Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/dQaTjbpdJpL1XP1v01EKXqRYC-w.roa
File: dQaTjbpdJpL1XP1v01EKXqRYC-w.roa (raw, json)
Hash identifier: ULOoetRX5qMtgr34Ew/wFPFv5aHflUOVtLIXDSuv5Hw=
Subject key identifier: 75:06:93:8D:BA:5D:26:92:F5:5C:FD:6F:D3:51:0A:5E:A4:58:0B:EC
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 019E8F9AD81C8E7B1D80904B56DE5FCD877B
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/dQaTjbpdJpL1XP1v01EKXqRYC-w.roa
Signing time: Wed 03 Jun 2026 22:29:10 +0000
ROA not before: Wed 03 Jun 2026 22:29:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 138968
IP address blocks: 93.177.76.0/23 maxlen: 23
93.187.128.0/22 maxlen: 24
93.187.128.0/23 maxlen: 23
93.187.130.0/23 maxlen: 23
212.115.52.0/22 maxlen: 24
212.115.52.0/24 maxlen: 24
212.115.53.0/24 maxlen: 24
212.115.54.0/24 maxlen: 24
212.115.55.0/24 maxlen: 24
2a0c:640::/29 maxlen: 29
2a0c:9380::/29 maxlen: 29
2a0c:f480::/29 maxlen: 29
2a0d:2480::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8f:9a:d8:1c:8e:7b:1d:80:90:4b:56:de:5f:cd:87:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Jun 3 22:29:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7506938dba5d2692f55cfd6fd3510a5ea4580bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6e:1f:3c:6e:6a:97:e4:b0:c1:f6:f3:27:ff:
f1:02:a3:03:e6:b4:fd:e7:02:56:af:80:c2:2e:2b:
74:2a:28:1f:9d:10:8b:d6:d5:7f:60:50:1a:6c:b8:
98:71:c7:dd:1e:f0:59:cf:44:26:ca:06:a2:fe:16:
62:b4:6d:7e:97:4f:82:d3:84:58:64:6d:45:3d:e6:
ac:e0:45:98:5a:dc:8b:c2:db:18:2d:a4:7d:ae:94:
0d:d7:b2:f2:3d:83:3d:b5:41:8c:f6:fc:a8:37:e0:
24:cf:45:c4:20:e9:dc:46:82:37:14:60:fb:f7:de:
79:ec:8a:4f:9e:d4:34:be:91:e0:34:14:0c:3e:9d:
65:e6:02:f7:42:a2:ea:b3:23:af:c7:4b:d4:8e:e2:
a8:0f:9d:85:44:1f:1d:e1:6e:21:83:8f:b6:0c:a2:
82:98:37:79:d5:cb:97:7b:e2:04:28:a4:42:84:38:
38:7e:f8:dc:38:5b:ed:60:7b:0e:6d:86:59:95:7b:
1d:40:0a:71:48:9e:5a:c1:de:d0:d2:11:43:e7:81:
71:d8:40:02:40:68:bd:40:97:25:5f:af:f2:bb:25:
55:38:f4:5e:7e:26:af:83:23:3d:cc:9f:23:ab:c1:
d1:f1:d5:f7:05:80:5f:90:e2:38:48:bd:ad:18:67:
c5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:06:93:8D:BA:5D:26:92:F5:5C:FD:6F:D3:51:0A:5E:A4:58:0B:EC
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/dQaTjbpdJpL1XP1v01EKXqRYC-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.76.0/23
93.187.128.0/22
212.115.52.0/22
IPv6:
2a0c:640::/29
2a0c:9380::/29
2a0c:f480::/29
2a0d:2480::/29
Signature Algorithm: sha256WithRSAEncryption
83:49:84:74:0e:31:af:de:53:ec:ed:50:af:8b:b7:b5:fd:d4:
cb:f9:41:a1:65:11:60:e9:9c:34:0e:6b:52:cd:b2:42:df:fe:
51:e0:2d:eb:5a:66:fc:45:e1:73:1d:b9:21:6c:53:86:7e:3c:
20:d1:31:e6:5a:0d:b2:16:36:f9:5e:aa:07:ff:cc:87:31:26:
76:4b:07:b0:ce:53:0e:24:a6:aa:72:3b:c5:09:1a:80:37:dd:
49:59:b3:a1:f1:d0:3d:48:e4:1a:31:77:22:57:4d:e5:1f:c3:
15:f3:0b:97:c2:c9:d6:20:0b:8f:4b:7e:1f:a2:8a:68:51:e9:
f8:40:5e:25:f0:27:c4:5f:3a:5c:f3:47:49:48:10:c5:4e:2d:
ae:e7:cd:c4:88:24:83:18:0d:a2:97:45:22:89:da:a1:dc:6e:
50:b2:6b:0a:55:f3:53:ad:f4:01:9e:42:a8:fe:df:c1:05:f9:
51:fc:55:24:eb:39:a4:54:be:76:e2:bd:03:a3:26:05:46:52:
06:d3:91:62:96:4f:96:49:79:2e:d5:cf:42:1e:0c:93:b3:03:
60:6a:f6:bf:da:f8:c8:2a:90:39:b7:7d:80:3b:5a:b9:bc:52:
5b:c4:62:15:4a:15:22:fc:11:5e:b2:d6:de:cf:c9:58:b5:79:
59:12:0a:91
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZ6PmtgcjnsdgJBLVt5fzYd7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwODk0MjNhZjFiZTAzMDI3MTk2ZDFmODFkZjIyOTkyOTc4
Y2RhNmUwHhcNMjYwNjAzMjIyOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTA2OTM4ZGJhNWQyNjkyZjU1Y2ZkNmZkMzUxMGE1ZWE0NTgwYmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1W4fPG5ql+SwwfbzJ//xAqMD5rT9
5wJWr4DCLit0KigfnRCL1tV/YFAabLiYccfdHvBZz0Qmygai/hZitG1+l0+C04RY
ZG1FPeas4EWYWtyLwtsYLaR9rpQN17LyPYM9tUGM9vyoN+Akz0XEIOncRoI3FGD7
99557IpPntQ0vpHgNBQMPp1l5gL3QqLqsyOvx0vUjuKoD52FRB8d4W4hg4+2DKKC
mDd51cuXe+IEKKRChDg4fvjcOFvtYHsObYZZlXsdQApxSJ5awd7Q0hFD54Fx2EAC
QGi9QJclX6/yuyVVOPRefiavgyM9zJ8jq8HR8dX3BYBfkOI4SL2tGGfFAwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFHUGk426XSaS9Vz9b9NRCl6kWAvsMB8GA1UdIwQY
MBaAFMCJQjrxvgMCcZbR+B3yKZKXjNpuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0lsQ092Ry1Bd0p4bHRINEhmSXBrcGVNMm00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kYzI5MTItYzdiMC00ZGY0LTlhYTgt
NjUzMzJiNDdmNWViLzEvZFFhVGpicGRKcEwxWFAxdjAxRUtYcVJZQy13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9kYzI5MTItYzdiMC00ZGY0LTlhYTgtNjUzMzJiNDdmNWVi
LzEvd0lsQ092Ry1Bd0p4bHRINEhmSXBrcGVNMm00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjAYBAIAATASAwQBXbFMAwQC
XbuAAwQC1HM0MCIEAgACMBwDBQMqDAZAAwUDKgyTgAMFAyoM9IADBQMqDSSAMA0G
CSqGSIb3DQEBCwUAA4IBAQCDSYR0DjGv3lPs7VCvi7e1/dTL+UGhZRFg6Zw0DmtS
zbJC3/5R4C3rWmb8ReFzHbkhbFOGfjwg0THmWg2yFjb5XqoH/8yHMSZ2SwewzlMO
JKaqcjvFCRqAN91JWbOh8dA9SOQaMXciV03lH8MV8wuXwsnWIAuPS34foopoUen4
QF4l8CfEXzpc80dJSBDFTi2u583EiCSDGA2il0Uiidqh3G5QsmsKVfNTrfQBnkKo
/t/BBflR/FUk6zmkVL524r0DoyYFRlIG05Filk+WSXku1c9CHgyTswNgava/2vjI
KpA5t32AO1q5vFJbxGIVShUi/BFestbez8lYtXlZEgqR
-----END CERTIFICATE-----
Generated at Thu Jun 11 21:19:39 2026 by rpki-client