Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/6YG9nUxeizi6VJLyjnHHqIRYb7o.roa
File: 6YG9nUxeizi6VJLyjnHHqIRYb7o.roa (raw, json)
Hash identifier: 5/DemiB079Xclg6auee24p1sM7/0Bdgg715Mqht0ckk=
Subject key identifier: E9:81:BD:9D:4C:5E:8B:38:BA:54:92:F2:8E:71:C7:A8:84:58:6F:BA
Certificate issuer: /CN=1027a8a61299b80a3e71d1a981427ec00b849d17
Certificate serial: 019EB6F63E3E4CF46D0250DBC3F40C9B9A0E
Authority key identifier: 10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/6YG9nUxeizi6VJLyjnHHqIRYb7o.roa
Signing time: Thu 11 Jun 2026 13:54:11 +0000
ROA not before: Thu 11 Jun 2026 13:54:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8455
IP address blocks: 31.22.80.0/21 maxlen: 21
31.22.84.0/24 maxlen: 24
45.148.184.0/22 maxlen: 22
45.148.187.0/24 maxlen: 24
95.142.96.0/20 maxlen: 20
130.193.4.0/24 maxlen: 24
178.237.32.0/20 maxlen: 20
178.237.42.0/24 maxlen: 24
178.237.43.0/24 maxlen: 24
185.27.16.0/22 maxlen: 22
193.22.161.0/24 maxlen: 24
2a00:1188::/29 maxlen: 29
2a00:1188:8::/48 maxlen: 48
2a00:1188:9::/48 maxlen: 48
2a00:1188:a::/48 maxlen: 48
2a00:1188:b::/48 maxlen: 48
2a00:1188:c::/48 maxlen: 48
2a00:1188:d::/48 maxlen: 48
2a00:1188:e::/48 maxlen: 48
2a00:1188:13::/48 maxlen: 48
2a00:1188:19::/48 maxlen: 48
2a00:1188:1b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:f6:3e:3e:4c:f4:6d:02:50:db:c3:f4:0c:9b:9a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1027a8a61299b80a3e71d1a981427ec00b849d17
Validity
Not Before: Jun 11 13:54:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e981bd9d4c5e8b38ba5492f28e71c7a884586fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:a6:ec:d8:54:62:0b:37:80:00:b3:7c:df:
e3:72:76:55:df:67:3a:b7:27:98:85:a3:34:fe:cd:
3d:76:f8:35:39:da:18:c1:a4:ab:03:59:89:05:0e:
c4:8e:e7:c5:4b:ba:eb:b9:44:11:29:7d:ae:fe:3a:
be:61:b5:9a:5f:c1:bf:dc:00:b9:7a:59:37:31:54:
88:a9:d1:fa:21:fd:47:19:0d:14:7a:51:2e:78:8f:
14:88:3c:16:23:8f:3c:6a:21:07:e7:80:13:34:2d:
61:ad:c7:7a:ce:16:b7:bb:6c:6d:07:58:ca:e2:5c:
3f:db:14:c0:4b:3c:db:3f:95:fe:97:08:44:31:cf:
c1:8a:e7:4b:23:88:9f:47:26:43:05:71:3e:fb:38:
56:43:68:6a:8e:22:e8:c0:1a:13:18:2a:8c:e5:09:
26:a9:91:13:d8:de:d6:d1:66:41:0d:12:f6:bf:bc:
a2:95:05:8b:2f:75:e2:c5:48:21:91:62:ad:1b:1a:
e4:bc:5c:be:aa:66:cc:bc:78:7b:21:11:f3:64:61:
b4:49:2d:99:d2:f9:87:e7:a7:e3:fd:05:99:d9:64:
5a:90:1e:79:b0:8d:eb:2d:f6:68:05:99:41:7d:dd:
6a:a8:83:66:11:5a:bd:6c:ec:43:4d:06:39:1b:e4:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:81:BD:9D:4C:5E:8B:38:BA:54:92:F2:8E:71:C7:A8:84:58:6F:BA
X509v3 Authority Key Identifier:
keyid:10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/6YG9nUxeizi6VJLyjnHHqIRYb7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.22.80.0/21
45.148.184.0/22
95.142.96.0/20
130.193.4.0/24
178.237.32.0/20
185.27.16.0/22
193.22.161.0/24
IPv6:
2a00:1188::/29
Signature Algorithm: sha256WithRSAEncryption
50:81:3b:99:80:52:24:0b:19:08:f8:1a:4d:c3:d5:6a:a5:d4:
fc:d6:83:5f:c1:e0:f2:e6:23:93:b8:0a:93:0d:3c:e2:81:a1:
ea:7f:fc:23:8c:7a:32:a4:c0:fd:4c:b6:23:36:b7:2d:3b:a0:
4d:84:75:27:46:4c:2e:fd:9c:c9:3a:f7:f6:90:a0:6c:bd:73:
6b:d0:d9:8e:ea:67:92:af:a5:cf:55:86:45:cc:b6:92:e2:a4:
d7:c4:f4:5c:6d:0c:62:52:8d:0a:1f:c0:0b:c5:aa:98:6f:b3:
0d:0c:ff:e0:06:60:36:a7:c1:46:ba:5b:90:4d:e0:fc:47:0d:
ed:11:55:c8:aa:1d:fb:f4:cc:09:a3:95:46:5c:f4:78:f4:04:
d7:8a:16:31:e8:8f:25:82:62:0d:0c:8f:63:15:fd:9d:fd:d5:
5d:31:c7:11:bc:bf:77:fd:cd:6d:68:d9:8a:be:5b:33:50:fe:
b9:68:27:c9:2c:09:32:60:97:12:5f:cf:12:06:b8:d0:f7:65:
42:56:88:9d:b8:3f:17:74:fa:03:b6:6f:f6:6b:94:b7:fc:8e:
9a:6b:f3:64:c0:61:97:62:fc:19:f7:b2:0e:c4:06:6c:27:90:
a5:31:cd:86:85:4e:1d:ad:0e:fa:f1:8a:3a:99:ba:93:e4:ea:
18:85:98:f2
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAZ629j4+TPRtAlDbw/QMm5oOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMjdhOGE2MTI5OWI4MGEzZTcxZDFhOTgxNDI3ZWMwMGI4
NDlkMTcwHhcNMjYwNjExMTM1NDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTgxYmQ5ZDRjNWU4YjM4YmE1NDkyZjI4ZTcxYzdhODg0NTg2ZmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVym7NhUYgs3gACzfN/jcnZV32c6
tyeYhaM0/s09dvg1OdoYwaSrA1mJBQ7EjufFS7rruUQRKX2u/jq+YbWaX8G/3AC5
elk3MVSIqdH6If1HGQ0UelEueI8UiDwWI488aiEH54ATNC1hrcd6zha3u2xtB1jK
4lw/2xTASzzbP5X+lwhEMc/BiudLI4ifRyZDBXE++zhWQ2hqjiLowBoTGCqM5Qkm
qZET2N7W0WZBDRL2v7yilQWLL3XixUghkWKtGxrkvFy+qmbMvHh7IRHzZGG0SS2Z
0vmH56fj/QWZ2WRakB55sI3rLfZoBZlBfd1qqINmEVq9bOxDTQY5G+TZ2QIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFOmBvZ1MXos4ulSS8o5xx6iEWG+6MB8GA1UdIwQY
MBaAFBAnqKYSmbgKPnHRqYFCfsALhJ0XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMt
OWRkOTk3ZWVmNGVmLzEvNllHOW5VeGVpemk2VkpMeWpuSEhxSVJZYjdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMtOWRkOTk3ZWVmNGVm
LzEvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDHxZQAwQC
LZS4AwQEX45gAwQAgsEEAwQEsu0gAwQCuRsQAwQAwRahMA0EAgACMAcDBQMqABGI
MA0GCSqGSIb3DQEBCwUAA4IBAQBQgTuZgFIkCxkI+BpNw9VqpdT81oNfweDy5iOT
uAqTDTzigaHqf/wjjHoypMD9TLYjNrctO6BNhHUnRkwu/ZzJOvf2kKBsvXNr0NmO
6meSr6XPVYZFzLaS4qTXxPRcbQxiUo0KH8ALxaqYb7MNDP/gBmA2p8FGuluQTeD8
Rw3tEVXIqh379MwJo5VGXPR49ATXihYx6I8lgmINDI9jFf2d/dVdMccRvL93/c1t
aNmKvlszUP65aCfJLAkyYJcSX88SBrjQ92VCVoiduD8XdPoDtm/2a5S3/I6aa/Nk
wGGXYvwZ97IOxAZsJ5ClMc2GhU4drQ768Yo6mbqT5OoYhZjy
-----END CERTIFICATE-----
Generated at Fri Jun 12 01:28:31 2026 by rpki-client