Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WBAF871Vj9snoWKizQnlAG4SpeQ.roa
File: WBAF871Vj9snoWKizQnlAG4SpeQ.roa (raw, json)
Hash identifier: OxbFakUR1SHhxPkxtC3d04QCDbEN8GOW2XNXorMETvQ=
Subject key identifier: 58:10:05:F3:BD:55:8F:DB:27:A1:62:A2:CD:09:E5:00:6E:12:A5:E4
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019E7009BE48789453B034FE0A7A7C2462BF
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WBAF871Vj9snoWKizQnlAG4SpeQ.roa
Signing time: Thu 28 May 2026 19:22:27 +0000
ROA not before: Thu 28 May 2026 19:22:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.226.0/24 maxlen: 24
14.102.232.0/24 maxlen: 24
85.208.11.0/24 maxlen: 24
94.229.214.0/24 maxlen: 24
94.229.219.0/24 maxlen: 24
124.158.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:70:09:be:48:78:94:53:b0:34:fe:0a:7a:7c:24:62:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: May 28 19:22:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=581005f3bd558fdb27a162a2cd09e5006e12a5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:62:ab:67:67:3d:90:58:1d:1c:54:78:03:e7:
ce:9d:f0:a1:15:4a:54:af:8e:24:89:77:c0:27:d1:
ff:5a:ac:8a:77:32:59:7c:47:0d:ef:c8:24:09:61:
74:ec:5c:84:21:03:26:75:a5:3d:fd:d1:be:14:d2:
3e:fc:3a:cc:8c:57:84:66:66:45:e8:20:e3:0f:f2:
d9:a7:f1:5f:81:cb:f5:29:0e:4f:4e:61:db:80:27:
f1:c2:ae:0d:fb:7a:39:82:66:a3:39:41:c5:e9:5c:
e1:e9:64:fe:88:56:ff:13:7a:82:dc:90:0f:58:45:
6f:ee:e2:45:ea:ce:cb:35:b1:04:8a:76:1b:72:b2:
1b:e0:a0:24:3b:fa:ce:f1:35:81:e4:3a:bf:8b:59:
d0:56:dc:54:61:b2:fb:95:80:a5:4c:81:dc:25:bc:
95:83:ab:52:ab:ef:12:8a:60:84:0b:a6:ac:ba:30:
a8:47:21:04:22:c6:e6:e0:92:ed:bb:de:6d:56:b0:
a0:a6:c0:62:c8:19:97:94:d6:7a:f5:2b:09:0f:5f:
f6:dd:49:5f:4d:20:19:cb:87:c5:30:3a:92:de:f8:
e8:01:a3:f7:48:de:56:17:b0:58:f7:db:48:fd:83:
38:fa:5a:2e:0f:7a:78:20:b4:10:0f:55:ba:ff:4c:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:10:05:F3:BD:55:8F:DB:27:A1:62:A2:CD:09:E5:00:6E:12:A5:E4
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WBAF871Vj9snoWKizQnlAG4SpeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.226.0/24
14.102.232.0/24
85.208.11.0/24
94.229.214.0/24
94.229.219.0/24
124.158.101.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:80:59:2c:09:a6:99:10:15:66:c8:d3:27:9d:41:66:bb:9a:
b9:1e:f5:04:40:c7:29:65:cb:a8:d0:60:0b:0f:7d:99:63:11:
59:92:f6:d7:a7:25:65:7b:15:8a:e4:23:b9:b7:8e:56:f8:3a:
13:b9:9f:22:e2:0f:53:fc:c5:36:30:5d:15:dd:ba:ac:ce:07:
34:fe:dd:f7:b7:31:a2:98:e7:9b:59:2c:af:7e:9d:08:ba:e2:
7c:d6:14:dd:91:49:8b:60:39:02:e1:00:ad:d4:19:be:93:df:
43:1c:37:b9:81:63:65:3a:00:88:42:dc:a8:a6:a5:5b:f4:19:
3a:e1:ed:59:2e:97:0e:3b:7d:aa:72:41:88:72:1a:ac:b9:91:
e2:45:52:71:4e:e4:3c:c9:20:6e:9d:f9:32:aa:d8:b3:8c:c2:
98:55:8b:de:2a:08:99:f1:26:9d:a7:b9:a7:2c:50:13:f0:86:
66:05:7a:eb:85:7f:27:76:68:5b:2b:ae:7d:d0:c4:08:bb:73:
7e:af:08:26:47:88:2d:1f:ed:3d:2c:11:2f:73:5c:8c:53:fc:
91:ce:0a:1c:df:89:ac:17:bb:5b:09:12:9c:d7:71:66:b0:4d:
ab:83:86:ea:c3:d3:d8:e8:58:9c:63:cc:d8:d1:01:91:b9:69:
87:c0:57:23
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZ5wCb5IeJRTsDT+Cnp8JGK/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjYwNTI4MTkyMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODEwMDVmM2JkNTU4ZmRiMjdhMTYyYTJjZDA5ZTUwMDZlMTJhNWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGKrZ2c9kFgdHFR4A+fOnfChFUpU
r44kiXfAJ9H/WqyKdzJZfEcN78gkCWF07FyEIQMmdaU9/dG+FNI+/DrMjFeEZmZF
6CDjD/LZp/Ffgcv1KQ5PTmHbgCfxwq4N+3o5gmajOUHF6Vzh6WT+iFb/E3qC3JAP
WEVv7uJF6s7LNbEEinYbcrIb4KAkO/rO8TWB5Dq/i1nQVtxUYbL7lYClTIHcJbyV
g6tSq+8SimCEC6asujCoRyEEIsbm4JLtu95tVrCgpsBiyBmXlNZ69SsJD1/23Ulf
TSAZy4fFMDqS3vjoAaP3SN5WF7BY99tI/YM4+louD3p4ILQQD1W6/0ybSwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFFgQBfO9VY/bJ6Fios0J5QBuEqXkMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvV0JBRjg3MVZqOXNub1dLaXpRbmxBRzRTcGVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQADmbiAwQA
DmboAwQAVdALAwQAXuXWAwQAXuXbAwQAfJ5lMA0GCSqGSIb3DQEBCwUAA4IBAQAL
gFksCaaZEBVmyNMnnUFmu5q5HvUEQMcpZcuo0GALD32ZYxFZkvbXpyVlexWK5CO5
t45W+DoTuZ8i4g9T/MU2MF0V3bqszgc0/t33tzGimOebWSyvfp0IuuJ81hTdkUmL
YDkC4QCt1Bm+k99DHDe5gWNlOgCIQtyopqVb9Bk64e1ZLpcOO32qckGIchqsuZHi
RVJxTuQ8ySBunfkyqtizjMKYVYveKgiZ8Sadp7mnLFAT8IZmBXrrhX8ndmhbK659
0MQIu3N+rwgmR4gtH+09LBEvc1yMU/yRzgoc34msF7tbCRKc13FmsE2rg4bqw9PY
6FicY8zY0QGRuWmHwFcj
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:04:18 2026 by rpki-client