Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/VMEU_J3xEPuNJ2UxsjHQ72nOfdU.roa
File: VMEU_J3xEPuNJ2UxsjHQ72nOfdU.roa (raw, json)
Hash identifier: K9a3wN2OTXGh45Tfx2//EIUaOxzpOvvN/IvJo+N6QHk=
Subject key identifier: 54:C1:14:FC:9D:F1:10:FB:8D:27:65:31:B2:31:D0:EF:69:CE:7D:D5
Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b
Certificate serial: 019DE1219D4520E2D47DC907A700C52B46CA
Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/VMEU_J3xEPuNJ2UxsjHQ72nOfdU.roa
Signing time: Fri 01 May 2026 01:22:49 +0000
ROA not before: Fri 01 May 2026 01:22:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198186
IP address blocks: 2a06:9801:2bd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e1:21:9d:45:20:e2:d4:7d:c9:07:a7:00:c5:2b:46:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b
Validity
Not Before: May 1 01:22:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=54c114fc9df110fb8d276531b231d0ef69ce7dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:52:8f:37:a4:33:1d:ad:ef:42:fc:5c:3d:
7a:d3:93:db:56:e1:fa:0c:bd:78:4c:4f:7a:20:19:
d7:d3:09:ce:3f:6a:23:9b:14:10:87:a4:d6:ef:cb:
f2:0d:06:d1:ae:c3:75:09:8b:17:ce:5e:ad:d6:51:
49:b8:25:11:14:8e:67:2f:e9:7e:ec:ed:d2:c4:ad:
66:75:ac:cc:6c:db:1c:25:51:6d:64:dc:73:67:ea:
1c:7a:8f:64:39:1d:a8:c9:1a:e3:c8:ca:0a:26:26:
32:91:12:20:c5:ae:0f:5d:a4:75:b8:cd:25:99:68:
7a:41:50:71:ad:79:af:31:83:42:29:32:db:93:9a:
dc:52:5e:ad:37:c4:29:80:39:be:34:a2:9c:8f:c5:
6e:1f:82:44:57:fb:fe:11:1a:9a:4a:ca:5b:09:35:
16:4a:b5:4f:df:2d:3f:12:60:99:04:5b:e4:1f:62:
b1:bf:24:00:a6:ea:ee:b3:c9:03:61:c4:45:4e:56:
fb:78:ab:67:c1:f3:f8:c4:3d:62:fa:3b:dd:7f:b9:
4f:8f:0f:59:9c:7b:58:15:fe:6d:a6:5f:6e:2c:ad:
bd:ab:cf:1b:37:4d:b1:ee:de:9b:13:90:1c:5f:05:
42:f2:b8:74:fa:b9:95:6a:28:7a:e8:f7:5c:a5:59:
1e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C1:14:FC:9D:F1:10:FB:8D:27:65:31:B2:31:D0:EF:69:CE:7D:D5
X509v3 Authority Key Identifier:
keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/VMEU_J3xEPuNJ2UxsjHQ72nOfdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9801:2bd::/48
Signature Algorithm: sha256WithRSAEncryption
2d:c0:d4:1b:47:06:9a:8a:2b:59:99:f9:b1:ac:7a:a1:69:00:
b6:16:3a:a4:be:49:cf:54:e8:5d:ef:93:6a:6a:ad:09:2c:60:
00:1d:34:65:45:22:ca:9c:89:db:cb:9c:0f:6f:7c:45:6b:c8:
e2:30:a4:f9:04:9e:5d:18:cb:5a:6d:4c:88:4e:0e:19:a6:d1:
b8:05:82:cb:27:37:8d:93:8e:45:d3:8d:41:23:60:50:4b:41:
15:09:f8:84:6d:52:7f:4f:94:cc:44:f3:1f:52:00:aa:3e:2a:
62:2e:6c:cd:21:3f:5c:83:ab:13:56:6f:c9:3b:49:e3:04:06:
d1:4f:ae:20:b1:a3:68:f1:b2:32:8d:4e:d2:81:5e:fb:41:1e:
ad:f3:ec:0b:5f:30:ef:53:5b:51:66:65:5d:1d:d5:da:b9:ff:
1b:d6:55:be:4e:d9:a0:ab:4f:73:ea:d3:99:bb:53:be:a9:1f:
6f:f6:b2:0c:e5:fd:1f:19:50:ff:50:0d:92:be:ae:94:69:54:
ad:54:e1:30:a5:d1:b4:bf:98:80:39:e2:eb:5b:5f:32:28:0c:
d7:94:e1:d3:c8:e1:1d:c6:38:f9:61:11:d9:e3:7f:50:66:1d:
b8:d6:7e:24:ff:45:c8:8d:1b:3e:46:59:a9:f6:3a:fe:8c:97:
76:a5:e5:b5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZ3hIZ1FIOLUfckHpwDFK0bKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZDI0MjQxMjNlZDA3NzI1MzMwYmY4MTc5NDRmZDI3NmI3
Y2EzNmIwHhcNMjYwNTAxMDEyMjQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGMxMTRmYzlkZjExMGZiOGQyNzY1MzFiMjMxZDBlZjY5Y2U3ZGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzpSjzekMx2t70L8XD1605PbVuH6
DL14TE96IBnX0wnOP2ojmxQQh6TW78vyDQbRrsN1CYsXzl6t1lFJuCURFI5nL+l+
7O3SxK1mdazMbNscJVFtZNxzZ+oceo9kOR2oyRrjyMoKJiYykRIgxa4PXaR1uM0l
mWh6QVBxrXmvMYNCKTLbk5rcUl6tN8QpgDm+NKKcj8VuH4JEV/v+ERqaSspbCTUW
SrVP3y0/EmCZBFvkH2KxvyQApurus8kDYcRFTlb7eKtnwfP4xD1i+jvdf7lPjw9Z
nHtYFf5tpl9uLK29q88bN02x7t6bE5AcXwVC8rh0+rmVaih66PdcpVkeywIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFTBFPyd8RD7jSdlMbIx0O9pzn3VMB8GA1UdIwQY
MBaAFDHSQkEj7QdyUzC/gXlE/SdrfKNrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWRKQ1FTUHRCM0pUTUwtQmVVVDlKMnQ4bzJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8xYTZiMTctZTNmZS00YzZkLWI4YzEt
ZWQ4Y2ZhZjFiODFmLzEvVk1FVV9KM3hFUHVOSjJVeHNqSFE3Mm5PZmRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS8xYTZiMTctZTNmZS00YzZkLWI4YzEtZWQ4Y2ZhZjFiODFm
LzEvTWRKQ1FTUHRCM0pUTUwtQmVVVDlKMnQ4bzJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgaYAQK9
MA0GCSqGSIb3DQEBCwUAA4IBAQAtwNQbRwaaiitZmfmxrHqhaQC2FjqkvknPVOhd
75Nqaq0JLGAAHTRlRSLKnInby5wPb3xFa8jiMKT5BJ5dGMtabUyITg4ZptG4BYLL
JzeNk45F041BI2BQS0EVCfiEbVJ/T5TMRPMfUgCqPipiLmzNIT9cg6sTVm/JO0nj
BAbRT64gsaNo8bIyjU7SgV77QR6t8+wLXzDvU1tRZmVdHdXauf8b1lW+Ttmgq09z
6tOZu1O+qR9v9rIM5f0fGVD/UA2Svq6UaVStVOEwpdG0v5iAOeLrW18yKAzXlOHT
yOEdxjj5YRHZ439QZh241n4k/0XIjRs+Rlmp9jr+jJd2peW1
-----END CERTIFICATE-----
Generated at Wed May 13 14:09:58 2026 by rpki-client