Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PcRlmmm4vwJ0aAWANQfoJLu8JlM.roa
File: PcRlmmm4vwJ0aAWANQfoJLu8JlM.roa (raw, json)
Hash identifier: r2sdqFxswUapxKmUKjgKowQrusIzAAN8c0IuaYf5OZA=
Subject key identifier: 3D:C4:65:9A:69:B8:BF:02:74:68:05:80:35:07:E8:24:BB:BC:26:53
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 019C47C8CD469D263479B2D2DFEA159BF8CD
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PcRlmmm4vwJ0aAWANQfoJLu8JlM.roa
Signing time: Tue 10 Feb 2026 13:41:07 +0000
ROA not before: Tue 10 Feb 2026 13:41:07 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 211440
IP address blocks: 45.9.155.0/24 maxlen: 24
45.87.44.0/22 maxlen: 24
91.227.184.0/24 maxlen: 24
91.234.192.0/24 maxlen: 24
147.78.198.0/24 maxlen: 24
147.78.199.0/24 maxlen: 24
178.239.28.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:47:c8:cd:46:9d:26:34:79:b2:d2:df:ea:15:9b:f8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Feb 10 13:41:07 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3dc4659a69b8bf02746805803507e824bbbc2653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:92:8b:ab:66:6e:43:31:f6:37:5d:2d:d4:
e4:32:d5:be:31:a5:c2:92:8a:e4:76:80:cc:b0:39:
61:cc:e5:b9:a6:fe:5c:ce:0d:4e:3d:ea:e3:b5:c2:
b3:f7:cb:43:dd:99:26:77:3f:28:3c:da:89:fc:3e:
67:a2:7c:7e:c5:77:07:b5:08:1a:b2:db:c2:13:64:
1d:ec:be:ea:d4:5e:02:7e:6e:a1:19:db:d4:cc:58:
f5:87:66:4c:d5:5d:f3:24:ac:99:79:e8:de:12:24:
35:20:00:76:b7:3b:32:8a:6d:e4:78:33:89:65:78:
2f:84:e9:20:a9:9c:42:7d:2a:84:5c:ad:5d:64:18:
3f:5b:ae:0f:99:62:49:6a:7a:72:65:cd:35:fe:af:
33:97:30:6c:e5:97:83:19:53:93:e2:2c:a1:b9:ef:
49:01:65:62:ab:cd:ed:57:2c:e6:da:2a:4b:28:69:
61:17:04:d4:44:93:fc:56:94:25:d9:c8:fc:fc:fd:
86:f8:4f:3d:11:77:80:80:a5:89:b6:e3:ac:06:ba:
e2:26:27:5e:92:9e:c7:af:8c:37:79:6d:62:27:ab:
e7:cf:80:09:ef:85:d8:ce:4b:13:b9:d1:db:86:f8:
0c:f9:11:2e:fd:74:1f:62:cd:21:d8:ad:8b:26:d6:
69:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C4:65:9A:69:B8:BF:02:74:68:05:80:35:07:E8:24:BB:BC:26:53
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PcRlmmm4vwJ0aAWANQfoJLu8JlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.155.0/24
45.87.44.0/22
91.227.184.0/24
91.234.192.0/24
147.78.198.0/23
178.239.28.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:1c:68:98:9c:9d:76:e9:41:86:d5:20:f4:ea:33:51:d0:bd:
eb:e8:e8:e0:79:54:1f:5a:53:9b:3c:d4:4e:25:e6:0e:42:12:
54:33:bc:ea:a3:dd:8b:12:da:5f:74:e8:d2:dd:93:35:ca:28:
14:07:36:97:4a:f3:26:cb:6d:1e:72:e4:e3:3b:48:43:57:e8:
00:78:fd:7d:7f:65:41:e3:b8:a2:a9:50:7d:ac:08:96:bb:6e:
31:e9:bd:4c:e5:17:e4:be:f6:5d:7d:3a:ef:17:e4:0a:f4:c6:
f4:ca:0b:e0:ff:c9:f2:13:19:03:d5:45:61:b6:34:2b:d1:52:
77:f2:63:da:49:af:a5:33:63:b7:6a:79:67:fe:7c:65:89:a5:
c5:02:be:4d:6e:8e:3b:88:e6:eb:c8:1a:0b:59:27:7a:f7:dd:
f7:47:5a:93:c6:a0:fe:c0:ef:cf:41:77:3d:a3:4e:c7:f0:06:
3e:1e:ad:55:fa:66:5a:76:3f:1b:63:9d:88:4f:d8:0d:23:d4:
74:92:25:99:31:a5:65:db:32:55:48:2c:f3:44:fe:15:3e:56:
8d:c4:8f:36:9c:76:ef:b3:4f:75:60:bd:fb:f3:24:6c:fb:18:
95:70:ce:8d:a2:9a:c3:2c:a9:c6:67:c9:9e:6f:6b:01:4a:a1:
c4:a8:f5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:37:48 2026 by rpki-client