45.84.164.0/22 maxlen: 22
185.14.232.0/22 maxlen: 22
2a02:f000::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/T7tj3wbeAMhD2mOXc0lZVHHlGiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/T7tj3wbeAMhD2mOXc0lZVHHlGiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/T7tj3wbeAMhD2mOXc0lZVHHlGiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:74:fa:66:a4:71:d5:e8:1a:63:30:e5:f3:28:11:f1:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbb63df06de00c843da63977349595471e51a26
Validity
Not Before: Feb 19 08:18:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3d9e29c9eebfef5eba836dc010222f272f5585aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:32:7f:5d:b2:8f:69:c0:79:76:ba:af:94:
94:dd:3d:e8:9a:f3:94:1e:54:6d:2b:a6:3c:a1:4c:
74:d2:0d:f9:08:1d:6e:8b:72:d2:21:ec:13:32:a2:
a8:62:13:b7:e0:a9:ef:52:ec:59:bd:57:73:96:52:
7f:d6:6f:46:0f:e0:e6:5c:0c:8a:d6:a8:97:a0:cd:
0f:32:99:6c:da:c5:24:3e:da:e1:ef:bf:1c:c0:ff:
94:55:9f:b5:51:79:9c:ef:1f:84:a0:1e:32:4e:e4:
d8:15:69:72:8d:7f:c6:bf:6d:c2:1d:45:1e:f4:52:
f1:76:7a:83:25:67:aa:0f:b1:72:a2:f7:e6:b5:ea:
31:0b:52:98:ca:ca:25:b5:a4:70:b4:50:ee:f2:76:
f9:a8:28:cf:bb:73:7b:ce:42:7c:45:c9:45:ae:d1:
0a:7f:f9:95:d7:c7:32:0f:d6:9a:16:31:af:d8:56:
f4:ad:91:5c:71:43:c8:77:71:cc:80:23:fc:b5:f1:
76:72:64:4e:c5:2b:54:23:a3:f5:2c:33:8f:b8:85:
ee:06:e8:6c:99:ca:8f:78:69:e3:ce:2c:15:3b:d2:
92:ba:6b:9f:e0:0c:01:d8:73:3d:91:11:a9:5f:5c:
b6:63:9b:15:47:03:9f:f8:57:3f:3b:bb:74:6b:8b:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9E:29:C9:EE:BF:EF:5E:BA:83:6D:C0:10:22:2F:27:2F:55:85:AA
X509v3 Authority Key Identifier:
keyid:4F:BB:63:DF:06:DE:00:C8:43:DA:63:97:73:49:59:54:71:E5:1A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7tj3wbeAMhD2mOXc0lZVHHlGiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/PZ4pye6_7166g23AECIvJy9Vhao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a59ee9-33cd-47df-8403-b9472a2c5b3e/1/T7tj3wbeAMhD2mOXc0lZVHHlGiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.164.0/22
185.14.232.0/22
IPv6:
2a02:f000::/32
Signature Algorithm: sha256WithRSAEncryption
14:36:26:d2:ee:df:75:ba:88:f1:50:48:18:a9:2e:51:5f:cc:
d3:b7:7c:da:4e:32:4a:80:4f:13:98:d0:ec:bf:f9:f8:cb:a0:
45:43:1e:6f:3e:50:ca:8f:b2:79:d7:a3:61:22:3d:0f:19:d2:
b8:e4:14:26:f8:bd:b6:05:52:a1:f0:45:49:4b:90:04:fe:5e:
82:67:76:d4:6d:93:ee:9b:63:7a:a1:1e:5e:6b:dc:5b:d4:aa:
52:e2:aa:5b:0a:1b:42:75:d1:21:64:99:f0:38:68:36:35:2a:
0c:a7:06:8b:c5:ed:d2:2c:fa:8e:61:96:4e:0d:b6:1e:8c:3e:
1f:8f:f8:c8:ce:43:c5:6d:de:f0:36:e9:da:4a:20:bc:e0:2a:
a8:38:80:71:a1:69:ed:44:3b:8c:55:64:50:f1:05:6e:d9:80:
4a:d6:0c:da:b8:67:ee:7c:c2:bb:40:a7:7e:44:21:cb:26:29:
d1:a7:87:3b:9a:9f:2d:88:10:c0:49:0f:08:b1:90:ba:1e:55:
1c:a9:5f:11:2b:da:49:fd:f4:13:47:68:68:e7:3d:62:1b:80:
ed:94:eb:5b:2e:21:5a:cc:03:6a:0e:e4:72:26:ad:05:1d:9d:
66:94:04:ca:56:dd:51:2d:b5:9b:3d:67:de:e4:bc:ec:14:be:
e7:6e:95:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:37:39 2026 by rpki-client