Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Y1VlYZyqJ34zaklshM10KWZAnl8.roa
File: Y1VlYZyqJ34zaklshM10KWZAnl8.roa (raw, json)
Hash identifier: fSjpvayhPSHgtw2G17xklu2OkDsGGQO/pJrg+FABazo=
Subject key identifier: 63:55:65:61:9C:AA:27:7E:33:6A:49:6C:84:CD:74:29:66:40:9E:5F
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019C0E17DC987886E4CD91ABD0E974A4DC04
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Y1VlYZyqJ34zaklshM10KWZAnl8.roa
Signing time: Fri 30 Jan 2026 08:49:30 +0000
ROA not before: Fri 30 Jan 2026 08:49:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 27884
IP address blocks: 206.203.38.0/23 maxlen: 23
206.203.38.0/24 maxlen: 24
206.203.39.0/24 maxlen: 24
206.203.40.0/21 maxlen: 21
206.203.40.0/24 maxlen: 24
206.203.41.0/24 maxlen: 24
206.203.42.0/24 maxlen: 24
206.203.43.0/24 maxlen: 24
206.203.44.0/24 maxlen: 24
206.203.45.0/24 maxlen: 24
206.203.46.0/24 maxlen: 24
206.203.47.0/24 maxlen: 24
206.203.48.0/21 maxlen: 21
206.203.48.0/24 maxlen: 24
206.203.49.0/24 maxlen: 24
206.203.50.0/24 maxlen: 24
206.203.51.0/24 maxlen: 24
206.203.52.0/24 maxlen: 24
206.203.53.0/24 maxlen: 24
206.203.54.0/24 maxlen: 24
206.203.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Feb 2026 15:25:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:0e:17:dc:98:78:86:e4:cd:91:ab:d0:e9:74:a4:dc:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 30 08:49:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=635565619caa277e336a496c84cd742966409e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:c9:32:e7:93:e8:a9:cc:1a:0c:a8:d4:dd:
8f:c4:53:07:79:84:05:f9:22:79:49:f9:aa:ea:2a:
d3:09:1a:68:ea:9d:23:21:77:04:b2:74:ef:d3:99:
d0:5b:30:80:da:1a:a1:4d:0b:be:56:39:ea:bb:10:
21:b5:d8:77:60:18:1c:f0:e4:f9:8d:44:03:94:92:
d8:56:e4:f4:4b:55:71:1e:98:75:41:44:b2:8c:29:
24:f3:f4:ec:8f:ed:ae:58:24:45:58:e2:73:d4:10:
63:28:02:02:9f:58:9b:56:63:3d:2e:61:75:ff:9d:
31:e5:bc:61:24:ff:63:2c:cb:85:94:b1:a1:d5:79:
98:1a:44:e7:9e:1d:3f:16:0c:4e:78:e3:02:6b:2a:
eb:67:bb:71:ad:a6:fd:d1:b7:42:e0:13:c6:97:f2:
27:cb:58:e5:69:8f:c3:4e:c4:34:3a:43:b7:66:82:
bf:73:51:d2:ab:20:6c:8d:0b:3d:97:19:4e:8a:2f:
0d:11:a9:55:11:aa:ff:e2:be:ff:4c:87:50:09:de:
79:40:e7:66:75:13:bc:0f:8a:ab:87:06:c8:26:65:
df:69:4e:48:75:74:7d:cf:d5:f3:0b:0b:58:c0:a5:
51:70:27:a5:5e:eb:7a:45:45:f0:7d:65:77:61:2a:
fc:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:55:65:61:9C:AA:27:7E:33:6A:49:6C:84:CD:74:29:66:40:9E:5F
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Y1VlYZyqJ34zaklshM10KWZAnl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.203.38.0-206.203.55.255
Signature Algorithm: sha256WithRSAEncryption
c8:93:e6:ee:f2:86:b0:37:53:9e:ab:55:33:23:49:9f:35:89:
26:58:24:ec:f6:ba:f8:5e:59:72:e5:77:1e:71:a2:f6:7d:01:
b5:dc:21:1d:48:80:ac:a1:3a:b8:42:7c:eb:90:d0:2c:b1:7d:
af:90:19:e1:db:b8:32:e4:eb:97:b9:30:fb:ca:00:5f:ff:5e:
1e:6a:4d:48:d5:90:05:b8:98:dd:a0:92:2c:4b:25:c7:fd:46:
bd:31:b2:64:28:3a:a7:04:c3:7f:4c:a3:bb:65:f4:77:58:d5:
8f:55:62:54:51:68:4d:1a:2d:8a:cc:7c:44:dc:b4:56:4b:88:
b3:12:55:35:be:d7:8d:6a:a4:8d:2f:0b:43:3a:9b:63:38:f1:
02:ca:79:c6:e3:8d:92:6f:d6:6e:70:99:1d:46:96:8b:9f:65:
73:b0:49:32:65:6d:b8:1f:30:5f:98:0b:4d:50:f4:d1:c9:b0:
0b:6c:bc:de:0d:7e:6d:c3:32:9f:ec:58:9d:16:8f:c8:2b:51:
7a:9f:6a:5a:bd:74:ff:d7:26:5d:d3:4d:65:5d:cd:bb:b8:43:
08:a7:dc:59:62:31:f8:d0:17:dc:e4:31:48:5a:d5:13:8a:a4:
02:54:bb:d0:ee:ac:c7:21:9f:94:0f:93:f4:42:89:6a:b9:3f:
c1:85:78:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 00:10:25 2026 by rpki-client