Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/_6q9wuDzSJiIGCZ9YefFcAoBZMQ.roa
File: _6q9wuDzSJiIGCZ9YefFcAoBZMQ.roa (raw, json)
Hash identifier: C/UzzUHj11yHXboHm5t8vq3dYh7JXyh5B3Cj1fatyLw=
Subject key identifier: FF:AA:BD:C2:E0:F3:48:98:88:18:26:7D:61:E7:C5:70:0A:01:64:C4
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 019C46110C5F42E498920147D5CFA69DC733
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/_6q9wuDzSJiIGCZ9YefFcAoBZMQ.roa
Signing time: Tue 10 Feb 2026 05:40:48 +0000
ROA not before: Tue 10 Feb 2026 05:40:48 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201063
IP address blocks: 185.3.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 20:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:46:11:0c:5f:42:e4:98:92:01:47:d5:cf:a6:9d:c7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Feb 10 05:40:48 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ffaabdc2e0f348988818267d61e7c5700a0164c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:47:a4:06:9b:91:5c:35:44:8a:6c:4a:f1:38:
3f:bd:23:a9:b4:18:2d:37:b0:61:e1:35:18:12:30:
86:57:8c:f4:7b:2f:ac:86:64:01:83:e7:90:40:2b:
88:05:0d:1c:12:df:5b:8b:12:02:62:3b:1f:f1:68:
07:87:3b:bc:7f:2c:24:26:d1:e2:34:cd:e2:00:44:
b7:c1:43:c8:c5:1f:05:07:f0:c6:f7:d3:b7:51:8c:
6a:44:73:20:21:ab:b2:a6:d0:9a:18:cd:56:cd:84:
19:d5:03:08:95:b5:e2:46:4f:68:b9:b5:da:df:23:
c0:f6:c1:ee:8c:e5:31:7a:b9:35:7b:16:fa:0d:15:
e4:e1:29:6d:ad:ea:2b:22:93:c3:2b:01:33:b1:31:
8e:29:8e:0d:32:fa:56:0e:01:ee:ba:20:20:56:0e:
33:b1:97:79:e4:f9:61:ca:a5:dc:5c:b0:0a:12:05:
29:43:4a:b5:7d:c8:25:be:7e:e8:4f:66:52:b2:b7:
68:6f:b9:01:fe:e6:c7:8f:be:7d:25:38:e6:7b:16:
a6:38:be:2d:c7:77:7b:77:4f:10:4c:93:6d:45:5d:
fe:0c:6a:57:ad:41:ac:89:9f:71:c8:66:36:0e:de:
6b:a2:7b:6c:80:38:34:a5:9b:78:da:31:36:9d:79:
52:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AA:BD:C2:E0:F3:48:98:88:18:26:7D:61:E7:C5:70:0A:01:64:C4
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/_6q9wuDzSJiIGCZ9YefFcAoBZMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.189.0/24
Signature Algorithm: sha256WithRSAEncryption
90:32:94:e3:e8:60:4a:fd:e4:31:f5:1d:c1:9b:74:d9:f3:3c:
fc:ac:9f:a1:19:6c:fd:ed:14:95:0d:33:8f:a4:a8:d5:40:50:
23:9e:19:fa:d7:a2:ba:c0:50:56:91:74:de:2e:de:3d:9d:ce:
9d:9f:e3:e9:d1:b3:cc:d4:80:2c:e6:78:72:18:7b:28:74:bd:
69:18:f6:56:c4:8c:56:6e:c0:ab:8f:1f:e4:33:a0:0e:64:24:
d3:7e:78:a9:3e:27:c6:3c:6d:96:1b:b9:af:fc:b2:7a:42:c2:
50:00:0f:de:b7:b4:4f:0b:f9:55:22:33:3a:3b:f5:ce:4b:32:
a6:57:b4:d9:19:8b:ad:84:7e:a1:6d:a8:56:bd:df:4d:96:fb:
b6:09:35:65:ee:3a:84:03:f4:50:e3:2e:e1:d3:cb:e2:a3:dd:
76:5a:2e:61:e4:02:3f:ed:ea:0a:d8:3c:91:23:9c:30:37:22:
25:e6:b5:9a:a3:5a:99:db:21:3a:ee:29:e9:42:3e:d5:f1:fc:
f9:50:32:b4:1f:84:65:50:54:f2:93:8e:16:1e:73:67:81:58:
77:63:da:25:71:49:65:bf:6c:4f:1b:95:c0:85:b9:8f:77:65:
56:f1:6c:67:58:c8:80:28:9a:61:c8:39:b6:b6:fd:de:1b:a2:
b0:c5:1e:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZxGEQxfQuSYkgFH1c+mncczMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjOTBjMzU2ZTI4NjRmNDM4OTQ4NTc0NDM1NTVkOGI1YzAz
NTI4MTkwHhcNMjYwMjEwMDU0MDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmFhYmRjMmUwZjM0ODk4ODgxODI2N2Q2MWU3YzU3MDBhMDE2NGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00ekBpuRXDVEimxK8Tg/vSOptBgt
N7Bh4TUYEjCGV4z0ey+shmQBg+eQQCuIBQ0cEt9bixICYjsf8WgHhzu8fywkJtHi
NM3iAES3wUPIxR8FB/DG99O3UYxqRHMgIauyptCaGM1WzYQZ1QMIlbXiRk9oubXa
3yPA9sHujOUxerk1exb6DRXk4SltreorIpPDKwEzsTGOKY4NMvpWDgHuuiAgVg4z
sZd55PlhyqXcXLAKEgUpQ0q1fcglvn7oT2ZSsrdob7kB/ubHj759JTjmexamOL4t
x3d7d08QTJNtRV3+DGpXrUGsiZ9xyGY2Dt5rontsgDg0pZt42jE2nXlSlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP+qvcLg80iYiBgmfWHnxXAKAWTEMB8GA1UdIwQY
MBaAFAyQw1bihk9DiUhXRDVV2LXANSgZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDct
ZTM3OTlhZGU5ZGZlLzEvXzZxOXd1RHpTSmlJR0NaOVllZkZjQW9CWk1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDctZTM3OTlhZGU5ZGZl
LzEvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQO9MA0G
CSqGSIb3DQEBCwUAA4IBAQCQMpTj6GBK/eQx9R3Bm3TZ8zz8rJ+hGWz97RSVDTOP
pKjVQFAjnhn616K6wFBWkXTeLt49nc6dn+Pp0bPM1IAs5nhyGHsodL1pGPZWxIxW
bsCrjx/kM6AOZCTTfnipPifGPG2WG7mv/LJ6QsJQAA/et7RPC/lVIjM6O/XOSzKm
V7TZGYuthH6hbahWvd9Nlvu2CTVl7jqEA/RQ4y7h08vio912Wi5h5AI/7eoK2DyR
I5wwNyIl5rWao1qZ2yE67inpQj7V8fz5UDK0H4RlUFTyk44WHnNngVh3Y9olcUll
v2xPG5XAhbmPd2VW8WxnWMiAKJphyDm2tv3eG6KwxR6A
-----END CERTIFICATE-----
Generated at Tue Mar 3 01:56:10 2026 by rpki-client