Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/kGneqi-DhIJThQbxo8k8aRtzhC0.roa
File: kGneqi-DhIJThQbxo8k8aRtzhC0.roa (raw, json)
Hash identifier: LH1+UqmotTldhBb3/js9nM0r1q8ixXwicRK2tem2Z4A=
Subject key identifier: 90:69:DE:AA:2F:83:84:82:53:85:06:F1:A3:C9:3C:69:1B:73:84:2D
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 019C6BC055D2B15F7732A06D58E6290CB97E
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/kGneqi-DhIJThQbxo8k8aRtzhC0.roa
Signing time: Tue 17 Feb 2026 13:18:12 +0000
ROA not before: Tue 17 Feb 2026 13:18:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208081
IP address blocks: 83.139.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6b:c0:55:d2:b1:5f:77:32:a0:6d:58:e6:29:0c:b9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Feb 17 13:18:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9069deaa2f838482538506f1a3c93c691b73842d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6c:2d:02:59:b4:9a:cf:81:64:f6:0f:81:98:
59:5a:d4:e6:c9:14:fa:d4:37:25:48:a3:bd:8f:a1:
51:d9:44:fe:a6:d9:f4:d9:24:e9:74:70:89:34:1b:
c6:79:84:35:e8:ed:1c:19:6e:e5:11:ea:e4:b9:c7:
16:6b:49:51:ed:69:8c:9c:4d:df:63:1f:c7:2f:f3:
5d:69:24:63:a3:71:84:ce:79:7b:07:0c:17:8f:c9:
aa:3e:dc:87:c2:93:0f:cc:8d:44:9f:2d:88:b6:82:
34:5c:88:e5:c9:78:bd:8d:a1:69:61:cf:98:1e:62:
e4:c1:7f:d3:5a:e9:6c:82:00:42:83:7b:8a:79:5b:
0e:59:4c:e1:ec:83:d3:b6:3f:69:df:30:e8:b6:fa:
6a:01:08:d5:41:36:8b:d1:bf:f3:78:7a:ef:d2:88:
a1:6c:65:0a:e8:b6:25:0e:d3:2e:a8:b9:2f:f9:df:
9c:ba:77:cb:29:95:4c:d9:d2:88:dd:aa:20:38:dd:
62:64:74:98:bc:79:b2:86:e4:25:a5:4a:27:24:3b:
df:cd:f6:18:a6:26:30:78:18:ad:eb:41:23:3a:1b:
e5:1e:63:c7:0c:d7:63:fd:ca:c1:ac:0e:ec:ad:7f:
e9:81:3c:42:67:4a:86:02:4c:51:05:12:f1:4d:2f:
8a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:69:DE:AA:2F:83:84:82:53:85:06:F1:A3:C9:3C:69:1B:73:84:2D
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/kGneqi-DhIJThQbxo8k8aRtzhC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.40.0/24
Signature Algorithm: sha256WithRSAEncryption
36:9d:7e:54:66:7d:ee:ca:b8:8e:35:06:bd:b0:d3:f3:41:ca:
f6:71:86:b7:a6:ea:59:e3:0f:57:15:49:61:86:cb:9d:c3:cb:
dd:30:3a:2e:fb:94:79:c1:61:e2:0f:c1:1e:2c:c8:17:f4:f3:
24:f1:da:7b:3f:37:01:cc:88:e0:b5:cb:67:a9:00:f4:ca:21:
bb:24:91:03:88:28:e6:e3:e1:9a:5e:82:ec:01:62:e6:88:2a:
47:8b:45:7d:14:48:cb:53:50:84:15:90:97:62:fa:ac:d3:c5:
35:eb:6d:db:ba:c3:11:e2:58:a8:fa:ad:ee:32:3a:d0:41:d3:
22:7b:d6:c0:cc:99:b9:cf:e5:d4:c5:2e:a1:90:c3:86:db:72:
67:83:b1:3d:82:84:89:bf:cd:87:bd:67:25:a6:ce:c3:67:fe:
53:c7:3a:93:15:20:c1:4d:24:71:90:c0:e0:cd:7e:15:cb:65:
38:49:ce:0a:df:98:88:a3:17:21:3d:cf:8c:07:e6:89:cb:8c:
68:01:45:6b:65:a7:60:94:3c:61:b8:4d:db:c1:b3:b4:7a:18:
88:6b:d7:be:06:0c:c3:84:39:5b:f1:07:46:d8:b3:2c:5e:59:
06:fe:38:bc:0c:60:af:08:a2:b4:2b:19:7d:91:16:44:67:58:
34:3c:6e:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZxrwFXSsV93MqBtWOYpDLl+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNzVmYjRmNTJhODI5ZDEzNmUyOWE5YTAyNWM2MzZkMTlh
ZTMyOGUwHhcNMjYwMjE3MTMxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDY5ZGVhYTJmODM4NDgyNTM4NTA2ZjFhM2M5M2M2OTFiNzM4NDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmwtAlm0ms+BZPYPgZhZWtTmyRT6
1DclSKO9j6FR2UT+ptn02STpdHCJNBvGeYQ16O0cGW7lEerkuccWa0lR7WmMnE3f
Yx/HL/NdaSRjo3GEznl7BwwXj8mqPtyHwpMPzI1Eny2ItoI0XIjlyXi9jaFpYc+Y
HmLkwX/TWulsggBCg3uKeVsOWUzh7IPTtj9p3zDotvpqAQjVQTaL0b/zeHrv0oih
bGUK6LYlDtMuqLkv+d+cunfLKZVM2dKI3aogON1iZHSYvHmyhuQlpUonJDvfzfYY
piYweBit60EjOhvlHmPHDNdj/crBrA7srX/pgTxCZ0qGAkxRBRLxTS+KmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJBp3qovg4SCU4UG8aPJPGkbc4QtMB8GA1UdIwQY
MBaAFA51+09SqCnRNuKamgJcY20ZrjKOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYt
MzViYTI2N2RlZDNiLzEva0duZXFpLURoSUpUaFFieG84azhhUnR6aEMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYtMzViYTI2N2RlZDNi
LzEvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4soMA0G
CSqGSIb3DQEBCwUAA4IBAQA2nX5UZn3uyriONQa9sNPzQcr2cYa3pupZ4w9XFUlh
hsudw8vdMDou+5R5wWHiD8EeLMgX9PMk8dp7PzcBzIjgtctnqQD0yiG7JJEDiCjm
4+GaXoLsAWLmiCpHi0V9FEjLU1CEFZCXYvqs08U1623busMR4lio+q3uMjrQQdMi
e9bAzJm5z+XUxS6hkMOG23Jng7E9goSJv82HvWclps7DZ/5TxzqTFSDBTSRxkMDg
zX4Vy2U4Sc4K35iIoxchPc+MB+aJy4xoAUVrZadglDxhuE3bwbO0ehiIa9e+BgzD
hDlb8QdG2LMsXlkG/ji8DGCvCKK0Kxl9kRZEZ1g0PG5U
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:52:56 2026 by rpki-client