Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/WODvyd1Urc09swV-bzFT90jl_oA.roa
File: WODvyd1Urc09swV-bzFT90jl_oA.roa (raw, json)
Hash identifier: BrwgptZSOBWMGy/JKyCPnz2s/IK94wyZNhqjfyUlkXc=
Subject key identifier: 58:E0:EF:C9:DD:54:AD:CD:3D:B3:05:7E:6F:31:53:F7:48:E5:FE:80
Certificate issuer: /CN=6f9e9696dccf6c1a432090408514aecdc3f60739
Certificate serial: 019E834747B3DC506BA15E19B624D23CB916
Authority key identifier: 6F:9E:96:96:DC:CF:6C:1A:43:20:90:40:85:14:AE:CD:C3:F6:07:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/WODvyd1Urc09swV-bzFT90jl_oA.roa
Signing time: Mon 01 Jun 2026 13:02:27 +0000
ROA not before: Mon 01 Jun 2026 13:02:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8308
IP address blocks: 194.92.0.0/16 maxlen: 16
194.92.32.0/24 maxlen: 24
194.92.33.0/24 maxlen: 24
194.92.34.0/24 maxlen: 24
194.92.35.0/24 maxlen: 24
194.92.36.0/24 maxlen: 24
194.92.37.0/24 maxlen: 24
194.92.38.0/24 maxlen: 24
194.92.39.0/24 maxlen: 24
194.92.40.0/24 maxlen: 24
194.92.41.0/24 maxlen: 24
194.92.42.0/24 maxlen: 24
194.92.43.0/24 maxlen: 24
194.92.44.0/24 maxlen: 24
194.92.45.0/24 maxlen: 24
194.92.46.0/24 maxlen: 24
194.92.47.0/24 maxlen: 24
194.92.48.0/24 maxlen: 24
194.92.49.0/24 maxlen: 24
194.92.50.0/24 maxlen: 24
194.92.51.0/24 maxlen: 24
194.92.52.0/24 maxlen: 24
194.92.53.0/24 maxlen: 24
194.92.54.0/24 maxlen: 24
194.92.55.0/24 maxlen: 24
194.92.56.0/24 maxlen: 24
194.92.57.0/24 maxlen: 24
194.92.58.0/24 maxlen: 24
194.92.59.0/24 maxlen: 24
194.92.60.0/24 maxlen: 24
194.92.61.0/24 maxlen: 24
194.92.62.0/24 maxlen: 24
194.92.63.0/24 maxlen: 24
194.92.77.0/24 maxlen: 24
194.92.102.0/24 maxlen: 24
2a0a:3a40::/32 maxlen: 32
2a0a:3a40:1004::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 16:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:83:47:47:b3:dc:50:6b:a1:5e:19:b6:24:d2:3c:b9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f9e9696dccf6c1a432090408514aecdc3f60739
Validity
Not Before: Jun 1 13:02:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=58e0efc9dd54adcd3db3057e6f3153f748e5fe80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fd:08:d7:27:fc:cf:90:ca:6e:54:7b:b3:58:
f8:15:20:5c:51:14:48:cd:1a:82:32:d7:e6:60:a9:
c4:7b:e3:08:df:66:fa:93:89:e1:8a:66:76:86:4b:
58:ee:06:eb:82:47:b4:21:e5:0e:fd:34:33:31:74:
5c:7c:ee:b2:d8:18:99:23:d8:ee:ef:e3:1a:03:34:
ba:2d:86:76:b2:de:75:ef:41:db:5b:c4:67:53:57:
fd:e6:6f:84:ea:fa:df:23:86:76:ba:01:89:f6:1e:
db:cf:58:2f:56:71:8c:fa:e3:93:7a:e0:99:fb:91:
a0:95:d9:df:08:e8:47:dc:03:c7:96:84:e9:70:48:
be:9e:af:29:36:02:82:23:4f:ae:b4:8b:72:e6:c1:
61:9b:0f:cf:e5:7b:fb:c3:18:c3:c5:52:a1:22:40:
7f:63:56:c3:a1:78:bb:21:0a:81:56:20:3d:83:04:
11:0f:47:18:62:a8:28:c5:25:30:ec:3b:c2:26:53:
32:72:86:c3:49:d6:6c:16:1e:0c:5a:aa:19:4c:a3:
8d:1e:95:b6:2d:72:80:4e:1f:e5:46:f3:f5:98:17:
42:fc:c5:ec:38:b6:8f:23:ed:4b:1b:8c:00:f5:ad:
7c:06:7c:64:3f:64:71:db:7c:70:50:53:e0:9d:c7:
82:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E0:EF:C9:DD:54:AD:CD:3D:B3:05:7E:6F:31:53:F7:48:E5:FE:80
X509v3 Authority Key Identifier:
keyid:6F:9E:96:96:DC:CF:6C:1A:43:20:90:40:85:14:AE:CD:C3:F6:07:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/WODvyd1Urc09swV-bzFT90jl_oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.92.0.0/16
IPv6:
2a0a:3a40::/32
Signature Algorithm: sha256WithRSAEncryption
07:e0:19:51:b1:1a:c9:c3:d7:ed:9b:c8:85:83:5a:ef:6c:84:
c4:b4:60:79:42:09:b4:a6:4b:d9:09:ba:11:e0:77:a4:ff:93:
f9:88:46:6f:48:16:1e:30:8e:39:02:88:7f:3c:6c:f4:e7:d9:
18:33:95:c4:e3:05:3e:33:5c:cf:78:de:b0:48:7f:4a:a1:70:
09:07:e0:9c:10:0e:5d:a9:24:4c:43:94:b9:f5:b6:17:d8:43:
5c:8d:0f:13:f8:5f:87:b9:82:78:a9:48:d4:4e:7f:85:af:8c:
ba:73:8a:14:e7:a7:6a:35:e7:95:f8:83:22:5e:00:8e:19:00:
89:06:51:fb:54:41:0e:74:54:0e:48:f7:cb:6d:8d:74:25:35:
b4:f3:83:15:0d:10:17:83:28:8b:0f:0c:f2:97:31:7b:67:d4:
80:78:e5:67:d5:99:be:d0:54:53:89:7d:19:98:71:61:13:15:
fd:a4:d1:6d:33:5b:b2:8f:a9:a7:80:ee:3f:a7:0b:96:fb:c1:
8e:41:36:9f:18:cb:fa:8c:51:c8:c8:74:28:b2:06:ee:c5:8f:
68:aa:f8:64:4e:5c:b0:29:cf:33:84:30:b5:18:f8:9c:62:ca:
db:b9:0f:7e:56:64:ef:76:8a:88:34:25:1a:63:41:10:4b:97:
1f:fb:2a:84
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZ6DR0ez3FBroV4ZtiTSPLkWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmOWU5Njk2ZGNjZjZjMWE0MzIwOTA0MDg1MTRhZWNkYzNm
NjA3MzkwHhcNMjYwNjAxMTMwMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGUwZWZjOWRkNTRhZGNkM2RiMzA1N2U2ZjMxNTNmNzQ4ZTVmZTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf0I1yf8z5DKblR7s1j4FSBcURRI
zRqCMtfmYKnEe+MI32b6k4nhimZ2hktY7gbrgke0IeUO/TQzMXRcfO6y2BiZI9ju
7+MaAzS6LYZ2st5170HbW8RnU1f95m+E6vrfI4Z2ugGJ9h7bz1gvVnGM+uOTeuCZ
+5GgldnfCOhH3APHloTpcEi+nq8pNgKCI0+utIty5sFhmw/P5Xv7wxjDxVKhIkB/
Y1bDoXi7IQqBViA9gwQRD0cYYqgoxSUw7DvCJlMycobDSdZsFh4MWqoZTKONHpW2
LXKATh/lRvP1mBdC/MXsOLaPI+1LG4wA9a18BnxkP2Rx23xwUFPgnceCiwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFFjg78ndVK3NPbMFfm8xU/dI5f6AMB8GA1UdIwQY
MBaAFG+elpbcz2waQyCQQIUUrs3D9gc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjU2V2x0elBiQnBESUpCQWhSU3V6Y1AyQnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS81N2NkNzItMzNlNC00MmRkLTlmMjIt
YmFmNGUwYjRhNjllLzEvV09EdnlkMVVyYzA5c3dWLWJ6RlQ5MGpsX29BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS81N2NkNzItMzNlNC00MmRkLTlmMjItYmFmNGUwYjRhNjll
LzEvYjU2V2x0elBiQnBESUpCQWhSU3V6Y1AyQnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDALBAIAATAFAwMAwlwwDQQC
AAIwBwMFACoKOkAwDQYJKoZIhvcNAQELBQADggEBAAfgGVGxGsnD1+2byIWDWu9s
hMS0YHlCCbSmS9kJuhHgd6T/k/mIRm9IFh4wjjkCiH88bPTn2RgzlcTjBT4zXM94
3rBIf0qhcAkH4JwQDl2pJExDlLn1thfYQ1yNDxP4X4e5gnipSNROf4WvjLpzihTn
p2o155X4gyJeAI4ZAIkGUftUQQ50VA5I98ttjXQlNbTzgxUNEBeDKIsPDPKXMXtn
1IB45WfVmb7QVFOJfRmYcWETFf2k0W0zW7KPqaeA7j+nC5b7wY5BNp8Yy/qMUcjI
dCiyBu7Fj2iq+GROXLApzzOEMLUY+Jxiytu5D35WZO92iog0JRpjQRBLlx/7KoQ=
-----END CERTIFICATE-----
Generated at Fri Jun 12 02:40:47 2026 by rpki-client