Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/La12rr_K1ZSbuhi7wlgaOCIF5ZA.roa
File: La12rr_K1ZSbuhi7wlgaOCIF5ZA.roa (raw, json)
Hash identifier: Z2Rpf1e0zKOJjF1IX+pQ5F4oluN25ApbSFfygu3hh5I=
Subject key identifier: 2D:AD:76:AE:BF:CA:D5:94:9B:BA:18:BB:C2:58:1A:38:22:05:E5:90
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 019E6363AB065F4BE818AD6E7AB2BA7C5FED
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/La12rr_K1ZSbuhi7wlgaOCIF5ZA.roa
Signing time: Tue 26 May 2026 08:25:36 +0000
ROA not before: Tue 26 May 2026 08:25:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58074
IP address blocks: 194.6.201.0/24 maxlen: 24
195.245.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:63:63:ab:06:5f:4b:e8:18:ad:6e:7a:b2:ba:7c:5f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: May 26 08:25:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2dad76aebfcad5949bba18bbc2581a382205e590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:35:a4:c4:55:f0:9e:c5:97:62:c0:6a:24:
18:e0:58:27:66:cb:c3:2a:41:71:e6:74:dc:cd:41:
9b:99:99:64:2e:6f:fa:b2:8a:ff:b6:73:a4:9e:46:
71:24:da:77:fc:94:f7:ed:cf:e1:08:db:33:bf:a0:
d7:a7:59:72:06:5a:e6:a0:31:6e:3d:e7:e1:a7:7e:
20:8a:fc:b4:47:62:ea:af:8e:56:ba:96:b4:63:3d:
d2:82:44:57:2e:76:63:63:78:73:8a:15:6f:cd:a1:
8f:71:39:51:a2:6b:3a:a8:ba:5d:b6:c8:84:6b:54:
44:26:a3:84:d9:ab:44:6c:bd:6a:c0:91:21:f2:7a:
71:b0:e1:29:9c:ca:4d:e5:b0:6a:f1:be:3d:08:6b:
fb:d3:e3:02:9f:24:10:89:89:a1:eb:8b:6d:25:1d:
fa:6a:33:30:d4:d0:0f:bb:e5:85:89:bd:d7:97:be:
4d:8a:03:1d:32:c9:83:15:47:67:fa:f4:88:11:54:
2a:78:e4:53:26:c7:ce:8f:81:cd:e3:41:70:cc:d7:
80:1b:36:f6:b7:55:6f:ef:3f:1d:5c:f7:97:c8:bf:
53:9f:c1:ee:d9:ff:ac:70:b2:ba:d1:67:c6:e0:15:
42:1a:0d:42:8f:60:45:86:11:e9:1f:c0:e6:d1:39:
9e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AD:76:AE:BF:CA:D5:94:9B:BA:18:BB:C2:58:1A:38:22:05:E5:90
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/La12rr_K1ZSbuhi7wlgaOCIF5ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.201.0/24
195.245.82.0/24
Signature Algorithm: sha256WithRSAEncryption
32:9f:18:7f:81:5a:1e:80:d4:1a:4d:1a:21:08:e2:14:35:d4:
6e:ad:fe:46:b3:9f:4b:99:a5:68:8e:ac:1f:95:9e:4b:a9:42:
15:f2:30:05:28:7a:6d:5b:5a:b5:2b:43:40:2f:21:bd:aa:26:
b8:db:19:3a:77:73:e5:90:82:49:72:c5:ea:fe:ad:2b:ab:49:
1d:6f:cc:54:0d:fe:33:4e:cf:64:ab:05:8f:f5:f8:a2:8e:3a:
16:cf:c4:21:45:94:7d:c9:ff:18:b7:ba:ec:9d:fb:46:8a:01:
5f:07:52:8a:c6:a7:1d:bd:c6:05:ad:fe:8a:bb:6a:25:65:40:
56:f3:de:30:55:c6:2a:fc:f2:ea:b0:a6:b7:93:12:ea:c1:77:
1f:08:db:7e:e6:29:98:bb:6e:59:48:d3:3b:6c:f7:c3:de:d2:
ac:ea:39:c6:3e:c3:4f:80:3f:a1:20:d9:2f:0b:f8:65:dd:26:
f7:c8:02:2f:ea:1b:b1:b1:21:cb:1f:ba:8b:31:c5:e9:df:6c:
32:7d:22:1e:ad:16:7d:ca:56:59:4e:fb:92:7a:a6:9e:ed:9f:
2e:ca:00:e3:c6:be:7d:08:f7:e6:5e:50:0e:51:17:f8:d6:17:
93:60:e9:60:ed:19:97:e0:e5:c4:b3:5b:95:06:50:49:9a:ee:
db:c4:fc:91
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZ5jY6sGX0voGK1uerK6fF/tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNGRiNzYyMzI0MWQ3ZTY2NzhmYzI1NzUxZmE0ZTBiNjY2
NTE4NmIwHhcNMjYwNTI2MDgyNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGFkNzZhZWJmY2FkNTk0OWJiYTE4YmJjMjU4MWEzODIyMDVlNTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKc1pMRV8J7Fl2LAaiQY4FgnZsvD
KkFx5nTczUGbmZlkLm/6sor/tnOknkZxJNp3/JT37c/hCNszv6DXp1lyBlrmoDFu
Pefhp34givy0R2Lqr45Wupa0Yz3SgkRXLnZjY3hzihVvzaGPcTlRoms6qLpdtsiE
a1REJqOE2atEbL1qwJEh8npxsOEpnMpN5bBq8b49CGv70+MCnyQQiYmh64ttJR36
ajMw1NAPu+WFib3Xl75NigMdMsmDFUdn+vSIEVQqeORTJsfOj4HN40FwzNeAGzb2
t1Vv7z8dXPeXyL9Tn8Hu2f+scLK60WfG4BVCGg1Cj2BFhhHpH8Dm0Tme4wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC2tdq6/ytWUm7oYu8JYGjgiBeWQMB8GA1UdIwQY
MBaAFMBNt2IyQdfmZ4/CV1H6TgtmZRhrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMt
MDQyM2YyNjNmMmNiLzEvTGExMnJyX0sxWlNidWhpN3dsZ2FPQ0lGNVpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMtMDQyM2YyNjNmMmNi
LzEvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwgbJAwQA
w/VSMA0GCSqGSIb3DQEBCwUAA4IBAQAynxh/gVoegNQaTRohCOIUNdRurf5Gs59L
maVojqwflZ5LqUIV8jAFKHptW1q1K0NALyG9qia42xk6d3PlkIJJcsXq/q0rq0kd
b8xUDf4zTs9kqwWP9fiijjoWz8QhRZR9yf8Yt7rsnftGigFfB1KKxqcdvcYFrf6K
u2olZUBW894wVcYq/PLqsKa3kxLqwXcfCNt+5imYu25ZSNM7bPfD3tKs6jnGPsNP
gD+hINkvC/hl3Sb3yAIv6huxsSHLH7qLMcXp32wyfSIerRZ9ylZZTvuSeqae7Z8u
ygDjxr59CPfmXlAOURf41heTYOlg7RmX4OXEs1uVBlBJmu7bxPyR
-----END CERTIFICATE-----
Generated at Sun Jun 14 02:44:00 2026 by rpki-client