Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/by6PgfKx6r0iA9sakQ_mQlZhIjE.roa
File: by6PgfKx6r0iA9sakQ_mQlZhIjE.roa (raw, json)
Hash identifier: Uhu/uLqs47EpBujOBm5LFjgAdDSDE/iDcT0+vUSdsP8=
Subject key identifier: 6F:2E:8F:81:F2:B1:EA:BD:22:03:DB:1A:91:0F:E6:42:56:61:22:31
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019DB1896ED6A80007A6B48848EFBEC79854
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/by6PgfKx6r0iA9sakQ_mQlZhIjE.roa
Signing time: Tue 21 Apr 2026 19:34:27 +0000
ROA not before: Tue 21 Apr 2026 19:34:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402214
IP address blocks: 79.172.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:89:6e:d6:a8:00:07:a6:b4:88:48:ef:be:c7:98:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Apr 21 19:34:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6f2e8f81f2b1eabd2203db1a910fe64256612231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:27:e1:ef:7d:8b:84:be:a6:78:f8:1e:e2:
08:bc:ee:c2:de:e1:a8:cd:4b:e5:5e:6d:0e:09:56:
ab:56:bc:1b:8a:7f:49:26:87:95:ef:d7:b5:03:c8:
ad:8b:08:e0:58:a9:ed:58:19:51:3b:91:d7:8e:40:
c2:dc:e0:c9:c4:63:64:f1:01:51:20:ff:e4:48:f5:
ca:4a:f6:bb:ba:c7:08:f7:43:08:83:19:54:b4:fb:
5d:ec:90:83:38:0d:e5:be:f5:54:63:b5:ab:04:74:
4f:33:b1:20:b9:46:6d:21:61:31:94:c4:4e:71:a8:
19:8e:68:43:11:b4:e7:cf:a0:30:0f:be:18:ea:0e:
f9:d5:04:2c:5f:ca:bb:71:f1:e7:0d:27:d1:51:2b:
c9:b9:f5:99:e9:2e:3a:13:46:41:5e:d7:42:33:6a:
4e:68:30:ee:26:a6:cb:c0:25:16:54:54:1b:ee:99:
cb:a7:07:31:12:8a:ed:d4:50:ad:d5:a6:b4:4e:da:
ae:6d:c1:28:ad:27:48:79:21:47:e0:83:0d:8b:33:
26:9e:8a:fc:5d:28:3e:dd:67:47:9a:97:fc:52:2b:
bb:58:d9:e5:40:d6:38:1e:d9:d3:b1:82:b6:d7:b3:
48:30:67:ad:64:da:7c:06:d2:10:88:6c:d4:dc:f5:
ad:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2E:8F:81:F2:B1:EA:BD:22:03:DB:1A:91:0F:E6:42:56:61:22:31
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/by6PgfKx6r0iA9sakQ_mQlZhIjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.201.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:1d:db:1f:25:5a:22:79:5c:33:f7:72:86:ab:a8:5f:f3:5a:
d5:c8:3f:07:57:5c:ed:2f:8d:d4:d1:ab:a2:9e:c7:a9:d6:e5:
0e:5a:73:c0:67:10:10:5a:96:79:fa:1d:67:e3:48:d8:a0:da:
6c:3f:ff:68:96:e4:ea:95:dd:6d:50:a1:0b:fe:7d:f6:03:8e:
93:2d:5f:ef:ab:50:2e:55:b0:5e:7b:89:b1:92:2f:84:b4:c4:
1f:35:6f:f5:e2:fd:7d:72:64:76:ee:c4:08:8b:4d:0e:e1:57:
1e:8d:16:99:86:14:69:5e:ea:8a:d7:8b:d4:be:ee:a9:f1:4c:
2f:2e:a1:9a:8a:92:e3:5a:62:18:4f:37:4e:aa:e5:ce:65:9b:
bd:c6:08:1f:58:f4:5a:df:e8:3e:f6:b1:49:5c:f8:d3:fe:e1:
27:9c:e2:c9:c2:07:f0:10:4c:6d:71:39:3d:37:a3:f5:a8:61:
21:9d:84:dc:bb:9e:1c:05:71:b5:12:99:40:56:60:d8:98:5d:
a2:d2:3b:9b:8b:3c:05:1f:59:64:48:36:5d:d2:e8:ac:8c:2d:
43:1e:f0:38:f4:be:38:87:1b:65:0b:f6:19:19:74:11:c6:04:
bf:80:a4:fd:b8:be:e6:07:6f:da:99:5f:25:6b:3b:4a:8b:8d:
22:cf:4a:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ2xiW7WqAAHprSISO++x5hUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjYwNDIxMTkzNDI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjJlOGY4MWYyYjFlYWJkMjIwM2RiMWE5MTBmZTY0MjU2NjEyMjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFcn4e99i4S+pnj4HuIIvO7C3uGo
zUvlXm0OCVarVrwbin9JJoeV79e1A8itiwjgWKntWBlRO5HXjkDC3ODJxGNk8QFR
IP/kSPXKSva7uscI90MIgxlUtPtd7JCDOA3lvvVUY7WrBHRPM7EguUZtIWExlMRO
cagZjmhDEbTnz6AwD74Y6g751QQsX8q7cfHnDSfRUSvJufWZ6S46E0ZBXtdCM2pO
aDDuJqbLwCUWVFQb7pnLpwcxEort1FCt1aa0TtqubcEorSdIeSFH4IMNizMmnor8
XSg+3WdHmpf8Uiu7WNnlQNY4HtnTsYK217NIMGetZNp8BtIQiGzU3PWtaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG8uj4Hyseq9IgPbGpEP5kJWYSIxMB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvYnk2UGdmS3g2cjBpQTlzYWtRX21RbFpoSWpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT6zJMA0G
CSqGSIb3DQEBCwUAA4IBAQCgHdsfJVoieVwz93KGq6hf81rVyD8HV1ztL43U0aui
nsep1uUOWnPAZxAQWpZ5+h1n40jYoNpsP/9oluTqld1tUKEL/n32A46TLV/vq1Au
VbBee4mxki+EtMQfNW/14v19cmR27sQIi00O4VcejRaZhhRpXuqK14vUvu6p8Uwv
LqGaipLjWmIYTzdOquXOZZu9xggfWPRa3+g+9rFJXPjT/uEnnOLJwgfwEExtcTk9
N6P1qGEhnYTcu54cBXG1EplAVmDYmF2i0jubizwFH1lkSDZd0uisjC1DHvA49L44
hxtlC/YZGXQRxgS/gKT9uL7mB2/amV8laztKi40iz0r9
-----END CERTIFICATE-----
Generated at Sun May 3 18:35:50 2026 by rpki-client