Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/YbuC1bNZXVvgL4FjcHE-Hxau0bI.roa
File: YbuC1bNZXVvgL4FjcHE-Hxau0bI.roa (raw, json)
Hash identifier: VMAWXxm8m+lr90Os4J8wdRHpKQb82mpCrK1hI4HDfj4=
Subject key identifier: 61:BB:82:D5:B3:59:5D:5B:E0:2F:81:63:70:71:3E:1F:16:AE:D1:B2
Certificate issuer: /CN=51618df006d548d1d87ed6419550662db6fc0606
Certificate serial: 019F0D10DB48C7CE1BEE54AE703339DFC3B6
Authority key identifier: 51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/YbuC1bNZXVvgL4FjcHE-Hxau0bI.roa
Signing time: Sun 28 Jun 2026 07:10:36 +0000
ROA not before: Sun 28 Jun 2026 07:10:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 50427
IP address blocks: 176.116.184.0/21 maxlen: 23
176.116.184.0/22 maxlen: 23
176.116.184.0/23 maxlen: 23
176.116.186.0/23 maxlen: 23
176.116.188.0/22 maxlen: 23
176.116.188.0/23 maxlen: 23
176.116.190.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 01:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0d:10:db:48:c7:ce:1b:ee:54:ae:70:33:39:df:c3:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51618df006d548d1d87ed6419550662db6fc0606
Validity
Not Before: Jun 28 07:10:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=61bb82d5b3595d5be02f816370713e1f16aed1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:00:35:a4:07:1d:e4:dc:35:89:df:46:89:29:
27:a2:b5:20:0f:50:c1:11:12:ba:47:1c:e8:f3:e0:
5a:2a:d0:2f:1a:8e:23:53:45:6f:66:98:d2:bb:0a:
05:1e:f7:ca:79:60:87:14:50:8e:94:6d:60:00:ae:
5f:8f:e8:0d:73:bf:b7:ce:02:08:d8:31:8e:f1:90:
62:1f:d3:f1:51:15:71:13:1a:00:97:e3:9e:18:28:
82:0d:43:3c:2c:87:8e:7d:8c:27:f9:30:d1:f9:50:
e5:6c:92:e8:22:ab:7e:d5:68:dc:68:fb:40:3b:20:
5f:e1:2d:2b:95:26:a6:dd:4c:1d:df:56:a9:43:d6:
2c:00:35:4e:87:41:73:9d:c9:bb:3a:64:eb:20:2a:
6b:c1:9e:58:94:5b:27:c3:23:ce:90:c6:dd:ff:b9:
9e:4b:0e:60:20:d8:57:6d:70:8a:63:8b:e9:74:20:
00:f5:d8:7b:48:45:75:c8:fe:46:9e:72:ca:a2:2a:
fa:d2:41:f7:62:98:58:46:ea:21:44:77:a2:b3:14:
38:1e:a2:06:72:34:89:cd:1a:8c:97:df:37:2b:db:
b9:82:ab:21:13:a2:09:50:64:60:4a:de:ba:21:d4:
4e:9b:98:54:99:f1:93:23:6e:5e:5e:a9:ab:26:48:
cc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BB:82:D5:B3:59:5D:5B:E0:2F:81:63:70:71:3E:1F:16:AE:D1:B2
X509v3 Authority Key Identifier:
keyid:51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/YbuC1bNZXVvgL4FjcHE-Hxau0bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.184.0/21
Signature Algorithm: sha256WithRSAEncryption
97:a6:bc:da:36:6e:4f:a1:4e:1b:e4:e6:35:66:14:11:6f:bb:
2d:c4:61:f4:0f:4a:58:56:92:57:93:c6:07:a6:53:f2:8c:72:
0d:02:39:09:ea:23:78:e7:b8:0d:f4:c3:d3:4f:3b:f6:d3:4d:
10:d1:e9:ca:ad:b4:c4:4d:1e:55:74:a9:f8:6c:7b:bc:28:bf:
67:7e:c8:7b:72:96:72:38:b7:45:63:65:af:b9:4b:3a:b4:41:
97:ef:0b:d7:a1:9c:e5:e4:53:b5:41:cb:b6:85:a5:09:00:a1:
87:30:8e:2b:52:8d:71:77:a5:a6:e5:3c:b5:d9:a2:e5:71:04:
1d:47:8e:c3:14:f1:be:18:c0:2e:b7:84:62:54:19:db:55:e2:
f7:7d:59:17:a1:7e:37:3f:ee:01:6c:88:85:63:ef:72:3c:e0:
92:43:f8:09:3e:d1:51:15:e6:56:4e:7e:f4:ac:2b:15:8e:48:
4f:bb:35:3e:7a:b5:fa:b7:5f:55:35:27:92:e1:af:c3:a7:5d:
1f:eb:86:8d:8c:b4:5e:c3:fe:ec:23:b2:ef:6d:c6:e9:9d:48:
cd:da:32:5f:48:2a:3c:69:fd:f8:cd:23:69:72:3c:a2:ca:36:
1e:be:67:84:2c:4b:b7:6b:db:17:b0:92:11:5e:63:99:69:9c:
5b:64:ef:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ8NENtIx84b7lSucDM538O2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNjE4ZGYwMDZkNTQ4ZDFkODdlZDY0MTk1NTA2NjJkYjZm
YzA2MDYwHhcNMjYwNjI4MDcxMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWJiODJkNWIzNTk1ZDViZTAyZjgxNjM3MDcxM2UxZjE2YWVkMWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgA1pAcd5Nw1id9GiSknorUgD1DB
ERK6Rxzo8+BaKtAvGo4jU0VvZpjSuwoFHvfKeWCHFFCOlG1gAK5fj+gNc7+3zgII
2DGO8ZBiH9PxURVxExoAl+OeGCiCDUM8LIeOfYwn+TDR+VDlbJLoIqt+1WjcaPtA
OyBf4S0rlSam3Uwd31apQ9YsADVOh0Fzncm7OmTrICprwZ5YlFsnwyPOkMbd/7me
Sw5gINhXbXCKY4vpdCAA9dh7SEV1yP5GnnLKoir60kH3YphYRuohRHeisxQ4HqIG
cjSJzRqMl983K9u5gqshE6IJUGRgSt66IdROm5hUmfGTI25eXqmrJkjMHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGG7gtWzWV1b4C+BY3BxPh8WrtGyMB8GA1UdIwQY
MBaAFFFhjfAG1UjR2H7WQZVQZi22/AYGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEt
MzE3YzJmYjBhMzViLzEvWWJ1QzFiTlpYVnZnTDRGamNIRS1IeGF1MGJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEtMzE3YzJmYjBhMzVi
LzEvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsHS4MA0G
CSqGSIb3DQEBCwUAA4IBAQCXprzaNm5PoU4b5OY1ZhQRb7stxGH0D0pYVpJXk8YH
plPyjHINAjkJ6iN457gN9MPTTzv2000Q0enKrbTETR5VdKn4bHu8KL9nfsh7cpZy
OLdFY2WvuUs6tEGX7wvXoZzl5FO1Qcu2haUJAKGHMI4rUo1xd6Wm5Ty12aLlcQQd
R47DFPG+GMAut4RiVBnbVeL3fVkXoX43P+4BbIiFY+9yPOCSQ/gJPtFRFeZWTn70
rCsVjkhPuzU+erX6t19VNSeS4a/Dp10f64aNjLRew/7sI7LvbcbpnUjN2jJfSCo8
af34zSNpcjyiyjYevmeELEu3a9sXsJIRXmOZaZxbZO+/
-----END CERTIFICATE-----
Generated at Mon Jun 29 10:35:36 2026 by rpki-client