Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7TQo7bkNH71wgCZbduFf3yjNmPc.roa
File: 7TQo7bkNH71wgCZbduFf3yjNmPc.roa (raw, json)
Hash identifier: VqibPjQ3Enn1X+5Glh7PbMbfoEQ472pMDft8xP5aA60=
Subject key identifier: ED:34:28:ED:B9:0D:1F:BD:70:80:26:5B:76:E1:5F:DF:28:CD:98:F7
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019C7CC0F93A8458E6EE7B91F1F450478505
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7TQo7bkNH71wgCZbduFf3yjNmPc.roa
Signing time: Fri 20 Feb 2026 20:32:27 +0000
ROA not before: Fri 20 Feb 2026 20:32:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 28753
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a09:7b00::/29 maxlen: 29
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0a:7d00::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0c:7886:99::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0f:17c0::/29 maxlen: 29
2a0f:2500::/29 maxlen: 29
2a0f:2d84::/32 maxlen: 32
2a0f:d200::/29 maxlen: 29
2a0f:db40::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:ac43:1312::/48 maxlen: 48
2a12:ecc0:158::/48 maxlen: 48
2a12:ecc6:1312::/48 maxlen: 48
2a13:1380::/29 maxlen: 29
2a13:18c6:66::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:2cc0::/29 maxlen: 29
2a13:2d40::/29 maxlen: 29
2a13:2dc0::/29 maxlen: 29
2a13:2e40::/29 maxlen: 29
2a13:3380::/29 maxlen: 29
2a13:4900::/29 maxlen: 29
2a13:5b80::/29 maxlen: 29
2a13:7900::/29 maxlen: 29
2a13:7d80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:d700::/29 maxlen: 29
2a13:d900::/29 maxlen: 29
2a13:f900::/29 maxlen: 29
2a13:fb00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:7c:c0:f9:3a:84:58:e6:ee:7b:91:f1:f4:50:47:85:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 20 20:32:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ed3428edb90d1fbd7080265b76e15fdf28cd98f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6a:b5:45:98:f1:ee:fb:fb:fb:dc:be:13:9a:
ed:82:8e:aa:41:4f:b8:22:17:e5:63:95:c8:53:da:
0e:bc:2d:f7:3b:40:16:16:3d:b7:39:f3:0a:2f:f9:
0c:bd:6f:c0:36:8f:8c:7b:ba:5c:be:ee:bf:0f:2f:
b6:c0:b8:63:04:f5:e6:e2:6a:f8:ae:16:23:aa:94:
72:1e:76:db:62:35:f9:ac:e7:7c:c8:0e:d7:00:e8:
91:b8:3f:e1:c9:44:c4:85:44:aa:cd:31:43:ce:95:
bf:a5:3b:d0:5a:93:82:d7:14:9b:c9:c3:63:79:5e:
9e:8b:15:e5:76:89:4e:8e:ef:31:4f:bd:75:dc:ee:
4b:1a:f6:b9:30:38:a2:03:c3:71:3e:cb:ca:4e:9e:
7e:e0:65:95:aa:76:09:42:7e:a1:8e:12:01:dd:28:
c8:37:71:2d:06:57:64:74:50:de:54:00:0f:ec:6a:
dd:b0:b0:e0:03:49:2b:46:14:86:fc:68:df:c5:f4:
26:4d:68:e9:b6:0e:fc:67:14:ec:95:18:b0:1f:7b:
bc:79:80:d0:f1:c1:9e:ca:42:bc:04:04:f3:c6:5a:
20:e1:29:55:e5:79:13:c0:2d:46:2d:ed:5c:0d:f9:
ed:ee:4f:8b:b4:5c:2e:b8:12:d8:22:83:19:d8:1f:
d6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:34:28:ED:B9:0D:1F:BD:70:80:26:5B:76:E1:5F:DF:28:CD:98:F7
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7TQo7bkNH71wgCZbduFf3yjNmPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a09:7b00::/29
2a0a:2d06:102::/47
2a0a:7d00::/29
2a0c:4880::/29
2a0c:7886:99::/48
2a0e:15c7:99::/48
2a0f:17c0::/29
2a0f:2500::/29
2a0f:2d84::/32
2a0f:d200::/29
2a0f:db40::/29
2a11:8880::/29
2a12:ac43:1312::/48
2a12:ecc0:158::/48
2a12:ecc6:1312::/48
2a13:1380::/29
2a13:18c6:66::/48
2a13:18c6:88::/48
2a13:2cc0::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2e40::/29
2a13:3380::/29
2a13:4900::/29
2a13:5b80::/29
2a13:7900::/29
2a13:7d80::/29
2a13:8200::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:f900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
ab:f3:6b:f9:71:ee:04:5f:a5:32:30:36:88:eb:9b:05:81:e4:
b9:4e:d2:af:dd:dc:f7:91:57:57:cd:0d:e8:f0:17:e8:d5:bc:
7f:aa:0d:f5:52:2d:19:0d:85:b6:e3:cd:27:bc:17:3a:c1:fc:
68:22:9c:65:b2:2c:ed:12:4d:03:dd:02:21:67:2c:d0:2a:1f:
32:8e:32:1c:63:88:30:71:05:f6:1c:21:66:4c:20:24:d0:52:
a1:27:61:de:55:39:f4:fc:ba:de:53:ef:e6:02:a8:72:2e:78:
e2:df:19:ba:5d:5e:ac:22:3b:32:11:4c:88:70:87:bb:97:7f:
bc:cb:4a:78:52:f4:16:91:92:27:05:19:73:9f:d0:41:16:54:
6d:d1:f4:ba:3d:3a:1a:9d:18:f1:7a:4b:bc:dc:26:7c:f6:91:
ef:43:97:a7:c6:90:c2:bf:dd:ed:ac:66:d6:63:e8:10:1c:1c:
62:88:5b:99:78:36:8a:46:8c:92:54:1e:cd:d7:5d:2e:22:9e:
e2:20:b2:90:5a:00:e1:63:e7:de:18:9f:31:60:99:91:df:80:
f1:1b:0d:a6:85:b1:62:69:82:56:3d:f1:24:9a:3b:5d:c5:38:
39:4e:99:90:c8:4d:8d:5f:df:bf:07:29:54:aa:f9:8c:cd:52:
64:ac:9c:2e
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgISAZx8wPk6hFjm7nuR8fRQR4UFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwMjIwMjAzMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDM0MjhlZGI5MGQxZmJkNzA4MDI2NWI3NmUxNWZkZjI4Y2Q5OGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGq1RZjx7vv7+9y+E5rtgo6qQU+4
IhflY5XIU9oOvC33O0AWFj23OfMKL/kMvW/ANo+Me7pcvu6/Dy+2wLhjBPXm4mr4
rhYjqpRyHnbbYjX5rOd8yA7XAOiRuD/hyUTEhUSqzTFDzpW/pTvQWpOC1xSbycNj
eV6eixXldolOju8xT7113O5LGva5MDiiA8NxPsvKTp5+4GWVqnYJQn6hjhIB3SjI
N3EtBldkdFDeVAAP7GrdsLDgA0krRhSG/GjfxfQmTWjptg78ZxTslRiwH3u8eYDQ
8cGeykK8BATzxlog4SlV5XkTwC1GLe1cDfnt7k+LtFwuuBLYIoMZ2B/W9wIDAQAB
o4IDIjCCAx4wHQYDVR0OBBYEFO00KO25DR+9cIAmW3bhX98ozZj3MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvN1RRbzdia05INzF3Z0NaYmR1RmYzeWpObVBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBNgYIKwYBBQUHAQcBAf8EggElMIIBITCCAR0EAgACMIIB
FQMFAyoEn0ADBwAqBhGEAQEDBQMqBjvAAwUDKgeKQAMFAyoJewADBwEqCi0GAQID
BQMqCn0AAwUDKgxIgAMHACoMeIYAmQMHACoOFccAmQMFAyoPF8ADBQMqDyUAAwUA
Kg8thAMFAyoP0gADBQMqD9tAAwUDKhGIgAMHACoSrEMTEgMHACoS7MABWAMHACoS
7MYTEgMFAyoTE4ADBwAqExjGAGYDBwAqExjGAIgDBQMqEyzAAwUDKhMtQAMFAyoT
LcADBQMqEy5AAwUDKhMzgAMFAyoTSQADBQMqE1uAAwUDKhN5AAMFAyoTfYADBQMq
E4IAAwUDKhPRAAMFAyoT1wADBQMqE9kAAwUDKhP5AAMFAyoT+wAwDQYJKoZIhvcN
AQELBQADggEBAKvza/lx7gRfpTIwNojrmwWB5LlO0q/d3PeRV1fNDejwF+jVvH+q
DfVSLRkNhbbjzSe8FzrB/GginGWyLO0STQPdAiFnLNAqHzKOMhxjiDBxBfYcIWZM
ICTQUqEnYd5VOfT8ut5T7+YCqHIueOLfGbpdXqwiOzIRTIhwh7uXf7zLSnhS9BaR
kicFGXOf0EEWVG3R9Lo9OhqdGPF6S7zcJnz2ke9Dl6fGkMK/3e2sZtZj6BAcHGKI
W5l4NopGjJJUHs3XXS4inuIgspBaAOFj594YnzFgmZHfgPEbDaaFsWJpglY98SSa
O13FODlOmZDITY1f378HKVSq+YzNUmSsnC4=
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:24:22 2026 by rpki-client