Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/Uvgndr_x4DMuJrxnsdGphe8UQmQ.roa
File: Uvgndr_x4DMuJrxnsdGphe8UQmQ.roa (raw, json)
Hash identifier: YUwZkrRbhR/9hhfkZCK8RdAcHzenjcV7+/h5oGx46Wg=
Subject key identifier: 52:F8:27:76:BF:F1:E0:33:2E:26:BC:67:B1:D1:A9:85:EF:14:42:64
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 019C713AECBFF7EF0D824FAF556BD7064B77
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/Uvgndr_x4DMuJrxnsdGphe8UQmQ.roa
Signing time: Wed 18 Feb 2026 14:50:13 +0000
ROA not before: Wed 18 Feb 2026 14:50:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209372
IP address blocks: 91.108.192.0/24 maxlen: 24
91.108.193.0/24 maxlen: 24
91.108.194.0/24 maxlen: 24
91.108.195.0/24 maxlen: 24
91.108.196.0/22 maxlen: 22
91.108.200.0/22 maxlen: 22
91.108.200.0/24 maxlen: 24
91.108.204.0/22 maxlen: 22
91.108.204.0/24 maxlen: 24
91.108.208.0/22 maxlen: 22
91.108.208.0/24 maxlen: 24
91.108.212.0/22 maxlen: 22
91.108.216.0/22 maxlen: 22
91.108.216.0/24 maxlen: 24
91.108.220.0/22 maxlen: 22
91.108.220.0/24 maxlen: 24
91.108.224.0/24 maxlen: 24
91.108.226.0/24 maxlen: 24
91.108.228.0/22 maxlen: 22
91.108.232.0/22 maxlen: 22
91.108.236.0/24 maxlen: 24
91.108.238.0/24 maxlen: 24
91.108.247.0/24 maxlen: 24
91.108.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:71:3a:ec:bf:f7:ef:0d:82:4f:af:55:6b:d7:06:4b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Feb 18 14:50:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=52f82776bff1e0332e26bc67b1d1a985ef144264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:51:25:5f:e7:3b:db:31:ef:80:b1:92:e4:55:
6e:41:6b:5e:12:db:d1:6d:1a:fe:f1:ce:85:48:2f:
94:8d:f0:f1:a6:9c:5e:8c:82:ce:6e:f1:83:4c:2f:
81:2f:06:2f:92:67:71:4c:7d:33:61:31:6e:47:57:
4f:8a:50:a7:7f:38:77:a0:bf:0d:10:06:a8:ab:3e:
36:be:a9:5d:65:8b:e0:f4:f9:1b:c1:dc:18:ea:47:
35:57:27:89:c3:9d:dc:69:55:e4:b5:61:b5:19:9c:
82:0e:07:98:09:60:c2:8c:48:a9:55:bf:2f:fb:f1:
56:cc:30:9f:7c:74:07:1c:2e:93:e3:52:e7:9d:3f:
12:2c:78:4a:86:6d:35:2e:29:8e:ee:59:b3:4d:de:
59:ac:3b:03:01:53:04:fe:1a:c4:a7:32:0e:34:72:
21:c2:7f:b6:95:2d:0b:d7:2b:94:3d:43:50:1f:58:
7f:46:5e:a9:b0:e3:36:a3:3c:cc:b7:fe:c7:26:08:
62:18:bd:df:58:da:57:8c:95:0b:d2:ef:29:3c:1e:
92:a3:da:1b:c3:b2:8b:ca:41:37:70:46:07:0f:59:
ff:2a:b1:60:4f:9d:b2:8c:fd:69:d7:cf:9b:17:f8:
9d:1d:03:f1:0c:be:ae:8f:0d:a9:ab:1e:2c:11:5b:
28:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F8:27:76:BF:F1:E0:33:2E:26:BC:67:B1:D1:A9:85:EF:14:42:64
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/Uvgndr_x4DMuJrxnsdGphe8UQmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.192.0-91.108.224.255
91.108.226.0/24
91.108.228.0-91.108.236.255
91.108.238.0/24
91.108.247.0/24
91.108.255.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:91:d4:e9:ab:51:a1:1a:ad:28:3e:d7:3e:06:d8:a0:ff:03:
b5:bc:e4:2a:ca:a0:61:05:7d:57:42:12:74:03:d1:90:66:6c:
34:d1:db:57:c4:3b:4b:18:f6:41:33:c3:b2:3a:92:79:9d:e5:
a8:67:fb:db:a0:ed:31:fe:07:f8:c8:f8:15:4a:24:df:2c:7a:
b4:51:ca:3d:40:27:5e:17:fb:e8:e6:03:19:f3:5b:dc:5a:92:
fe:b1:f7:d0:7a:59:9c:f0:3b:b9:5e:d8:b5:d1:0b:02:ee:d8:
9e:5a:bf:6a:55:20:33:b1:df:d2:4f:96:92:12:07:e4:43:d9:
a6:b2:fe:55:8c:88:82:f0:a4:2b:76:00:f7:08:02:fb:34:75:
4d:6c:09:2e:77:13:d8:a2:71:44:93:5d:b7:8e:9f:91:d8:6d:
e9:3d:2a:4c:04:b5:de:44:48:b5:8d:63:81:e3:cc:10:14:f5:
93:59:a1:b8:71:44:ab:48:28:15:01:de:36:26:60:16:23:91:
85:87:c2:61:e6:af:e5:58:f0:c0:37:04:7e:de:47:53:26:7c:
22:31:af:a9:74:ef:d3:85:c4:58:87:80:e0:49:cb:fd:88:38:
f3:b3:5b:5e:22:49:2e:05:5c:47:2e:33:23:64:14:03:83:b6:
1b:91:28:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:55:11 2026 by rpki-client