Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/eCCtsWUQ-mDprEDhwQ8ty_d5Qfk.roa
File: eCCtsWUQ-mDprEDhwQ8ty_d5Qfk.roa (raw, json)
Hash identifier: Qiq+7bQecY3DeDqaD3Cv9NQ1fhS4WGOXL35Vf4eeyO0=
Subject key identifier: 78:20:AD:B1:65:10:FA:60:E9:AC:40:E1:C1:0F:2D:CB:F7:79:41:F9
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 019EB1C5019905510B37B8A2AC6C2B0D288C
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/eCCtsWUQ-mDprEDhwQ8ty_d5Qfk.roa
Signing time: Wed 10 Jun 2026 13:42:18 +0000
ROA not before: Wed 10 Jun 2026 13:42:18 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 194.143.206.0/24 maxlen: 24
195.114.193.0/24 maxlen: 24
195.114.206.0/24 maxlen: 24
195.114.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b1:c5:01:99:05:51:0b:37:b8:a2:ac:6c:2b:0d:28:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Jun 10 13:42:18 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7820adb16510fa60e9ac40e1c10f2dcbf77941f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:b2:53:9a:28:22:90:29:01:6a:7f:1e:ca:
cb:ef:59:e1:ee:a8:02:5c:1f:db:88:1e:6c:08:26:
69:29:f5:f0:19:01:f0:f2:bb:76:a0:8e:07:c7:d1:
da:d4:1a:29:70:d3:09:65:d6:5d:a0:e8:a2:c8:ad:
ba:15:b6:c7:f1:fd:d6:6e:28:dc:fd:84:ab:a4:c0:
7a:e0:6a:d8:33:1d:97:c7:d4:11:b2:d7:60:a8:24:
63:e2:f0:63:ab:a5:62:93:65:e3:4a:2c:6a:68:ba:
e7:ea:d0:ef:30:1d:a1:37:3e:72:28:e4:a2:af:51:
29:57:0d:f5:72:5a:f1:a0:1e:13:ff:72:26:a6:b3:
fb:8e:95:e9:07:4d:91:c7:6f:02:15:92:6a:a3:ab:
3b:3f:df:b7:62:7a:0a:ac:fd:92:32:a9:b3:d3:59:
dc:31:90:92:b6:02:5c:1f:86:f3:a2:1a:eb:b1:99:
68:f8:e5:c5:78:ed:52:6c:3d:cb:9d:03:77:4a:cf:
b6:ad:e1:34:f9:19:3c:50:ce:c8:1a:f5:17:0e:43:
7d:4f:9b:b1:8e:5e:30:20:33:6d:16:17:6d:12:f0:
46:83:f1:f4:89:dd:ad:e5:13:dc:12:f2:70:2f:2a:
72:b9:19:14:83:ba:9f:7a:26:dd:ac:fa:b1:cc:03:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:20:AD:B1:65:10:FA:60:E9:AC:40:E1:C1:0F:2D:CB:F7:79:41:F9
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/eCCtsWUQ-mDprEDhwQ8ty_d5Qfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.206.0/24
195.114.193.0/24
195.114.206.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:42:1e:0f:d9:1e:f7:c0:00:c3:82:b7:1e:ba:1c:67:97:a6:
7a:97:6d:0e:73:4d:fc:3c:25:64:71:7e:5a:0a:7a:f9:05:46:
77:13:a3:b6:97:4f:c7:a3:ae:f3:73:2d:54:41:85:53:2b:40:
34:71:20:c5:ad:3b:24:14:3d:fa:cd:e6:97:9c:ad:b3:37:bb:
ea:29:75:c6:06:6e:7a:3b:3a:32:a4:55:9d:e0:44:f3:03:e5:
c3:78:1c:fe:18:09:d4:26:46:1f:52:11:25:60:a4:10:a5:6b:
b3:14:98:72:d8:50:e5:c2:6a:be:fe:9b:6f:27:35:ae:4d:4f:
38:f3:9f:76:c1:a7:29:92:52:81:6d:9d:8d:08:87:4a:2a:80:
ae:01:df:6b:24:d0:7d:e3:f4:9c:fc:59:5f:8d:c0:bf:c8:f6:
b4:0b:bf:86:8b:e7:33:bd:aa:63:eb:2e:f4:31:94:99:f8:c6:
f9:24:c2:c2:3a:ff:38:19:c3:ee:cf:cd:bb:08:ae:df:29:38:
18:32:a1:a6:6c:b2:39:54:e3:ef:28:14:e2:e2:b2:ee:25:3b:
d5:af:8e:d5:77:fb:6e:01:3b:84:00:5c:96:d0:a8:e1:05:a2:
20:4f:19:8d:e2:08:ea:f7:b6:15:30:57:82:30:97:10:b5:95:
72:55:1f:2e
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZ6xxQGZBVELN7iirGwrDSiMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjYwNjEwMTM0MjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODIwYWRiMTY1MTBmYTYwZTlhYzQwZTFjMTBmMmRjYmY3Nzk0MWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnICyU5ooIpApAWp/HsrL71nh7qgC
XB/biB5sCCZpKfXwGQHw8rt2oI4Hx9Ha1BopcNMJZdZdoOiiyK26FbbH8f3Wbijc
/YSrpMB64GrYMx2Xx9QRstdgqCRj4vBjq6Vik2XjSixqaLrn6tDvMB2hNz5yKOSi
r1EpVw31clrxoB4T/3ImprP7jpXpB02Rx28CFZJqo6s7P9+3YnoKrP2SMqmz01nc
MZCStgJcH4bzohrrsZlo+OXFeO1SbD3LnQN3Ss+2reE0+Rk8UM7IGvUXDkN9T5ux
jl4wIDNtFhdtEvBGg/H0id2t5RPcEvJwLypyuRkUg7qfeibdrPqxzAMxNwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHggrbFlEPpg6axA4cEPLcv3eUH5MB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvZUNDdHNXVVEtbURwckVEaHdROHR5X2Q1UWZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwo/OAwQA
w3LBAwQBw3LOMA0GCSqGSIb3DQEBCwUAA4IBAQCkQh4P2R73wADDgrceuhxnl6Z6
l20Oc038PCVkcX5aCnr5BUZ3E6O2l0/Ho67zcy1UQYVTK0A0cSDFrTskFD36zeaX
nK2zN7vqKXXGBm56OzoypFWd4ETzA+XDeBz+GAnUJkYfUhElYKQQpWuzFJhy2FDl
wmq+/ptvJzWuTU848592wacpklKBbZ2NCIdKKoCuAd9rJNB94/Sc/FlfjcC/yPa0
C7+Gi+czvapj6y70MZSZ+Mb5JMLCOv84GcPuz827CK7fKTgYMqGmbLI5VOPvKBTi
4rLuJTvVr47Vd/tuATuEAFyW0KjhBaIgTxmN4gjq97YVMFeCMJcQtZVyVR8u
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:55:10 2026 by rpki-client