Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JIDlzlXHhInxGaypqhD6zdKAHjQ.roa
File: JIDlzlXHhInxGaypqhD6zdKAHjQ.roa (raw, json)
Hash identifier: iQrxKeyh97062YH/vkpNKV/5HL0W2SvVABNZi2FLNK0=
Subject key identifier: 24:80:E5:CE:55:C7:84:89:F1:19:AC:A9:AA:10:FA:CD:D2:80:1E:34
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019E5E9D73D791213958ADA73A90EE09A47B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JIDlzlXHhInxGaypqhD6zdKAHjQ.roa
Signing time: Mon 25 May 2026 10:10:37 +0000
ROA not before: Mon 25 May 2026 10:10:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 31313
IP address blocks: 80.96.3.0/24 maxlen: 24
80.96.186.0/24 maxlen: 24
80.96.226.0/24 maxlen: 24
80.96.248.0/24 maxlen: 24
81.181.207.0/24 maxlen: 24
85.120.75.0/24 maxlen: 24
85.120.159.0/24 maxlen: 24
85.120.166.0/24 maxlen: 24
85.121.34.0/24 maxlen: 24
85.122.105.0/24 maxlen: 24
193.231.67.0/24 maxlen: 24
193.231.176.0/24 maxlen: 24
194.102.43.0/24 maxlen: 24
194.102.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5e:9d:73:d7:91:21:39:58:ad:a7:3a:90:ee:09:a4:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 25 10:10:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2480e5ce55c78489f119aca9aa10facdd2801e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:42:8e:5f:ef:1b:79:08:2e:9a:5a:7c:e2:
ff:2b:31:8d:17:13:7f:50:77:72:a6:36:36:c9:4d:
0f:1b:17:c7:4e:86:6d:2c:1f:4a:86:4d:65:96:30:
97:e8:d1:09:92:55:05:48:6b:ec:4c:48:bf:a9:c1:
01:59:22:56:86:5f:9a:19:10:5d:3a:97:9a:9f:a8:
eb:7e:ca:7b:13:00:57:a8:f5:58:eb:cf:73:b8:5e:
81:dc:18:e9:46:2f:c2:75:9f:46:b7:a3:8d:02:af:
d7:90:bd:a1:58:e0:6e:e1:f2:e8:a9:84:0b:cc:ac:
72:82:73:83:a5:8b:3e:43:82:dc:f0:b0:66:04:28:
f1:ca:54:55:f4:04:dd:99:f6:ab:a6:f6:d7:61:c5:
74:3c:d9:ca:d1:2c:18:37:d7:76:f4:c5:4e:93:16:
d6:e6:79:ff:8e:f3:4f:90:50:66:bf:3b:0f:a6:b0:
30:2f:f5:79:35:8e:fd:bc:e1:12:03:a9:83:c9:5b:
ac:ef:81:22:f0:10:82:39:a6:d4:87:5f:40:82:13:
c7:1d:24:49:c9:d7:3a:05:b1:46:c9:cf:bf:6d:6e:
d6:89:2c:83:30:5a:b0:b5:7b:1c:de:6b:85:1d:25:
1a:57:01:0d:6e:f1:51:bd:28:c5:9f:02:ad:c6:48:
4a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:80:E5:CE:55:C7:84:89:F1:19:AC:A9:AA:10:FA:CD:D2:80:1E:34
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JIDlzlXHhInxGaypqhD6zdKAHjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.3.0/24
80.96.186.0/24
80.96.226.0/24
80.96.248.0/24
81.181.207.0/24
85.120.75.0/24
85.120.159.0/24
85.120.166.0/24
85.121.34.0/24
85.122.105.0/24
193.231.67.0/24
193.231.176.0/24
194.102.43.0/24
194.102.67.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:50:a4:0b:6d:6f:b4:e2:05:9d:b0:12:89:5b:3f:54:df:ff:
28:08:89:4e:fd:d5:de:d6:db:9a:98:3c:74:b7:20:ad:03:a1:
67:3b:65:87:9a:d5:6f:e4:f9:a3:f3:ff:9c:29:0c:28:c0:41:
f9:79:d1:25:30:69:c4:a9:90:08:03:1e:c2:bc:c1:76:cd:0e:
6f:0d:fe:6d:5d:e7:57:a6:8f:bb:7d:da:d2:cb:cc:89:db:8e:
f7:9a:67:77:08:74:d2:12:c8:35:8f:a1:20:28:5d:42:50:51:
a5:a2:83:0f:c5:2e:56:bf:77:ec:0d:e6:92:d7:00:bc:f5:1f:
16:6b:27:19:74:e6:11:24:64:0b:fc:8f:2f:a2:ac:3e:64:1b:
fb:48:d3:be:c3:56:e1:aa:86:b6:67:3a:c7:0e:96:96:d0:90:
dd:be:7a:e4:ad:eb:28:a8:78:52:b6:ef:9c:83:05:e7:8a:95:
83:f4:7f:b5:88:89:7d:bc:f9:8e:9a:da:48:16:76:89:48:de:
b1:b3:b8:fb:39:15:74:d4:f4:8b:43:27:e1:dc:86:4c:ef:38:
23:4c:f3:28:a7:62:47:5c:68:cf:2b:3f:90:27:37:04:12:0a:
79:e3:dd:0d:c3:82:86:3c:13:46:ef:45:2f:28:7a:bc:2e:c7:
08:1f:49:11
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAZ5enXPXkSE5WK2nOpDuCaR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjYwNTI1MTAxMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDgwZTVjZTU1Yzc4NDg5ZjExOWFjYTlhYTEwZmFjZGQyODAxZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZFCjl/vG3kILppafOL/KzGNFxN/
UHdypjY2yU0PGxfHToZtLB9Khk1lljCX6NEJklUFSGvsTEi/qcEBWSJWhl+aGRBd
Opean6jrfsp7EwBXqPVY689zuF6B3BjpRi/CdZ9Gt6ONAq/XkL2hWOBu4fLoqYQL
zKxygnODpYs+Q4Lc8LBmBCjxylRV9ATdmfarpvbXYcV0PNnK0SwYN9d29MVOkxbW
5nn/jvNPkFBmvzsPprAwL/V5NY79vOESA6mDyVus74Ei8BCCOabUh19AghPHHSRJ
ydc6BbFGyc+/bW7WiSyDMFqwtXsc3muFHSUaVwENbvFRvSjFnwKtxkhK2QIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFCSA5c5Vx4SJ8RmsqaoQ+s3SgB40MB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvSklEbHpsWEhoSW54R2F5cHFoRDZ6ZEtBSGpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAUGADAwQA
UGC6AwQAUGDiAwQAUGD4AwQAUbXPAwQAVXhLAwQAVXifAwQAVXimAwQAVXkiAwQA
VXppAwQAwedDAwQAweewAwQAwmYrAwQAwmZDMA0GCSqGSIb3DQEBCwUAA4IBAQCL
UKQLbW+04gWdsBKJWz9U3/8oCIlO/dXe1tuamDx0tyCtA6FnO2WHmtVv5Pmj8/+c
KQwowEH5edElMGnEqZAIAx7CvMF2zQ5vDf5tXedXpo+7fdrSy8yJ2473mmd3CHTS
Esg1j6EgKF1CUFGlooMPxS5Wv3fsDeaS1wC89R8WaycZdOYRJGQL/I8voqw+ZBv7
SNO+w1bhqoa2ZzrHDpaW0JDdvnrkresoqHhStu+cgwXnipWD9H+1iIl9vPmOmtpI
FnaJSN6xs7j7ORV01PSLQyfh3IZM7zgjTPMop2JHXGjPKz+QJzcEEgp5490Nw4KG
PBNG70UvKHq8LscIH0kR
-----END CERTIFICATE-----
Generated at Thu Jun 4 13:06:35 2026 by rpki-client