Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/a1iiCcOaxmzS0-8TIKQtOTVhn-s.roa
File: a1iiCcOaxmzS0-8TIKQtOTVhn-s.roa (raw, json)
Hash identifier: VjhgE/ADiBXCV7jVQEBRzjdY9qu85RcYlku/EAwZIuw=
Subject key identifier: 6B:58:A2:09:C3:9A:C6:6C:D2:D3:EF:13:20:A4:2D:39:35:61:9F:EB
Certificate issuer: /CN=70e5b30272e43053208978dbe44bfee10a5d007e
Certificate serial: 019D9054AA6E25A01EFE7A1918014420FBC1
Authority key identifier: 70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/a1iiCcOaxmzS0-8TIKQtOTVhn-s.roa
Signing time: Wed 15 Apr 2026 08:49:20 +0000
ROA not before: Wed 15 Apr 2026 08:49:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62904
IP address blocks: 31.172.69.0/24 maxlen: 24
31.172.79.0/24 maxlen: 24
81.85.77.0/24 maxlen: 24
89.127.198.0/24 maxlen: 24
89.127.199.0/24 maxlen: 24
194.154.27.0/24 maxlen: 24
217.177.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:90:54:aa:6e:25:a0:1e:fe:7a:19:18:01:44:20:fb:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e5b30272e43053208978dbe44bfee10a5d007e
Validity
Not Before: Apr 15 08:49:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6b58a209c39ac66cd2d3ef1320a42d3935619feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f1:bd:d4:51:ea:73:72:a9:ac:92:71:0d:24:
98:1a:f8:26:d8:3b:eb:e4:60:64:3b:34:8c:ac:f6:
04:6e:60:53:55:0c:b6:8a:15:6e:e0:63:6a:9a:1d:
e8:97:44:00:cd:e8:cf:2a:02:a7:4f:48:10:0a:f7:
72:c3:dd:9e:4a:e7:02:3e:13:fc:7a:75:c5:b6:74:
42:03:c4:cf:88:e0:6d:01:47:01:48:fa:49:0c:37:
a1:0a:ff:cf:e4:1b:62:30:8e:ac:26:0c:e8:51:80:
4d:35:cd:af:7f:a3:67:a9:43:4d:b3:11:a5:bd:21:
3d:53:5b:96:9e:8a:7a:b2:97:7a:b7:d1:05:56:25:
6f:60:e0:f6:ac:13:19:d7:f9:e3:a1:23:ea:03:a4:
dd:c8:b3:bc:65:ae:e7:b8:ef:c6:7a:f8:d1:fa:f1:
56:b4:13:2c:ab:9f:44:29:18:4c:72:c6:e3:67:a4:
c7:2e:0d:f5:d7:13:36:44:ae:f5:61:c3:83:56:dc:
8a:fc:c4:9b:7e:39:1e:05:98:79:b3:8d:fe:b4:f4:
cd:47:a2:52:6a:95:60:14:37:4b:b0:da:cb:eb:6e:
fd:b7:fa:14:81:1d:99:df:40:06:e7:52:96:3f:bb:
25:4d:b4:5f:7c:d3:c0:62:fb:9b:89:f4:88:9f:ea:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:58:A2:09:C3:9A:C6:6C:D2:D3:EF:13:20:A4:2D:39:35:61:9F:EB
X509v3 Authority Key Identifier:
keyid:70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/a1iiCcOaxmzS0-8TIKQtOTVhn-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.69.0/24
31.172.79.0/24
81.85.77.0/24
89.127.198.0/23
194.154.27.0/24
217.177.75.0/24
Signature Algorithm: sha256WithRSAEncryption
10:63:89:9d:2f:51:1b:55:4f:30:ed:44:0c:fa:dc:92:27:ce:
8f:3b:14:d8:3d:de:03:5e:50:d4:06:57:24:44:98:8a:f9:f1:
9b:cd:02:65:8d:70:95:02:e2:61:ec:d9:8d:71:c9:ac:1f:77:
48:77:57:23:70:0e:96:30:12:c8:79:44:8c:3c:ee:4d:72:5c:
58:2a:18:cd:b6:9d:06:38:e0:bc:d8:0a:be:e4:67:7e:25:4c:
45:de:12:2f:d5:0f:71:92:d4:53:c4:ae:2c:9e:52:83:4d:2b:
dc:9c:88:eb:85:93:a2:6a:c7:9e:e8:6f:30:cc:23:e5:b3:87:
b9:d2:0a:0d:b9:a0:25:bb:88:6a:6e:24:a0:c2:8e:f4:45:e8:
98:3c:63:a6:f6:08:19:de:38:c0:9f:88:93:7a:27:46:86:52:
ac:be:37:86:9c:84:e3:f6:5f:d1:fd:31:0d:4f:19:e7:5a:f9:
9f:c1:b2:43:2b:c7:6a:50:1b:aa:cf:9c:02:4d:a6:e8:16:8e:
77:3e:df:24:2c:38:98:28:30:c5:ee:2e:d0:97:0d:a2:7c:3c:
ac:56:c8:11:19:0d:74:10:00:d1:8f:7c:3c:d2:21:8e:5e:a0:
c0:7a:e6:5a:06:02:eb:68:21:bc:19:70:f4:98:9c:38:c5:67:
f8:2b:75:c1
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZ2QVKpuJaAe/noZGAFEIPvBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZTViMzAyNzJlNDMwNTMyMDg5NzhkYmU0NGJmZWUxMGE1
ZDAwN2UwHhcNMjYwNDE1MDg0OTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjU4YTIwOWMzOWFjNjZjZDJkM2VmMTMyMGE0MmQzOTM1NjE5ZmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8fG91FHqc3KprJJxDSSYGvgm2Dvr
5GBkOzSMrPYEbmBTVQy2ihVu4GNqmh3ol0QAzejPKgKnT0gQCvdyw92eSucCPhP8
enXFtnRCA8TPiOBtAUcBSPpJDDehCv/P5BtiMI6sJgzoUYBNNc2vf6NnqUNNsxGl
vSE9U1uWnop6spd6t9EFViVvYOD2rBMZ1/njoSPqA6TdyLO8Za7nuO/GevjR+vFW
tBMsq59EKRhMcsbjZ6THLg311xM2RK71YcODVtyK/MSbfjkeBZh5s43+tPTNR6JS
apVgFDdLsNrL6279t/oUgR2Z30AG51KWP7slTbRffNPAYvubifSIn+qpjQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFGtYognDmsZs0tPvEyCkLTk1YZ/rMB8GA1UdIwQY
MBaAFHDlswJy5DBTIIl42+RL/uEKXQB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEt
MWZiYzY0MWI1MGIxLzEvYTFpaUNjT2F4bXpTMC04VElLUXRPVFZobi1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEtMWZiYzY0MWI1MGIx
LzEvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAH6xFAwQA
H6xPAwQAUVVNAwQBWX/GAwQAwpobAwQA2bFLMA0GCSqGSIb3DQEBCwUAA4IBAQAQ
Y4mdL1EbVU8w7UQM+tySJ86POxTYPd4DXlDUBlckRJiK+fGbzQJljXCVAuJh7NmN
ccmsH3dId1cjcA6WMBLIeUSMPO5NclxYKhjNtp0GOOC82Aq+5Gd+JUxF3hIv1Q9x
ktRTxK4snlKDTSvcnIjrhZOiasee6G8wzCPls4e50goNuaAlu4hqbiSgwo70ReiY
PGOm9ggZ3jjAn4iTeidGhlKsvjeGnITj9l/R/TENTxnnWvmfwbJDK8dqUBuqz5wC
TaboFo53Pt8kLDiYKDDF7i7Qlw2ifDysVsgRGQ10EADRj3w80iGOXqDAeuZaBgLr
aCG8GXD0mJw4xWf4K3XB
-----END CERTIFICATE-----
Generated at Fri Apr 17 18:23:26 2026 by rpki-client