Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Gb6SqBJpWfP2acRSwYjm5UkC8pc.roa
File: Gb6SqBJpWfP2acRSwYjm5UkC8pc.roa (raw, json)
Hash identifier: /jMwGk/+mbROudR0A6hkJJpUNAMZpICQmYbFIzy6WfA=
Subject key identifier: 19:BE:92:A8:12:69:59:F3:F6:69:C4:52:C1:88:E6:E5:49:02:F2:97
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019C2A2C25BCDD05FFE8D80085083D0E39A7
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Gb6SqBJpWfP2acRSwYjm5UkC8pc.roa
Signing time: Wed 04 Feb 2026 19:41:02 +0000
ROA not before: Wed 04 Feb 2026 19:41:02 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 133153
IP address blocks: 193.254.244.0/24 maxlen: 24
193.254.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:2a:2c:25:bc:dd:05:ff:e8:d8:00:85:08:3d:0e:39:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 4 19:41:02 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=19be92a8126959f3f669c452c188e6e54902f297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:0c:5c:c4:a7:83:32:93:7e:55:fa:b0:78:
d0:52:87:70:63:f1:e6:91:4a:ce:ac:60:17:d5:a8:
a0:f3:2f:a7:6c:e3:5d:13:0e:f9:8e:64:2e:b7:d9:
bd:d6:63:9f:9d:46:f0:8b:86:7a:89:8e:30:f7:c6:
bf:7f:89:4a:55:51:3c:42:83:2f:69:e0:a5:d7:ee:
8a:df:9f:b2:7d:28:72:3a:97:4b:68:08:72:5a:93:
e6:67:ec:56:bf:74:4d:11:c7:5e:cf:9b:d4:3c:16:
31:f2:39:b6:e7:a8:9f:f7:d1:56:5e:f2:8f:cc:c9:
61:16:82:4b:65:d7:0f:39:25:dc:b4:22:02:35:82:
49:85:d7:26:39:1c:9e:4a:74:45:11:0a:a3:f9:0a:
28:32:4c:db:7e:fd:75:4d:ac:62:0e:a9:dc:5d:2f:
07:2d:cf:25:0f:5d:ea:84:83:62:b5:50:ed:15:11:
64:56:3d:78:f1:9e:28:1e:06:d8:34:6c:71:c3:45:
32:4f:e2:16:bc:ee:45:73:45:31:62:72:59:de:c9:
fa:97:70:6b:fa:1e:76:22:ff:c0:46:8d:10:5b:f4:
74:b9:03:3c:38:6c:0a:d1:0b:e4:44:05:e3:c8:24:
32:2f:5a:f5:d7:cf:20:2a:1f:fe:68:9f:6b:8a:b8:
1d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BE:92:A8:12:69:59:F3:F6:69:C4:52:C1:88:E6:E5:49:02:F2:97
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Gb6SqBJpWfP2acRSwYjm5UkC8pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.254.244.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:20:38:5f:5f:95:2a:af:70:88:69:88:09:12:3b:f1:65:3f:
4f:3f:30:35:d4:38:8e:a6:23:f6:9d:91:0c:63:7e:bb:95:b3:
41:f5:04:52:a6:01:f8:47:9f:28:0c:d5:95:14:5a:3b:e7:70:
72:fa:97:5f:19:4d:f6:5d:bf:1f:00:b4:41:9f:9f:49:e3:a4:
6b:cf:ff:c5:ff:e9:28:2a:02:90:9a:e2:46:36:5c:75:44:37:
95:81:4c:a3:b0:69:77:2c:07:02:f5:a4:1a:ad:fa:34:65:c6:
37:c5:f7:22:63:eb:da:0d:ab:77:fd:14:83:37:8f:0d:9e:00:
54:9c:9b:2a:b6:c5:2b:51:22:98:e4:06:0f:de:d5:03:cb:e7:
94:4d:df:82:7b:69:20:06:eb:f0:fa:f3:92:d4:0b:01:fc:56:
de:f8:ab:f1:00:7a:0a:44:72:41:35:5d:e8:40:17:f0:c6:7e:
81:9e:66:3e:93:0e:3c:c3:df:f9:5c:d5:59:cd:8f:b9:0f:97:
37:9a:2a:8f:d5:08:91:2f:26:9d:4c:ea:1b:8d:5a:19:4d:77:
27:26:80:b6:e5:28:cd:85:5d:e3:95:44:d9:4a:23:bb:59:4e:
aa:fa:22:fe:bc:d4:13:44:5f:b2:ad:3d:95:5f:9a:12:09:d4:
b2:18:29:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZwqLCW83QX/6NgAhQg9DjmnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwMjA0MTk0MTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWJlOTJhODEyNjk1OWYzZjY2OWM0NTJjMTg4ZTZlNTQ5MDJmMjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp74MXMSngzKTflX6sHjQUodwY/Hm
kUrOrGAX1aig8y+nbONdEw75jmQut9m91mOfnUbwi4Z6iY4w98a/f4lKVVE8QoMv
aeCl1+6K35+yfShyOpdLaAhyWpPmZ+xWv3RNEcdez5vUPBYx8jm256if99FWXvKP
zMlhFoJLZdcPOSXctCICNYJJhdcmORyeSnRFEQqj+QooMkzbfv11TaxiDqncXS8H
Lc8lD13qhINitVDtFRFkVj148Z4oHgbYNGxxw0UyT+IWvO5Fc0UxYnJZ3sn6l3Br
+h52Iv/ARo0QW/R0uQM8OGwK0QvkRAXjyCQyL1r1188gKh/+aJ9rirgdqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBm+kqgSaVnz9mnEUsGI5uVJAvKXMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvR2I2U3FCSnBXZlAyYWNSU3dZam01VWtDOHBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwf70MA0G
CSqGSIb3DQEBCwUAA4IBAQDIIDhfX5Uqr3CIaYgJEjvxZT9PPzA11DiOpiP2nZEM
Y367lbNB9QRSpgH4R58oDNWVFFo753By+pdfGU32Xb8fALRBn59J46Rrz//F/+ko
KgKQmuJGNlx1RDeVgUyjsGl3LAcC9aQarfo0ZcY3xfciY+vaDat3/RSDN48NngBU
nJsqtsUrUSKY5AYP3tUDy+eUTd+Ce2kgBuvw+vOS1AsB/Fbe+KvxAHoKRHJBNV3o
QBfwxn6BnmY+kw48w9/5XNVZzY+5D5c3miqP1QiRLyadTOobjVoZTXcnJoC25SjN
hV3jlUTZSiO7WU6q+iL+vNQTRF+yrT2VX5oSCdSyGCni
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:30:29 2026 by rpki-client