Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/Qiay74MbBLJX0CXXaOcyKRwu1oE.roa
File: Qiay74MbBLJX0CXXaOcyKRwu1oE.roa (raw, json)
Hash identifier: kahuToIQXEZrrTaByaYWat/npZL3xVVcTJ88XatdcNg=
Subject key identifier: 42:26:B2:EF:83:1B:04:B2:57:D0:25:D7:68:E7:32:29:1C:2E:D6:81
Certificate issuer: /CN=6f46cf964a46fb50f25b5d14fd965fd6861048a5
Certificate serial: 019C65C593C6BB32E8B9A104769DF3937724
Authority key identifier: 6F:46:CF:96:4A:46:FB:50:F2:5B:5D:14:FD:96:5F:D6:86:10:48:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0bPlkpG-1DyW10U_ZZf1oYQSKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/Qiay74MbBLJX0CXXaOcyKRwu1oE.roa
Signing time: Mon 16 Feb 2026 09:26:12 +0000
ROA not before: Mon 16 Feb 2026 09:26:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 396982
IP address blocks: 87.236.178.0/24 maxlen: 24
194.46.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/b0bPlkpG-1DyW10U_ZZf1oYQSKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/b0bPlkpG-1DyW10U_ZZf1oYQSKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/b0bPlkpG-1DyW10U_ZZf1oYQSKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:65:c5:93:c6:bb:32:e8:b9:a1:04:76:9d:f3:93:77:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f46cf964a46fb50f25b5d14fd965fd6861048a5
Validity
Not Before: Feb 16 09:26:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4226b2ef831b04b257d025d768e732291c2ed681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ed:cb:5e:ad:05:bf:f7:75:83:84:f3:23:2d:
95:16:8b:20:fc:66:ab:c1:b8:69:71:d3:79:86:0a:
2e:53:91:0e:00:fe:b6:f3:b8:a0:9e:c4:3c:0f:5c:
6c:8a:3c:ab:bb:b1:95:92:fb:9d:ec:d0:6c:ce:e1:
24:45:6e:30:42:64:00:f8:9f:9d:ed:98:83:9c:52:
dc:8d:fd:54:a1:6f:79:3a:e5:37:35:cc:62:39:a8:
83:ac:54:7b:cb:4d:9f:fa:52:5a:b4:63:ae:2b:97:
e7:3c:b7:0b:50:5d:7d:a0:20:a8:10:40:7d:d8:3c:
c9:69:73:21:6f:28:35:df:c8:b3:fd:d3:fe:24:58:
73:cd:a1:34:e4:97:18:ea:ef:1d:fc:a9:ac:b2:7d:
de:94:95:b8:77:2a:09:78:0c:c6:27:1a:99:1d:28:
c7:3e:8e:cc:bd:a0:45:68:d1:37:cf:e9:b8:80:91:
4b:d4:45:07:07:c4:1a:f0:dd:6e:5f:e6:fe:23:7e:
a2:05:30:a1:79:22:b8:62:fc:85:47:a6:be:1a:a3:
51:a8:97:aa:58:6e:43:59:06:f0:c3:f4:25:c9:a5:
fd:67:ae:15:5b:44:6d:d3:1d:6e:ef:d0:db:21:7e:
a7:3b:12:28:da:4e:6c:4c:ab:79:69:70:93:a1:12:
d5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:26:B2:EF:83:1B:04:B2:57:D0:25:D7:68:E7:32:29:1C:2E:D6:81
X509v3 Authority Key Identifier:
keyid:6F:46:CF:96:4A:46:FB:50:F2:5B:5D:14:FD:96:5F:D6:86:10:48:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0bPlkpG-1DyW10U_ZZf1oYQSKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/Qiay74MbBLJX0CXXaOcyKRwu1oE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/190d08-f1b1-4803-a722-99a08b91274c/1/b0bPlkpG-1DyW10U_ZZf1oYQSKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.178.0/24
194.46.32.0/24
Signature Algorithm: sha256WithRSAEncryption
36:99:5c:6f:a0:1f:3d:3d:ce:9c:ea:b3:d2:13:fa:3a:2a:37:
af:3a:39:72:87:3d:96:ee:7f:51:75:c0:5e:68:d3:6a:7c:06:
e9:72:17:76:31:5b:68:d1:3b:e3:91:7f:f2:d9:b0:46:07:d8:
2a:8e:16:b4:16:05:a1:b0:e5:de:86:3b:b1:71:1f:f9:79:5d:
1f:b0:25:55:b4:e9:0a:aa:37:a8:fc:7f:0a:e7:bc:04:0c:9b:
b8:d8:9f:0e:36:19:e6:4b:96:4e:04:00:18:8f:9d:df:bc:1d:
e9:0b:f6:e7:6b:1b:54:2e:58:25:f0:ff:bb:9c:2e:cc:c2:c1:
67:3f:7a:da:fa:f2:8c:17:df:d1:4b:02:c1:bf:93:59:3a:66:
8c:52:32:f9:e0:08:8b:2a:b7:ae:f3:01:03:ab:ad:f8:57:d2:
a2:6e:79:71:62:82:8c:9e:7c:d5:bc:ad:ee:30:0e:fe:4b:7f:
1f:61:3d:45:bf:e8:23:2e:54:58:4d:c2:22:47:26:38:e0:c8:
92:9f:56:5b:4f:fd:f4:8e:0a:00:65:10:79:b2:96:9c:df:8e:
b4:53:6f:f1:0d:0c:61:ab:92:40:31:32:79:f9:74:df:06:88:
9b:50:a3:19:2c:2c:70:5a:97:d5:1e:da:ea:5d:09:9c:7f:12:
13:a1:fd:cd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZxlxZPGuzLouaEEdp3zk3ckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNDZjZjk2NGE0NmZiNTBmMjViNWQxNGZkOTY1ZmQ2ODYx
MDQ4YTUwHhcNMjYwMjE2MDkyNjEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjI2YjJlZjgzMWIwNGIyNTdkMDI1ZDc2OGU3MzIyOTFjMmVkNjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+3LXq0Fv/d1g4TzIy2VFosg/Gar
wbhpcdN5hgouU5EOAP6287ignsQ8D1xsijyru7GVkvud7NBszuEkRW4wQmQA+J+d
7ZiDnFLcjf1UoW95OuU3NcxiOaiDrFR7y02f+lJatGOuK5fnPLcLUF19oCCoEEB9
2DzJaXMhbyg138iz/dP+JFhzzaE05JcY6u8d/Kmssn3elJW4dyoJeAzGJxqZHSjH
Po7MvaBFaNE3z+m4gJFL1EUHB8Qa8N1uX+b+I36iBTCheSK4YvyFR6a+GqNRqJeq
WG5DWQbww/QlyaX9Z64VW0Rt0x1u79DbIX6nOxIo2k5sTKt5aXCToRLVFQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEImsu+DGwSyV9Al12jnMikcLtaBMB8GA1UdIwQY
MBaAFG9Gz5ZKRvtQ8ltdFP2WX9aGEEilMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjBiUGxrcEctMUR5VzEwVV9aWmYxb1lRU0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8xOTBkMDgtZjFiMS00ODAzLWE3MjIt
OTlhMDhiOTEyNzRjLzEvUWlheTc0TWJCTEpYMENYWGFPY3lLUnd1MW9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8xOTBkMDgtZjFiMS00ODAzLWE3MjItOTlhMDhiOTEyNzRj
LzEvYjBiUGxrcEctMUR5VzEwVV9aWmYxb1lRU0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV+yyAwQA
wi4gMA0GCSqGSIb3DQEBCwUAA4IBAQA2mVxvoB89Pc6c6rPSE/o6KjevOjlyhz2W
7n9RdcBeaNNqfAbpchd2MVto0TvjkX/y2bBGB9gqjha0FgWhsOXehjuxcR/5eV0f
sCVVtOkKqjeo/H8K57wEDJu42J8ONhnmS5ZOBAAYj53fvB3pC/bnaxtULlgl8P+7
nC7MwsFnP3ra+vKMF9/RSwLBv5NZOmaMUjL54AiLKreu8wEDq634V9KibnlxYoKM
nnzVvK3uMA7+S38fYT1Fv+gjLlRYTcIiRyY44MiSn1ZbT/30jgoAZRB5spac3460
U2/xDQxhq5JAMTJ5+XTfBoibUKMZLCxwWpfVHtrqXQmcfxITof3N
-----END CERTIFICATE-----
Generated at Sun Feb 22 22:01:10 2026 by rpki-client