Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/qFlBumkePeciwYIFW51qlXnbSnw.roa
File: qFlBumkePeciwYIFW51qlXnbSnw.roa (raw, json)
Hash identifier: OF+ZfleTcPPIjS17WSiqYcfI3ysdfdvJUyBqeIU//TI=
Subject key identifier: A8:59:41:BA:69:1E:3D:E7:22:C1:82:05:5B:9D:6A:95:79:DB:4A:7C
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 019C4D22837B812DAA3E6C36E9E8CB31ED16
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/qFlBumkePeciwYIFW51qlXnbSnw.roa
Signing time: Wed 11 Feb 2026 14:37:13 +0000
ROA not before: Wed 11 Feb 2026 14:37:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 29802
IP address blocks: 45.93.82.0/24 maxlen: 24
45.131.51.0/24 maxlen: 24
80.64.27.0/24 maxlen: 24
80.64.29.0/24 maxlen: 24
185.210.136.0/24 maxlen: 24
213.139.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:4d:22:83:7b:81:2d:aa:3e:6c:36:e9:e8:cb:31:ed:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Feb 11 14:37:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a85941ba691e3de722c182055b9d6a9579db4a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f2:48:86:d2:de:cc:b5:27:09:01:6d:4a:68:
c5:57:3f:8c:b1:66:2a:67:49:30:93:2a:f8:5b:00:
9e:31:ea:fb:98:c1:82:48:73:a1:ac:9c:4f:55:e6:
c9:6c:44:98:50:88:49:3c:65:54:5f:3f:5a:41:90:
b1:78:e5:12:26:b1:5f:3a:23:9f:dd:6b:92:c8:d0:
d2:80:96:68:7d:00:6b:2d:6e:0e:ae:fa:38:c9:45:
a8:5f:24:40:35:07:64:20:e6:1a:62:3f:79:b2:14:
3e:f5:c3:c3:8d:4f:db:c8:8b:cb:86:71:97:3a:3b:
9b:74:ed:0d:43:19:84:5a:e0:f8:e0:6c:98:17:fc:
27:d2:49:ed:c6:a7:d1:86:5f:11:4c:f2:cd:e0:86:
2d:da:69:55:8d:cf:4b:7f:00:a7:80:74:31:5d:1d:
51:e6:70:f1:75:ab:37:f6:66:13:f9:35:aa:74:03:
db:6f:6d:b4:a3:ef:02:0e:47:e9:34:c3:35:36:bd:
21:f4:5d:f0:54:45:c3:85:5b:95:75:ef:69:ea:c2:
35:1c:76:88:31:e9:b9:76:6d:80:63:4e:c0:73:eb:
28:be:7f:d2:bb:61:4d:0d:c2:a1:d0:6f:08:8f:c5:
7c:a3:9e:16:bc:ac:f3:31:04:4d:73:f8:ff:21:02:
4b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:59:41:BA:69:1E:3D:E7:22:C1:82:05:5B:9D:6A:95:79:DB:4A:7C
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/qFlBumkePeciwYIFW51qlXnbSnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.82.0/24
45.131.51.0/24
80.64.27.0/24
80.64.29.0/24
185.210.136.0/24
213.139.202.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5a:05:98:6b:cb:a2:5d:0a:84:4b:d0:7f:90:19:22:00:4d:
f5:93:a8:f8:aa:8a:6f:c9:a5:ba:32:24:63:f9:0c:a9:90:eb:
bc:10:ea:bc:4b:64:6b:88:67:e0:74:00:ca:ef:68:34:87:28:
93:cf:ee:4b:84:fd:2a:82:98:c8:87:6c:e8:8c:18:01:6a:f7:
00:df:16:72:10:83:33:bd:1e:6b:54:80:a6:5b:52:cc:52:35:
90:c9:82:55:61:83:54:88:0a:a0:da:2c:3e:27:12:f5:9c:9c:
c4:fc:53:91:74:4e:c5:c3:1c:4c:12:18:f9:28:95:8b:cc:15:
94:d1:70:34:6f:b1:66:e0:81:99:d6:49:3f:8f:2c:81:2e:c7:
24:59:63:cc:08:27:58:91:bb:d7:d4:43:c3:4f:22:68:4d:7a:
30:bf:c6:f0:df:95:b0:d5:b1:67:fd:90:9f:0a:65:35:1c:74:
d0:d4:f1:f3:d6:40:56:90:03:a0:ae:52:7e:4e:a2:83:2a:2a:
d3:4d:55:d3:1c:55:f4:4d:5b:72:b7:2a:22:93:02:41:23:d4:
f2:82:1c:7d:5b:23:8d:b3:dd:b9:4a:a1:1e:0a:ae:29:99:ab:
65:41:79:af:0b:e1:2b:d2:de:93:7b:48:d1:dc:a4:95:9e:51:
9c:a2:c6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:18:25 2026 by rpki-client