Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b-X8iMYQCUdQKqROHVVSQ4nJVy0.roa
File: b-X8iMYQCUdQKqROHVVSQ4nJVy0.roa (raw, json)
Hash identifier: RxXgfkq5rmJVroNgNOYeoI6+AqWRwgPDJW/KwX146tM=
Subject key identifier: 6F:E5:FC:88:C6:10:09:47:50:2A:A4:4E:1D:55:52:43:89:C9:57:2D
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019C47AAACD9D8963BF816F2229605A66604
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b-X8iMYQCUdQKqROHVVSQ4nJVy0.roa
Signing time: Tue 10 Feb 2026 13:08:13 +0000
ROA not before: Tue 10 Feb 2026 13:08:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 398704
IP address blocks: 147.90.0.0/24 maxlen: 24
147.90.3.0/24 maxlen: 24
147.90.6.0/24 maxlen: 24
147.90.9.0/24 maxlen: 24
147.90.11.0/24 maxlen: 24
147.90.12.0/24 maxlen: 24
147.90.14.0/24 maxlen: 24
147.90.17.0/24 maxlen: 24
147.90.20.0/24 maxlen: 24
147.90.25.0/24 maxlen: 24
147.90.33.0/24 maxlen: 24
147.90.49.0/24 maxlen: 24
147.90.70.0/24 maxlen: 24
147.90.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Feb 2026 21:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:47:aa:ac:d9:d8:96:3b:f8:16:f2:22:96:05:a6:66:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Feb 10 13:08:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6fe5fc88c6100947502aa44e1d55524389c9572d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:66:db:23:8b:be:30:c0:30:be:ea:06:17:55:
b4:d3:af:36:8c:58:43:cf:35:14:bb:42:bb:e9:54:
ea:98:07:09:70:ec:60:2e:f1:97:ff:b9:ac:7a:05:
5f:03:1e:64:37:e3:99:d9:31:01:8a:59:f6:e6:57:
87:c6:77:c9:28:50:ff:f0:a5:06:4e:37:aa:cc:54:
8c:32:6c:01:a3:8a:25:89:84:c4:53:4e:d1:c2:bf:
f2:85:3a:35:d9:45:b2:04:ee:98:52:0c:34:48:9e:
df:a5:f4:e6:90:46:d6:28:dd:3a:ee:89:89:40:ee:
93:89:2f:af:d1:1a:e5:e9:74:eb:30:32:50:52:54:
87:95:8b:08:09:b0:93:3d:5f:9f:da:f0:c5:aa:ec:
ac:61:5f:72:5e:c6:e6:28:93:ad:85:6d:bf:5a:8f:
17:78:67:29:10:3d:bd:d7:6a:4d:30:0f:df:a7:02:
db:9d:85:9e:40:a7:4a:d2:8f:a6:dd:eb:a5:64:3c:
52:d4:08:80:79:3a:fb:81:2d:bb:fe:93:2b:50:22:
51:28:69:f1:1b:f6:52:ab:83:3c:cf:af:34:79:48:
07:5d:52:04:36:00:2e:df:5c:99:65:3e:50:f4:51:
62:51:79:36:96:fd:7a:10:c1:3f:1b:14:e6:bf:bb:
ea:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E5:FC:88:C6:10:09:47:50:2A:A4:4E:1D:55:52:43:89:C9:57:2D
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b-X8iMYQCUdQKqROHVVSQ4nJVy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.90.0.0/24
147.90.3.0/24
147.90.6.0/24
147.90.9.0/24
147.90.11.0-147.90.12.255
147.90.14.0/24
147.90.17.0/24
147.90.20.0/24
147.90.25.0/24
147.90.33.0/24
147.90.49.0/24
147.90.70.0/24
147.90.127.0/24
Signature Algorithm: sha256WithRSAEncryption
e7:7d:63:5d:f0:77:40:e8:36:38:29:6a:d1:74:0a:50:f7:48:
8a:ba:ff:03:7d:36:b2:ce:80:a9:41:18:0c:47:9f:da:c5:9b:
02:79:a3:6e:fc:c6:61:e4:fe:c1:de:a4:c3:17:ae:bf:3d:69:
d0:36:05:43:50:ef:0c:cf:95:b0:dd:e2:11:3a:8f:27:0d:ff:
bf:31:02:3a:70:f8:53:d7:0b:59:bf:49:28:c8:4b:b4:ab:57:
17:d2:f5:4d:ea:7c:26:b0:e9:aa:d1:29:68:b0:9d:43:9a:5d:
e6:a7:0f:31:28:3e:2e:19:7a:85:48:8f:82:33:12:7e:01:6c:
9f:e3:ff:8e:d7:ee:eb:5e:fd:53:b6:0c:5d:ac:06:9c:e1:03:
cd:65:cf:f6:7c:a9:b5:99:09:27:6e:fa:8b:e7:03:a5:cf:15:
58:84:f4:96:f1:74:cf:56:50:6c:fa:2e:5e:58:c6:1a:dc:71:
7c:5b:9a:4e:3e:dc:a6:05:47:9a:99:e7:4b:56:01:41:8c:de:
6e:a4:72:33:c5:97:fd:aa:cd:62:9b:db:67:76:7e:40:13:b1:
f6:c3:47:26:2d:33:39:ba:6c:6c:cb:16:41:f5:9f:b3:96:4b:
77:d0:85:b3:3a:4d:9c:a6:ac:0e:a9:68:ca:76:34:73:46:fe:
8d:c6:e7:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 17 02:41:37 2026 by rpki-client