Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FTtK7QNp6qvk76uHY7Q25IbO7wQ.roa
File: FTtK7QNp6qvk76uHY7Q25IbO7wQ.roa (raw, json)
Hash identifier: zM4+DCOInY/ux1k/WUniOeBKK01XHp9PU5+riVP9MrA=
Subject key identifier: 15:3B:4A:ED:03:69:EA:AB:E4:EF:AB:87:63:B4:36:E4:86:CE:EF:04
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019E6A70F255894DFB3F19CC2CB0DF1B9AB3
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FTtK7QNp6qvk76uHY7Q25IbO7wQ.roa
Signing time: Wed 27 May 2026 17:17:27 +0000
ROA not before: Wed 27 May 2026 17:17:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44559
IP address blocks: 31.222.248.0/24 maxlen: 24
45.142.39.0/24 maxlen: 24
157.22.0.0/24 maxlen: 24
157.22.1.0/24 maxlen: 24
157.22.2.0/24 maxlen: 24
157.22.3.0/24 maxlen: 24
157.22.4.0/24 maxlen: 24
157.22.5.0/24 maxlen: 24
157.22.6.0/24 maxlen: 24
157.22.7.0/24 maxlen: 24
157.22.8.0/24 maxlen: 24
157.22.9.0/24 maxlen: 24
157.22.10.0/24 maxlen: 24
157.22.11.0/24 maxlen: 24
157.22.12.0/24 maxlen: 24
157.22.13.0/24 maxlen: 24
157.22.14.0/24 maxlen: 24
157.22.15.0/24 maxlen: 24
157.22.21.0/24 maxlen: 24
157.22.22.0/24 maxlen: 24
157.22.23.0/24 maxlen: 24
157.22.24.0/24 maxlen: 24
157.22.25.0/24 maxlen: 24
157.22.26.0/24 maxlen: 24
157.22.27.0/24 maxlen: 24
157.22.28.0/24 maxlen: 24
157.22.29.0/24 maxlen: 24
157.22.30.0/24 maxlen: 24
157.22.31.0/24 maxlen: 24
157.22.32.0/24 maxlen: 24
157.22.33.0/24 maxlen: 24
157.22.34.0/24 maxlen: 24
157.22.35.0/24 maxlen: 24
157.22.36.0/24 maxlen: 24
157.22.37.0/24 maxlen: 24
157.22.38.0/24 maxlen: 24
157.22.39.0/24 maxlen: 24
157.22.40.0/24 maxlen: 24
157.22.42.0/24 maxlen: 24
157.22.43.0/24 maxlen: 24
157.22.48.0/24 maxlen: 24
157.22.49.0/24 maxlen: 24
157.22.51.0/24 maxlen: 24
157.22.52.0/24 maxlen: 24
157.22.53.0/24 maxlen: 24
157.22.54.0/24 maxlen: 24
157.22.55.0/24 maxlen: 24
157.22.56.0/24 maxlen: 24
157.22.57.0/24 maxlen: 24
157.22.59.0/24 maxlen: 24
157.22.60.0/24 maxlen: 24
157.22.61.0/24 maxlen: 24
157.22.62.0/24 maxlen: 24
157.22.63.0/24 maxlen: 24
157.22.64.0/24 maxlen: 24
157.22.66.0/24 maxlen: 24
157.22.67.0/24 maxlen: 24
157.22.68.0/24 maxlen: 24
157.22.70.0/24 maxlen: 24
157.22.71.0/24 maxlen: 24
157.22.76.0/24 maxlen: 24
157.22.77.0/24 maxlen: 24
157.22.78.0/24 maxlen: 24
157.22.79.0/24 maxlen: 24
157.22.80.0/24 maxlen: 24
157.22.81.0/24 maxlen: 24
157.22.82.0/24 maxlen: 24
157.22.83.0/24 maxlen: 24
157.22.84.0/24 maxlen: 24
157.22.85.0/24 maxlen: 24
157.22.86.0/24 maxlen: 24
157.22.87.0/24 maxlen: 24
157.22.88.0/24 maxlen: 24
157.22.89.0/24 maxlen: 24
157.22.90.0/24 maxlen: 24
157.22.91.0/24 maxlen: 24
157.22.92.0/24 maxlen: 24
157.22.93.0/24 maxlen: 24
157.22.94.0/24 maxlen: 24
157.22.95.0/24 maxlen: 24
157.22.96.0/24 maxlen: 24
157.22.98.0/24 maxlen: 24
157.22.99.0/24 maxlen: 24
157.22.104.0/24 maxlen: 24
157.22.105.0/24 maxlen: 24
157.22.107.0/24 maxlen: 24
157.22.108.0/24 maxlen: 24
157.22.109.0/24 maxlen: 24
157.22.110.0/24 maxlen: 24
157.22.111.0/24 maxlen: 24
157.22.112.0/24 maxlen: 24
157.22.113.0/24 maxlen: 24
157.22.114.0/24 maxlen: 24
157.22.115.0/24 maxlen: 24
157.22.117.0/24 maxlen: 24
157.22.118.0/24 maxlen: 24
157.22.120.0/24 maxlen: 24
157.22.121.0/24 maxlen: 24
157.22.122.0/24 maxlen: 24
157.22.123.0/24 maxlen: 24
176.56.37.0/24 maxlen: 24
178.212.143.0/24 maxlen: 24
185.46.175.0/24 maxlen: 24
185.92.211.0/24 maxlen: 24
185.161.79.0/24 maxlen: 24
193.33.66.0/24 maxlen: 24
193.56.29.0/24 maxlen: 24
194.32.238.0/24 maxlen: 24
194.32.239.0/24 maxlen: 24
194.56.180.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6a:70:f2:55:89:4d:fb:3f:19:cc:2c:b0:df:1b:9a:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 27 17:17:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=153b4aed0369eaabe4efab8763b436e486ceef04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:49:c2:24:fe:d1:d8:76:02:0b:a7:ca:44:d4:
0f:1c:79:f5:62:61:53:bb:da:98:c5:46:4f:50:26:
81:d6:40:a9:4a:48:61:2a:f5:0d:b9:d0:dd:80:9d:
5f:c1:da:18:75:c8:16:80:0f:e9:5d:33:5b:19:bb:
73:a9:61:05:44:c2:9b:ae:c1:72:07:95:df:2f:d2:
4b:18:9a:70:3b:cb:09:4b:27:79:31:58:cc:08:69:
c4:3d:c0:fc:aa:73:c8:fe:49:56:db:84:d0:24:4e:
18:0c:93:d1:f5:c0:03:3a:a2:f9:e9:b4:9e:73:8b:
62:2a:78:8c:df:bf:cf:73:01:ce:d9:8f:cf:c0:8f:
82:7f:cd:7f:fe:48:d6:bf:2b:09:0d:b1:58:67:60:
f1:7e:7b:8b:ef:e4:9f:cc:1f:e9:2b:a8:7c:23:36:
e8:b8:75:9d:9a:b6:a5:61:8a:8e:cb:4c:23:67:ba:
1e:62:96:36:e4:66:8a:b2:15:07:8d:c1:e4:93:71:
e1:2d:70:00:24:04:f6:8a:44:92:9f:b1:51:8d:c6:
53:db:c4:72:b7:d3:f6:f1:eb:ec:73:1e:03:24:5e:
be:7d:3f:27:76:b8:da:ec:df:0e:58:87:5e:92:db:
04:32:89:90:ae:12:59:68:20:39:04:0c:56:82:99:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3B:4A:ED:03:69:EA:AB:E4:EF:AB:87:63:B4:36:E4:86:CE:EF:04
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FTtK7QNp6qvk76uHY7Q25IbO7wQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.248.0/24
45.142.39.0/24
157.22.0.0/20
157.22.21.0-157.22.40.255
157.22.42.0/23
157.22.48.0/23
157.22.51.0-157.22.57.255
157.22.59.0-157.22.64.255
157.22.66.0-157.22.68.255
157.22.70.0/23
157.22.76.0-157.22.96.255
157.22.98.0/23
157.22.104.0/23
157.22.107.0-157.22.115.255
157.22.117.0-157.22.118.255
157.22.120.0/22
176.56.37.0/24
178.212.143.0/24
185.46.175.0/24
185.92.211.0/24
185.161.79.0/24
193.33.66.0/24
193.56.29.0/24
194.32.238.0/23
194.56.180.0/24
195.64.110.0/24
195.96.146.0/24
212.18.103.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:86:fa:1a:1b:ac:1a:db:06:e2:93:b7:aa:97:24:5b:b7:bf:
7e:20:de:f4:da:9d:53:fc:b3:85:51:26:db:70:e7:1f:5e:d2:
1a:90:8e:17:e2:f1:95:b4:ce:21:69:fd:8a:8d:3b:37:ff:01:
21:d5:8b:a0:76:da:63:b4:dc:56:a9:a5:94:68:72:82:bb:61:
9f:b4:0f:83:01:67:eb:e2:17:77:f4:2b:73:51:01:0d:31:ec:
11:64:d9:17:bf:57:c9:43:d0:ce:0d:cb:19:41:89:ed:38:b3:
ec:f5:43:2d:80:32:d5:cc:66:fa:58:38:c7:32:d5:e7:e8:51:
c0:1a:30:b6:b8:58:6e:d1:0a:fd:9d:e7:33:3b:7b:ad:50:5e:
19:5f:10:4a:f7:6b:ed:c2:f8:d2:56:cc:bd:fb:5f:97:f9:5b:
86:94:39:28:b6:61:d5:e4:93:49:8e:4b:3d:da:48:07:47:15:
eb:1c:94:12:13:b4:3d:60:d8:91:dc:80:ea:53:ba:07:c3:37:
3a:b6:c8:e1:b9:06:44:57:5b:c6:2b:4b:83:26:c6:57:b1:af:
ea:35:6f:38:c8:4d:94:c3:8e:d7:a9:e2:a9:b7:7f:4a:45:9e:
e5:85:3c:31:e2:4f:82:8e:63:f1:8a:84:88:24:c6:d5:d9:c4:
2f:a0:89:46
-----BEGIN CERTIFICATE-----
MIIF3DCCBMSgAwIBAgISAZ5qcPJViU37PxnMLLDfG5qzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjYwNTI3MTcxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTNiNGFlZDAzNjllYWFiZTRlZmFiODc2M2I0MzZlNDg2Y2VlZjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUnCJP7R2HYCC6fKRNQPHHn1YmFT
u9qYxUZPUCaB1kCpSkhhKvUNudDdgJ1fwdoYdcgWgA/pXTNbGbtzqWEFRMKbrsFy
B5XfL9JLGJpwO8sJSyd5MVjMCGnEPcD8qnPI/klW24TQJE4YDJPR9cADOqL56bSe
c4tiKniM37/PcwHO2Y/PwI+Cf81//kjWvysJDbFYZ2DxfnuL7+SfzB/pK6h8Izbo
uHWdmralYYqOy0wjZ7oeYpY25GaKshUHjcHkk3HhLXAAJAT2ikSSn7FRjcZT28Ry
t9P28evscx4DJF6+fT8ndrja7N8OWIdektsEMomQrhJZaCA5BAxWgplakwIDAQAB
o4IC6DCCAuQwHQYDVR0OBBYEFBU7Su0Daeqr5O+rh2O0NuSGzu8EMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvRlR0SzdRTnA2cXZrNzZ1SFk3UTI1SWJPN3dRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH9BggrBgEFBQcBBwEB/wSB7TCB6jCB5wQCAAEwgeADBAAf
3vgDBAAtjicDBASdFgAwDAMEAJ0WFQMEAJ0WKAMEAZ0WKgMEAZ0WMDAMAwQAnRYz
AwQBnRY4MAwDBACdFjsDBACdFkAwDAMEAZ0WQgMEAJ0WRAMEAZ0WRjAMAwQCnRZM
AwQAnRZgAwQBnRZiAwQBnRZoMAwDBACdFmsDBAKdFnAwDAMEAJ0WdQMEAJ0WdgME
Ap0WeAMEALA4JQMEALLUjwMEALkurwMEALlc0wMEALmhTwMEAMEhQgMEAME4HQME
AcIg7gMEAMI4tAMEAMNAbgMEAMNgkgMEANQSZzANBgkqhkiG9w0BAQsFAAOCAQEA
T4b6GhusGtsG4pO3qpckW7e/fiDe9NqdU/yzhVEm23DnH17SGpCOF+LxlbTOIWn9
io07N/8BIdWLoHbaY7TcVqmllGhygrthn7QPgwFn6+IXd/Qrc1EBDTHsEWTZF79X
yUPQzg3LGUGJ7Tiz7PVDLYAy1cxm+lg4xzLV5+hRwBowtrhYbtEK/Z3nMzt7rVBe
GV8QSvdr7cL40lbMvftfl/lbhpQ5KLZh1eSTSY5LPdpIB0cV6xyUEhO0PWDYkdyA
6lO6B8M3OrbI4bkGRFdbxitLgybGV7Gv6jVvOMhNlMOO16niqbd/SkWe5YU8MeJP
go5j8YqEiCTG1dnEL6CJRg==
-----END CERTIFICATE-----
Generated at Tue Jun 2 19:25:32 2026 by rpki-client