Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vTGYV-olOZ3X0OxCLJCMUoCaQ38.roa
File: vTGYV-olOZ3X0OxCLJCMUoCaQ38.roa (raw, json)
Hash identifier: RG3iSzw11oWUs5nuQzZ5HyAz4GvFMJqmdCjVYLMibyg=
Subject key identifier: BD:31:98:57:EA:25:39:9D:D7:D0:EC:42:2C:90:8C:52:80:9A:43:7F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019CA07EC0D243DB576955B9260EAB974932
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vTGYV-olOZ3X0OxCLJCMUoCaQ38.roa
Signing time: Fri 27 Feb 2026 19:06:27 +0000
ROA not before: Fri 27 Feb 2026 19:06:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 30058
IP address blocks: 45.145.59.0/24 maxlen: 24
45.146.89.0/24 maxlen: 24
45.146.90.0/24 maxlen: 24
45.152.202.0/24 maxlen: 24
193.39.143.0/24 maxlen: 24
2a0a:2d06:104::/48 maxlen: 48
2a0f:7d05::/32 maxlen: 32
2a10:7500::/29 maxlen: 29
2a11:efc0::/29 maxlen: 29
2a12:ef00::/29 maxlen: 29
2a13:d46::/32 maxlen: 32
2a13:d47::/32 maxlen: 32
2a13:8c80::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a0:7e:c0:d2:43:db:57:69:55:b9:26:0e:ab:97:49:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 27 19:06:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bd319857ea25399dd7d0ec422c908c52809a437f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3e:81:ed:76:72:d5:06:fa:4c:b9:2a:f8:00:
12:7e:1d:47:82:24:b6:68:b3:95:53:99:e5:a5:f0:
77:5c:5d:20:0e:64:66:aa:c8:04:c2:bc:a2:e9:48:
ab:6f:58:cd:71:f9:80:67:2f:e8:ba:58:c2:1e:13:
18:5e:98:f4:e1:80:a8:0a:73:92:7f:cb:9e:5e:62:
b5:df:60:67:ee:8b:8e:84:fe:2c:37:34:47:e0:ae:
6b:a3:23:62:66:71:d3:cf:5e:fc:f5:17:72:da:6d:
fe:5b:c9:3a:d8:3e:65:60:8e:a2:d5:74:8c:16:71:
aa:1f:0b:53:c3:de:7d:9f:87:50:5e:a2:7e:1b:93:
fa:9e:d7:2f:f0:12:da:bb:52:71:b8:00:4e:d3:6a:
08:57:56:39:26:d8:f5:12:7c:3d:d1:4b:12:fd:5a:
aa:aa:30:50:63:e8:df:85:8f:3c:aa:08:0f:90:1c:
02:e7:fb:a1:ec:58:1b:3f:f8:1f:fe:e4:3f:c1:d7:
e4:a1:ac:41:30:ad:d4:a8:5e:f0:76:84:8b:2a:57:
15:29:86:a5:35:bb:c0:c1:61:1a:84:9c:9d:44:7a:
11:96:5a:f3:46:0e:02:d6:0c:9e:ed:78:01:b4:d3:
44:e7:9b:19:8f:35:4e:98:ff:4d:49:f7:48:5f:eb:
55:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:98:57:EA:25:39:9D:D7:D0:EC:42:2C:90:8C:52:80:9A:43:7F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vTGYV-olOZ3X0OxCLJCMUoCaQ38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.59.0/24
45.146.89.0-45.146.90.255
45.152.202.0/24
193.39.143.0/24
IPv6:
2a0a:2d06:104::/48
2a0f:7d05::/32
2a10:7500::/29
2a11:efc0::/29
2a12:ef00::/29
2a13:d46::/31
2a13:8c80::/32
2a13:c905::/32
Signature Algorithm: sha256WithRSAEncryption
ae:a0:56:f3:6e:78:7e:b8:b1:8f:c6:75:a0:a3:e4:fd:01:18:
06:21:a6:44:ba:52:f0:73:bd:7d:99:08:92:4a:f2:01:7f:6e:
d7:11:7d:60:4f:62:a3:3e:74:5c:71:17:55:a8:ae:15:d0:8c:
70:92:40:4f:04:9f:ca:eb:64:2e:26:4b:80:d1:d6:d2:15:04:
7b:50:c5:31:f9:a6:b0:07:df:ab:43:49:eb:32:e1:33:5c:48:
07:e4:04:72:27:a4:6c:26:54:42:99:5c:0f:d6:95:fa:d9:f2:
cc:94:d5:18:4d:e1:74:58:02:3f:38:31:ff:68:51:9b:73:fd:
41:7a:60:5e:6c:9a:1a:b3:3e:89:53:cf:80:c6:66:96:2b:09:
4b:4b:75:34:93:db:28:78:5f:0f:32:a0:a8:4d:7c:18:b4:08:
b1:48:fb:c6:de:be:5a:f4:79:21:6c:c8:0d:22:5f:eb:1f:f6:
12:b0:be:44:ca:68:21:39:f9:32:b4:9a:06:fb:40:83:fb:e8:
07:ed:52:19:61:fa:f7:33:5e:c9:b8:e8:77:47:71:0d:a5:70:
c9:5f:15:0d:42:ce:db:74:0f:7f:ea:70:2d:22:2b:c7:24:17:
45:05:74:10:e7:58:71:5e:05:bc:d7:78:71:c3:75:d2:e3:8d:
93:7d:de:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:15:39 2026 by rpki-client