Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/MGFMl29uIul04Dkcmid5PDEF1ZY.roa
File: MGFMl29uIul04Dkcmid5PDEF1ZY.roa (raw, json)
Hash identifier: ++vse/hC6lI4DMbABO7vSgWLBZfrwdYx2oCRckLJX9M=
Subject key identifier: 30:61:4C:97:6F:6E:22:E9:74:E0:39:1C:9A:27:79:3C:31:05:D5:96
Certificate issuer: /CN=07afdcd5e97ac1c102479c954d5f922b126cbc14
Certificate serial: 019C894465CE9FD279A9F966C865461E1BDB
Authority key identifier: 07:AF:DC:D5:E9:7A:C1:C1:02:47:9C:95:4D:5F:92:2B:12:6C:BC:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6_c1el6wcECR5yVTV-SKxJsvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/MGFMl29uIul04Dkcmid5PDEF1ZY.roa
Signing time: Mon 23 Feb 2026 06:51:26 +0000
ROA not before: Mon 23 Feb 2026 06:51:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42337
IP address blocks: 77.237.64.0/19 maxlen: 19
77.237.65.0/24 maxlen: 24
77.237.68.0/24 maxlen: 24
77.237.69.0/24 maxlen: 24
77.237.70.0/24 maxlen: 24
77.237.72.0/24 maxlen: 24
77.237.74.0/24 maxlen: 24
77.237.75.0/24 maxlen: 24
77.237.76.0/24 maxlen: 24
77.237.77.0/24 maxlen: 24
77.237.78.0/23 maxlen: 23
77.237.78.0/24 maxlen: 24
77.237.80.0/20 maxlen: 20
77.237.80.0/24 maxlen: 24
77.237.81.0/24 maxlen: 24
77.237.82.0/24 maxlen: 24
77.237.83.0/24 maxlen: 24
77.237.84.0/23 maxlen: 24
77.237.84.0/24 maxlen: 24
77.237.85.0/24 maxlen: 24
77.237.87.0/24 maxlen: 24
77.237.88.0/24 maxlen: 24
77.237.89.0/24 maxlen: 24
77.237.90.0/24 maxlen: 24
77.237.91.0/24 maxlen: 24
77.237.94.0/24 maxlen: 24
77.237.95.0/24 maxlen: 24
92.242.192.0/19 maxlen: 19
92.242.192.0/23 maxlen: 23
92.242.192.0/24 maxlen: 24
92.242.193.0/24 maxlen: 24
92.242.194.0/24 maxlen: 24
92.242.195.0/24 maxlen: 24
92.242.196.0/24 maxlen: 24
92.242.198.0/24 maxlen: 24
92.242.200.0/21 maxlen: 21
92.242.201.0/24 maxlen: 24
92.242.202.0/23 maxlen: 23
92.242.202.0/24 maxlen: 24
92.242.203.0/24 maxlen: 24
92.242.204.0/24 maxlen: 24
92.242.205.0/24 maxlen: 24
92.242.206.0/24 maxlen: 24
92.242.207.0/24 maxlen: 24
92.242.208.0/20 maxlen: 20
92.242.208.0/24 maxlen: 24
92.242.210.0/23 maxlen: 23
92.242.210.0/24 maxlen: 24
92.242.211.0/24 maxlen: 24
92.242.212.0/22 maxlen: 22
92.242.214.0/24 maxlen: 24
92.242.215.0/24 maxlen: 24
92.242.217.0/24 maxlen: 24
92.242.220.0/24 maxlen: 24
92.242.223.0/24 maxlen: 24
185.14.160.0/22 maxlen: 22
185.14.160.0/24 maxlen: 24
185.14.163.0/24 maxlen: 24
185.225.240.0/24 maxlen: 24
185.225.241.0/24 maxlen: 24
185.225.242.0/23 maxlen: 23
185.225.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/B6_c1el6wcECR5yVTV-SKxJsvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/B6_c1el6wcECR5yVTV-SKxJsvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/B6_c1el6wcECR5yVTV-SKxJsvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:89:44:65:ce:9f:d2:79:a9:f9:66:c8:65:46:1e:1b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07afdcd5e97ac1c102479c954d5f922b126cbc14
Validity
Not Before: Feb 23 06:51:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=30614c976f6e22e974e0391c9a27793c3105d596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a7:43:db:6b:95:3f:87:63:b9:24:78:7b:bc:
a1:5d:c4:35:64:6b:21:a8:5f:e6:d2:a5:df:0f:b8:
a3:7e:2c:5d:af:44:69:42:ba:af:7d:e9:33:d2:ab:
bd:42:7d:73:39:f4:92:a5:90:5d:d2:56:48:c8:03:
f8:0a:5a:6f:cf:58:bb:bd:89:26:d5:a2:78:f0:12:
a0:60:31:2f:5a:52:22:76:a4:60:43:9f:41:83:1d:
4d:c0:12:98:8b:83:6b:23:9d:b6:4b:db:48:ff:6d:
4c:16:62:0c:2d:a3:58:b2:3b:e7:c6:75:f1:ae:29:
8c:81:89:24:56:1f:a3:da:98:05:ab:e7:13:2a:8e:
61:6a:d7:b9:51:c2:1e:bb:ae:b1:0b:db:0e:c3:b8:
26:af:89:dd:17:30:b1:8f:c3:e7:d5:71:a9:16:3f:
bb:0d:10:82:19:8e:84:f1:24:71:e2:49:be:21:77:
39:73:0a:41:f2:80:d7:63:17:d6:f6:0d:99:7d:d5:
e0:d9:6e:67:81:d7:6f:09:c3:3a:1b:cf:17:0e:8c:
df:14:7a:aa:f5:0b:c5:e0:23:ff:53:e1:1f:ae:a9:
cb:68:45:b5:2a:12:e6:20:d0:7e:fd:10:fe:4f:c6:
eb:be:26:2e:0d:50:0c:67:85:27:91:2e:0f:3c:2a:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:61:4C:97:6F:6E:22:E9:74:E0:39:1C:9A:27:79:3C:31:05:D5:96
X509v3 Authority Key Identifier:
keyid:07:AF:DC:D5:E9:7A:C1:C1:02:47:9C:95:4D:5F:92:2B:12:6C:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6_c1el6wcECR5yVTV-SKxJsvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/MGFMl29uIul04Dkcmid5PDEF1ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0e2744-f646-4429-a25a-ff68517770e4/1/B6_c1el6wcECR5yVTV-SKxJsvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.237.64.0/19
92.242.192.0/19
185.14.160.0/22
185.225.240.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:11:22:05:a9:82:6f:d0:00:2a:3c:38:8b:e7:4e:cf:07:5f:
94:28:40:cd:46:b5:81:1d:83:46:dc:84:81:8b:61:d1:bf:a3:
f9:1c:c3:12:2c:86:2b:cc:7a:33:ec:07:18:87:00:9c:c6:54:
ee:b1:44:a0:4d:c1:60:60:1a:1f:12:53:ae:e3:67:f4:48:a2:
61:cf:8c:f1:38:7a:58:c4:a0:05:a3:3e:70:95:ec:7b:d3:b1:
2e:f3:70:c1:2e:d2:5c:1a:7f:5f:8c:6e:ad:e4:01:d1:5a:7c:
09:a5:c1:e8:b9:60:70:d0:8e:e1:7d:fc:42:42:27:33:75:6b:
9f:26:0b:54:6d:1f:96:a6:76:02:98:03:44:29:44:fe:8e:bc:
ab:04:fa:da:f1:e0:c6:9e:7e:a9:aa:28:e9:ce:9f:e3:55:ed:
f2:37:4a:1c:2b:08:33:93:f6:cf:91:d3:19:e5:28:d7:0a:5c:
8b:e1:1e:df:b3:98:60:e1:19:48:12:e3:9b:43:df:bc:51:6b:
81:4b:cd:66:96:34:c3:98:d4:60:92:bf:c9:ef:63:2a:8c:d4:
12:46:04:42:92:72:01:d2:be:6a:02:d1:1c:e0:6d:d2:24:2e:
38:62:d5:66:62:ed:55:87:2f:1d:6d:e8:6d:a6:d2:ea:a2:da:
b0:97:0d:44
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZyJRGXOn9J5qflmyGVGHhvbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3YWZkY2Q1ZTk3YWMxYzEwMjQ3OWM5NTRkNWY5MjJiMTI2
Y2JjMTQwHhcNMjYwMjIzMDY1MTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDYxNGM5NzZmNmUyMmU5NzRlMDM5MWM5YTI3NzkzYzMxMDVkNTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqdD22uVP4djuSR4e7yhXcQ1ZGsh
qF/m0qXfD7ijfixdr0RpQrqvfekz0qu9Qn1zOfSSpZBd0lZIyAP4Clpvz1i7vYkm
1aJ48BKgYDEvWlIidqRgQ59Bgx1NwBKYi4NrI522S9tI/21MFmIMLaNYsjvnxnXx
rimMgYkkVh+j2pgFq+cTKo5hate5UcIeu66xC9sOw7gmr4ndFzCxj8Pn1XGpFj+7
DRCCGY6E8SRx4km+IXc5cwpB8oDXYxfW9g2ZfdXg2W5ngddvCcM6G88XDozfFHqq
9QvF4CP/U+EfrqnLaEW1KhLmINB+/RD+T8brviYuDVAMZ4UnkS4PPCpqzQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFDBhTJdvbiLpdOA5HJoneTwxBdWWMB8GA1UdIwQY
MBaAFAev3NXpesHBAkeclU1fkisSbLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjZfYzFlbDZ3Y0VDUjV5VlRWLVNLeEpzdkJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wZTI3NDQtZjY0Ni00NDI5LWEyNWEt
ZmY2ODUxNzc3MGU0LzEvTUdGTWwyOXVJdWwwNERrY21pZDVQREVGMVpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8wZTI3NDQtZjY0Ni00NDI5LWEyNWEtZmY2ODUxNzc3MGU0
LzEvQjZfYzFlbDZ3Y0VDUjV5VlRWLVNLeEpzdkJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQFTe1AAwQF
XPLAAwQCuQ6gAwQCueHwMA0GCSqGSIb3DQEBCwUAA4IBAQC5ESIFqYJv0AAqPDiL
507PB1+UKEDNRrWBHYNG3ISBi2HRv6P5HMMSLIYrzHoz7AcYhwCcxlTusUSgTcFg
YBofElOu42f0SKJhz4zxOHpYxKAFoz5wlex707Eu83DBLtJcGn9fjG6t5AHRWnwJ
pcHouWBw0I7hffxCQiczdWufJgtUbR+WpnYCmANEKUT+jryrBPra8eDGnn6pqijp
zp/jVe3yN0ocKwgzk/bPkdMZ5SjXClyL4R7fs5hg4RlIEuObQ9+8UWuBS81mljTD
mNRgkr/J72MqjNQSRgRCknIB0r5qAtEc4G3SJC44YtVmYu1Vhy8dbehtptLqotqw
lw1E
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:49:00 2026 by rpki-client