Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/WQvOoujqI3sqCm_Zd7S1iFs1wj4.roa
File: WQvOoujqI3sqCm_Zd7S1iFs1wj4.roa (raw, json)
Hash identifier: LpWyJs/P3G0sQUtjO304xYyz9zIg2FEbx0MdTQZZivA=
Subject key identifier: 59:0B:CE:A2:E8:EA:23:7B:2A:0A:6F:D9:77:B4:B5:88:5B:35:C2:3E
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019C90D951C0BC95C469A0A041FF894E309E
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/WQvOoujqI3sqCm_Zd7S1iFs1wj4.roa
Signing time: Tue 24 Feb 2026 18:11:27 +0000
ROA not before: Tue 24 Feb 2026 18:11:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 34775
IP address blocks: 2a04:5f80::/29 maxlen: 48
2a06:2a00::/29 maxlen: 48
2a06:7780::/29 maxlen: 48
2a06:ba00::/29 maxlen: 48
2a06:e5c0::/29 maxlen: 48
2a09:940::/29 maxlen: 48
2a09:12c0::/29 maxlen: 48
2a09:13c0::/29 maxlen: 48
2a09:41c0::/29 maxlen: 48
2a09:4cc0::/29 maxlen: 48
2a09:4f40::/29 maxlen: 48
2a09:4fc0::/29 maxlen: 48
2a09:5040::/29 maxlen: 48
2a09:50c0::/29 maxlen: 48
2a09:5140::/29 maxlen: 48
2a09:5240::/29 maxlen: 48
2a09:6a80::/29 maxlen: 48
2a09:6dc0::/29 maxlen: 48
2a09:73c0::/29 maxlen: 48
2a09:7a40::/29 maxlen: 48
2a09:8a40::/29 maxlen: 48
2a09:8a80::/29 maxlen: 48
2a09:95c0::/29 maxlen: 48
2a09:97c0::/29 maxlen: 48
2a09:9840::/29 maxlen: 48
2a09:9ac0::/29 maxlen: 48
2a09:9b40::/29 maxlen: 48
2a09:a400::/29 maxlen: 48
2a09:a840::/29 maxlen: 48
2a09:a9c0::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:90:d9:51:c0:bc:95:c4:69:a0:a0:41:ff:89:4e:30:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 24 18:11:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=590bcea2e8ea237b2a0a6fd977b4b5885b35c23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:43:98:fd:52:f1:97:7e:95:70:02:c6:e4:
65:f3:eb:d1:33:a2:c0:ef:bd:c2:f8:9a:64:4f:c5:
00:ff:64:19:be:fd:19:9b:7e:51:96:e0:b5:6d:be:
82:4b:ce:77:31:c8:1b:ce:5e:1f:ad:69:21:5d:4c:
20:6b:b3:2b:20:f9:b7:9b:8d:e7:cf:30:5b:5e:d9:
d6:76:98:2f:ca:8d:0b:4f:68:a3:d2:33:f5:5d:4e:
64:5f:da:16:72:87:7c:82:eb:68:f4:bd:7f:53:88:
97:fd:50:33:ca:a4:6f:fb:f7:57:6c:40:97:d3:34:
9b:3c:4d:da:1b:fd:aa:fd:c7:af:9e:bf:89:dd:22:
d3:8b:d2:7a:1e:51:0a:b0:bf:62:ce:4c:80:6b:c4:
7d:45:2f:7d:44:ea:9d:8e:4a:8f:35:35:3b:af:56:
64:11:b1:76:81:be:eb:6a:86:10:c2:e9:23:02:cc:
08:a1:f6:5e:47:c2:3e:93:96:8a:b5:59:eb:68:5c:
fe:e6:57:4f:d5:3a:5b:1d:61:93:c6:5c:ee:33:78:
ec:69:4f:03:53:ee:cb:9e:07:08:f6:f4:5f:c4:a8:
6a:42:18:17:de:eb:58:de:cb:25:02:e8:d7:fb:8a:
59:2c:da:73:4f:3b:4a:d0:3c:f4:85:5f:be:44:dc:
59:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0B:CE:A2:E8:EA:23:7B:2A:0A:6F:D9:77:B4:B5:88:5B:35:C2:3E
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/WQvOoujqI3sqCm_Zd7S1iFs1wj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5f80::/29
2a06:2a00::/29
2a06:7780::/29
2a06:ba00::/29
2a06:e5c0::/29
2a09:940::/29
2a09:12c0::/29
2a09:13c0::/29
2a09:41c0::/29
2a09:4cc0::/29
2a09:4f40::/29
2a09:4fc0::/29
2a09:5040::/29
2a09:50c0::/29
2a09:5140::/29
2a09:5240::/29
2a09:6a80::/29
2a09:6dc0::/29
2a09:73c0::/29
2a09:7a40::/29
2a09:8a40::/29
2a09:8a80::/29
2a09:95c0::/29
2a09:97c0::/29
2a09:9840::/29
2a09:9ac0::/29
2a09:9b40::/29
2a09:a400::/29
2a09:a840::/29
2a09:a9c0::/29
Signature Algorithm: sha256WithRSAEncryption
68:80:42:53:bc:c6:2a:11:9f:0d:07:8c:57:87:70:79:61:f1:
20:4e:d4:a1:91:9d:0f:53:5f:ab:0a:96:9b:de:02:d0:14:fa:
06:71:99:cf:5d:e1:ad:8e:3a:27:a2:83:66:81:b5:25:2b:db:
81:ef:88:76:11:41:df:bb:49:80:a9:5b:0f:07:5b:2a:fb:d3:
01:ee:84:8b:15:47:aa:3e:82:a0:c2:f1:ec:c6:68:a1:3e:03:
11:3c:be:27:36:74:c2:89:37:01:c4:99:3a:8c:f8:12:8e:07:
6c:a4:60:ca:f1:e3:78:92:af:92:47:55:0b:88:91:c8:6a:05:
00:c8:d4:2b:b2:ca:33:1c:33:87:2d:66:e2:de:b2:ef:cf:f6:
30:8c:fd:66:09:34:43:3f:1b:29:13:92:73:4b:51:40:dd:8a:
d1:f8:08:18:11:8e:1e:c2:75:d7:08:95:9b:4e:f5:db:c4:ec:
1b:77:f9:fb:df:98:3b:13:6e:b8:f2:4c:54:cc:19:1a:33:2c:
b6:a6:6f:e8:53:5c:9f:9d:67:06:ed:16:b7:4f:35:07:e9:70:
7d:c7:55:bf:5d:ba:a4:b0:4b:96:c3:0a:4a:b8:cc:49:ad:d5:
8d:d6:c5:31:a5:d8:0a:71:12:8c:52:5c:41:95:4e:7c:79:03:
95:51:41:4a
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgISAZyQ2VHAvJXEaaCgQf+JTjCeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjYwMjI0MTgxMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTBiY2VhMmU4ZWEyMzdiMmEwYTZmZDk3N2I0YjU4ODViMzVjMjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjtDmP1S8Zd+lXACxuRl8+vRM6LA
773C+JpkT8UA/2QZvv0Zm35RluC1bb6CS853Mcgbzl4frWkhXUwga7MrIPm3m43n
zzBbXtnWdpgvyo0LT2ij0jP1XU5kX9oWcod8guto9L1/U4iX/VAzyqRv+/dXbECX
0zSbPE3aG/2q/cevnr+J3SLTi9J6HlEKsL9izkyAa8R9RS99ROqdjkqPNTU7r1Zk
EbF2gb7raoYQwukjAswIofZeR8I+k5aKtVnraFz+5ldP1TpbHWGTxlzuM3jsaU8D
U+7LngcI9vRfxKhqQhgX3utY3sslAujX+4pZLNpzTztK0Dz0hV++RNxZVQIDAQAB
o4IC2jCCAtYwHQYDVR0OBBYEFFkLzqLo6iN7Kgpv2Xe0tYhbNcI+MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvV1F2T291anFJM3NxQ21fWmQ3UzFpRnMxd2o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHvBggrBgEFBQcBBwEB/wSB3zCB3DCB2QQCAAIwgdIDBQMq
BF+AAwUDKgYqAAMFAyoGd4ADBQMqBroAAwUDKgblwAMFAyoJCUADBQMqCRLAAwUD
KgkTwAMFAyoJQcADBQMqCUzAAwUDKglPQAMFAyoJT8ADBQMqCVBAAwUDKglQwAMF
AyoJUUADBQMqCVJAAwUDKglqgAMFAyoJbcADBQMqCXPAAwUDKgl6QAMFAyoJikAD
BQMqCYqAAwUDKgmVwAMFAyoJl8ADBQMqCZhAAwUDKgmawAMFAyoJm0ADBQMqCaQA
AwUDKgmoQAMFAyoJqcAwDQYJKoZIhvcNAQELBQADggEBAGiAQlO8xioRnw0HjFeH
cHlh8SBO1KGRnQ9TX6sKlpveAtAU+gZxmc9d4a2OOieig2aBtSUr24HviHYRQd+7
SYCpWw8HWyr70wHuhIsVR6o+gqDC8ezGaKE+AxE8vic2dMKJNwHEmTqM+BKOB2yk
YMrx43iSr5JHVQuIkchqBQDI1CuyyjMcM4ctZuLesu/P9jCM/WYJNEM/GykTknNL
UUDditH4CBgRjh7CddcIlZtO9dvE7Bt3+fvfmDsTbrjyTFTMGRozLLamb+hTXJ+d
ZwbtFrdPNQfpcH3HVb9duqSwS5bDCkq4zEmt1Y3WxTGl2ApxEoxSXEGVTnx5A5VR
QUo=
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:20:35 2026 by rpki-client