Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/QdCOM-PFME4CZs5BMK5yVH9UoSY.roa
File: QdCOM-PFME4CZs5BMK5yVH9UoSY.roa (raw, json)
Hash identifier: A69fjEup/Ox7E2vqbT1x50DzFGYWcGYjgzG96HndQOM=
Subject key identifier: 41:D0:8E:33:E3:C5:30:4E:02:66:CE:41:30:AE:72:54:7F:54:A1:26
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019C054AC35959D1CD8EEF1A6448D277C4D7
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/QdCOM-PFME4CZs5BMK5yVH9UoSY.roa
Signing time: Wed 28 Jan 2026 15:48:31 +0000
ROA not before: Wed 28 Jan 2026 15:48:31 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 54252
IP address blocks: 77.93.142.0/24 maxlen: 24
80.240.86.0/24 maxlen: 24
80.240.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Feb 2026 09:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:05:4a:c3:59:59:d1:cd:8e:ef:1a:64:48:d2:77:c4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jan 28 15:48:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=41d08e33e3c5304e0266ce4130ae72547f54a126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9b:35:ae:b0:64:e6:c1:f7:b5:6f:24:45:d7:
26:ce:d5:17:a1:5e:8e:a1:4d:66:ec:c4:15:7f:1b:
68:45:7a:4b:72:03:32:8a:42:f3:00:95:e5:2a:39:
d0:41:82:75:d3:d5:01:97:6b:c0:c7:11:68:c9:e1:
94:16:c4:9d:29:1c:e9:d9:b5:27:77:b3:ce:3d:c7:
11:7e:f6:68:99:ed:94:f0:b9:a9:ee:54:a5:55:42:
83:4b:af:03:33:04:e6:ee:05:ca:4e:1c:8f:d2:e3:
b0:54:ab:19:cf:fa:1c:76:e2:eb:c9:12:20:0f:7b:
3b:cb:04:e2:13:31:82:a2:98:3c:42:a0:f0:2b:d2:
ba:95:d7:02:f4:ce:a2:bb:ae:24:8e:ef:3d:29:6b:
9e:b7:af:08:f2:0d:be:88:d5:cd:ba:27:8d:1e:3f:
86:ca:3a:9b:2a:ff:2d:07:a0:76:89:bc:10:d1:b5:
e3:c8:c1:03:cf:ae:75:4f:dc:27:d9:02:a2:c8:25:
5e:d2:e3:04:e8:3e:d3:e6:5d:40:0b:c9:c1:09:5c:
84:45:ab:40:38:65:1e:1f:b1:35:02:2e:ee:48:18:
67:a3:5a:76:1e:00:2d:8e:5f:34:df:1d:6e:d3:ca:
48:8e:71:3d:7f:fc:60:9b:3c:48:a2:1c:44:52:bf:
37:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D0:8E:33:E3:C5:30:4E:02:66:CE:41:30:AE:72:54:7F:54:A1:26
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/QdCOM-PFME4CZs5BMK5yVH9UoSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.142.0/24
80.240.86.0/23
Signature Algorithm: sha256WithRSAEncryption
16:2d:78:af:bd:80:45:ce:24:b3:d4:4d:87:41:49:2d:9b:a7:
ae:41:ad:30:89:fa:2f:64:54:a2:88:1a:16:60:1f:1d:3e:94:
6d:e9:87:25:f9:4a:41:0c:b4:66:e8:2b:39:0c:b9:0f:76:95:
7c:a9:1c:80:79:23:86:46:45:5a:aa:72:4b:5d:ff:18:f6:43:
c9:df:17:e2:ad:f5:00:ec:94:5c:ac:a8:e2:75:56:8f:6d:29:
9f:ce:aa:96:db:56:31:91:89:19:fc:e7:a5:4f:ee:fd:b2:28:
6d:27:5b:8c:59:a5:1d:d3:c7:53:cb:08:8f:c8:de:9f:4c:4d:
ca:3d:88:96:d8:21:90:f6:77:b7:5a:14:cd:5e:55:cd:85:85:
76:86:76:ab:cb:82:b6:e0:01:e2:92:b8:61:4d:a1:1b:f1:4e:
76:86:d3:fa:63:96:ff:d2:06:f2:a8:84:96:47:49:e1:90:8a:
8d:a6:27:a8:5e:db:81:68:12:28:19:eb:82:3d:b5:40:ef:2a:
0d:eb:74:bf:1b:e6:b6:3c:dc:61:d0:ba:6f:67:94:34:4a:97:
ad:da:34:e4:63:c5:51:59:26:07:19:69:0d:47:02:69:4e:3f:
4e:01:42:ac:f6:d3:cf:81:4b:30:d9:0b:e5:29:60:bd:44:d1:
74:7b:f6:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 21 16:31:21 2026 by rpki-client