Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/W8jFzpVlT3G0J-f67kc_XkU65MI.roa
File: W8jFzpVlT3G0J-f67kc_XkU65MI.roa (raw, json)
Hash identifier: 3A1Oo0+cI1hcE3a6dsrz8hMoibZF7VUDUxyseCxu340=
Subject key identifier: 5B:C8:C5:CE:95:65:4F:71:B4:27:E7:FA:EE:47:3F:5E:45:3A:E4:C2
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 019DC949711BCD7CC6554F4BCC899917175A
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/W8jFzpVlT3G0J-f67kc_XkU65MI.roa
Signing time: Sun 26 Apr 2026 10:15:26 +0000
ROA not before: Sun 26 Apr 2026 10:15:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208185
IP address blocks: 77.47.142.0/24 maxlen: 24
77.47.152.0/24 maxlen: 24
77.47.153.0/24 maxlen: 24
77.47.154.0/24 maxlen: 24
77.47.155.0/24 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.248.0/22 maxlen: 24
77.47.248.0/24 maxlen: 24
77.47.249.0/24 maxlen: 24
77.47.250.0/24 maxlen: 24
77.47.251.0/24 maxlen: 24
195.178.128.0/24 maxlen: 24
195.178.129.0/24 maxlen: 24
195.178.130.0/24 maxlen: 24
195.178.131.0/24 maxlen: 24
195.178.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c9:49:71:1b:cd:7c:c6:55:4f:4b:cc:89:99:17:17:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 26 10:15:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5bc8c5ce95654f71b427e7faee473f5e453ae4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:78:a3:52:d6:89:67:e4:9d:b6:e1:2f:b2:3c:
cb:39:77:dd:11:f3:7e:71:60:5f:12:47:53:74:ee:
25:46:84:65:7c:8b:f5:ac:f6:8a:f9:75:5d:1d:c3:
92:15:85:dd:23:88:14:00:cc:95:9c:a6:a9:fe:73:
a8:d6:b4:52:af:ab:41:36:48:19:b6:f3:a2:18:f4:
f6:2f:c8:eb:73:f3:1f:2f:55:87:6e:6c:47:af:99:
1f:84:2f:da:dc:f2:aa:b5:82:19:b5:aa:de:b4:72:
c5:04:2f:fe:43:6f:a8:e6:e5:09:00:66:d7:2f:8e:
34:c3:74:bb:59:5e:bc:eb:a5:5c:52:7d:81:9d:f3:
8d:e0:fb:f3:1d:e0:84:94:92:7c:8b:48:26:0b:71:
21:37:62:85:9b:af:45:be:3f:af:06:f0:bc:f6:0a:
7b:e7:bf:09:9d:ce:94:2b:59:67:85:4d:24:61:99:
2d:f5:59:29:93:bd:d0:55:63:7a:81:21:a2:b0:af:
23:07:44:3d:bb:9f:9b:25:3e:81:03:a2:ec:45:74:
80:b1:ac:52:b1:1d:1f:24:a3:dc:50:64:9d:4a:76:
fb:ba:ce:b6:fc:5d:be:cc:0e:fb:8c:7c:3d:df:55:
9b:8b:dc:82:f5:c4:c4:c5:c7:9c:a4:17:a9:da:91:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C8:C5:CE:95:65:4F:71:B4:27:E7:FA:EE:47:3F:5E:45:3A:E4:C2
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/W8jFzpVlT3G0J-f67kc_XkU65MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.142.0/24
77.47.152.0/22
77.47.178.0/24
77.47.248.0/22
195.178.128.0/22
195.178.148.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:e9:07:91:f5:4b:84:ca:ee:bb:2c:67:80:85:c9:82:24:
2d:4c:ba:cf:fc:b4:24:d4:97:1e:80:4d:d9:68:5f:16:b6:be:
14:86:01:f8:51:58:fa:b2:50:34:90:00:3f:e5:0e:15:1f:95:
bd:b3:23:bc:c7:f5:53:54:c7:31:92:6a:51:f1:85:ec:f9:03:
d6:8b:1d:4e:a9:2a:f0:dd:57:0c:fa:8a:f1:1d:80:48:8a:f2:
e3:28:64:ce:5b:01:2a:0a:6b:d9:5b:f5:dd:a6:33:fa:26:2b:
12:b6:33:ba:41:67:24:13:9c:ea:4b:ae:78:4f:ae:d3:5d:4b:
ad:ee:57:af:d2:ca:71:3a:b7:70:7b:0f:81:a1:db:2b:a0:be:
aa:7b:1b:a6:49:a1:2d:94:ff:e6:d6:2d:d3:f5:5b:fd:aa:49:
7b:70:b0:4d:84:0d:dd:84:05:7f:db:be:74:cc:5f:83:f5:ef:
4e:52:44:bf:02:54:84:33:a9:be:11:ec:00:c7:3a:74:cb:e2:
28:8f:61:79:b8:cc:23:6e:dc:63:8d:10:83:96:a9:3a:df:30:
c8:ee:4a:63:0a:ce:a2:55:96:69:c2:35:84:07:cb:c6:aa:8d:
23:77:6a:d8:c3:46:7f:72:8d:18:cc:ee:89:00:70:a4:f6:7d:
81:99:f7:1a
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZ3JSXEbzXzGVU9LzImZFxdaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjYwNDI2MTAxNTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmM4YzVjZTk1NjU0ZjcxYjQyN2U3ZmFlZTQ3M2Y1ZTQ1M2FlNGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXijUtaJZ+SdtuEvsjzLOXfdEfN+
cWBfEkdTdO4lRoRlfIv1rPaK+XVdHcOSFYXdI4gUAMyVnKap/nOo1rRSr6tBNkgZ
tvOiGPT2L8jrc/MfL1WHbmxHr5kfhC/a3PKqtYIZtaretHLFBC/+Q2+o5uUJAGbX
L440w3S7WV6866VcUn2BnfON4PvzHeCElJJ8i0gmC3EhN2KFm69Fvj+vBvC89gp7
578Jnc6UK1lnhU0kYZkt9Vkpk73QVWN6gSGisK8jB0Q9u5+bJT6BA6LsRXSAsaxS
sR0fJKPcUGSdSnb7us62/F2+zA77jHw931Wbi9yC9cTExcecpBep2pEwoQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFFvIxc6VZU9xtCfn+u5HP15FOuTCMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvVzhqRnpwVmxUM0cwSi1mNjdrY19Ya1U2NU1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQATS+OAwQC
TS+YAwQATS+yAwQCTS/4AwQCw7KAAwQAw7KUMA0GCSqGSIb3DQEBCwUAA4IBAQAx
5ekHkfVLhMruuyxngIXJgiQtTLrP/LQk1JcegE3ZaF8Wtr4UhgH4UVj6slA0kAA/
5Q4VH5W9syO8x/VTVMcxkmpR8YXs+QPWix1OqSrw3VcM+orxHYBIivLjKGTOWwEq
CmvZW/XdpjP6JisStjO6QWckE5zqS654T67TXUut7lev0spxOrdwew+BodsroL6q
exumSaEtlP/m1i3T9Vv9qkl7cLBNhA3dhAV/2750zF+D9e9OUkS/AlSEM6m+EewA
xzp0y+Ioj2F5uMwjbtxjjRCDlqk63zDI7kpjCs6iVZZpwjWEB8vGqo0jd2rYw0Z/
co0YzO6JAHCk9n2Bmfca
-----END CERTIFICATE-----
Generated at Mon Apr 27 15:44:36 2026 by rpki-client