Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vzOY8c2pVcK8KHXTzBw79g3Xc3s.roa
File: vzOY8c2pVcK8KHXTzBw79g3Xc3s.roa (raw, json)
Hash identifier: 3wuLXlNb2YOjzK+JWFDENt9RZe78KKGSC9eur8E5Jx0=
Subject key identifier: BF:33:98:F1:CD:A9:55:C2:BC:28:75:D3:CC:1C:3B:F6:0D:D7:73:7B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019CA0ED8AA7C51124AF4F64D2371C3BEE02
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vzOY8c2pVcK8KHXTzBw79g3Xc3s.roa
Signing time: Fri 27 Feb 2026 21:07:28 +0000
ROA not before: Fri 27 Feb 2026 21:07:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 26666
IP address blocks: 45.128.244.0/24 maxlen: 24
45.128.245.0/24 maxlen: 24
45.128.246.0/24 maxlen: 24
45.128.247.0/24 maxlen: 24
45.130.255.0/24 maxlen: 24
45.136.172.0/24 maxlen: 24
45.136.173.0/24 maxlen: 24
45.137.63.0/24 maxlen: 24
193.23.253.0/24 maxlen: 24
193.27.10.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
194.62.31.0/24 maxlen: 24
2a0f:1480::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:35c0::/29 maxlen: 29
2a0f:4f80::/29 maxlen: 29
2a13:8c85::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a0:ed:8a:a7:c5:11:24:af:4f:64:d2:37:1c:3b:ee:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 27 21:07:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bf3398f1cda955c2bc2875d3cc1c3bf60dd7737b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:89:f6:cc:7d:45:98:f5:ea:45:a4:45:47:df:
41:30:0a:08:9e:18:f1:23:11:66:11:13:fd:d5:0c:
00:f1:d5:f9:94:2c:7e:57:61:bf:32:2b:00:06:12:
df:f4:de:67:ba:06:6a:fa:16:d9:c4:27:39:f7:16:
e0:36:8f:a0:64:14:29:e5:dc:87:9e:42:74:9a:8a:
15:08:e8:78:cd:86:8f:44:82:7d:08:3e:86:9d:fe:
3a:4b:0a:3c:41:94:9f:d1:d7:ba:b6:1e:10:cf:0b:
f7:71:c1:b9:54:09:45:74:f9:a7:e7:9e:49:3f:66:
d0:15:1f:e6:0a:d2:67:f3:f6:b7:83:2c:0c:25:40:
da:64:f5:d1:d7:0a:e2:7e:bf:b4:72:6c:22:ac:54:
36:28:57:eb:96:4a:c8:ca:d5:6d:11:a0:00:c4:c0:
17:7c:6a:c2:a8:d4:96:9b:df:f3:c6:86:c1:ef:9d:
98:a0:e8:f1:c8:dc:e9:46:ea:8c:c7:fb:29:2a:45:
e5:e9:ef:c4:af:2b:64:4f:ac:47:01:57:52:a1:e3:
54:be:97:a1:a4:14:43:33:9f:51:14:ad:24:79:ce:
49:9f:be:52:85:3d:8c:a1:be:cd:15:9b:b5:46:60:
97:16:a5:a6:f0:9b:5d:b2:87:42:f5:b8:dd:5c:e2:
92:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:33:98:F1:CD:A9:55:C2:BC:28:75:D3:CC:1C:3B:F6:0D:D7:73:7B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vzOY8c2pVcK8KHXTzBw79g3Xc3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.244.0/22
45.130.255.0/24
45.136.172.0/23
45.137.63.0/24
193.23.253.0/24
193.27.10.0/24
194.33.29.0/24
194.62.31.0/24
IPv6:
2a0f:1480::/29
2a0f:2f80::/29
2a0f:35c0::/29
2a0f:4f80::/29
2a13:8c85::/32
Signature Algorithm: sha256WithRSAEncryption
02:22:12:b9:fa:71:d2:20:c3:32:b0:59:09:ac:ee:18:3e:6a:
e0:40:c4:03:83:09:59:dc:5a:b7:8c:71:2b:41:13:4d:e6:c8:
74:99:8a:59:60:af:f3:84:e0:45:1f:22:d0:41:16:1b:c1:b8:
d6:39:c2:98:a5:6f:d3:4c:d8:62:ce:75:3b:65:6b:eb:e7:32:
1c:e1:89:11:ff:54:f8:7d:e9:a1:f6:12:e8:60:8c:e2:9c:0c:
cb:81:67:a6:84:34:53:72:5e:51:7e:7c:5a:41:09:4e:d9:63:
bd:52:5a:a3:77:96:68:dc:69:a7:df:c5:31:22:ab:bb:46:5f:
bb:c9:29:a5:d4:99:65:83:1a:c3:63:00:11:33:76:72:78:ea:
4e:50:17:5f:3e:37:84:fb:08:63:48:39:4e:17:40:8d:14:66:
ad:6e:44:6b:ed:b6:c1:83:97:c6:26:ba:28:c9:5c:9d:3a:fc:
4f:b1:d3:17:41:f6:75:c7:0f:62:92:a9:b3:a7:90:31:78:5f:
7f:13:19:48:44:d1:f2:87:3a:aa:a5:63:93:c9:d5:18:1e:a7:
9e:3a:7c:72:3a:07:b4:cb:3e:bc:6b:fa:a2:24:69:3d:9c:53:
f2:f5:43:0d:e3:5f:cb:9f:87:77:d8:f9:d6:43:63:6c:57:6e:
23:bf:35:e6
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAZyg7YqnxREkr09k0jccO+4CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwMjI3MjEwNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjMzOThmMWNkYTk1NWMyYmMyODc1ZDNjYzFjM2JmNjBkZDc3MzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIn2zH1FmPXqRaRFR99BMAoInhjx
IxFmERP91QwA8dX5lCx+V2G/MisABhLf9N5nugZq+hbZxCc59xbgNo+gZBQp5dyH
nkJ0mooVCOh4zYaPRIJ9CD6Gnf46Swo8QZSf0de6th4Qzwv3ccG5VAlFdPmn555J
P2bQFR/mCtJn8/a3gywMJUDaZPXR1wrifr+0cmwirFQ2KFfrlkrIytVtEaAAxMAX
fGrCqNSWm9/zxobB752YoOjxyNzpRuqMx/spKkXl6e/ErytkT6xHAVdSoeNUvpeh
pBRDM59RFK0kec5Jn75ShT2Mob7NFZu1RmCXFqWm8JtdsodC9bjdXOKSgwIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFL8zmPHNqVXCvCh108wcO/YN13N7MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvdnpPWThjMnBWY0s4S0hYVHpCdzc5ZzNYYzNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzA2BAIAATAwAwQCLYD0AwQA
LYL/AwQBLYisAwQALYk/AwQAwRf9AwQAwRsKAwQAwiEdAwQAwj4fMCkEAgACMCMD
BQMqDxSAAwUDKg8vgAMFAyoPNcADBQMqD0+AAwUAKhOMhTANBgkqhkiG9w0BAQsF
AAOCAQEAAiISufpx0iDDMrBZCazuGD5q4EDEA4MJWdxat4xxK0ETTebIdJmKWWCv
84TgRR8i0EEWG8G41jnCmKVv00zYYs51O2Vr6+cyHOGJEf9U+H3pofYS6GCM4pwM
y4FnpoQ0U3JeUX58WkEJTtljvVJao3eWaNxpp9/FMSKru0Zfu8kppdSZZYMaw2MA
ETN2cnjqTlAXXz43hPsIY0g5ThdAjRRmrW5Ea+22wYOXxia6KMlcnTr8T7HTF0H2
dccPYpKps6eQMXhffxMZSETR8oc6qqVjk8nVGB6nnjp8cjoHtMs+vGv6oiRpPZxT
8vVDDeNfy5+Hd9j51kNjbFduI7815g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:42:03 2026 by rpki-client