Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/jYV5i-ghvEsa_8WHfDKRCRh8rSw.roa
File: jYV5i-ghvEsa_8WHfDKRCRh8rSw.roa (raw, json)
Hash identifier: TeZqjSQVZRARr5uH+xA9B4pH1GT5J2Ndd1qtOuLeQZU=
Subject key identifier: 8D:85:79:8B:E8:21:BC:4B:1A:FF:C5:87:7C:32:91:09:18:7C:AD:2C
Certificate issuer: /CN=11a3864558bf42892bf9e5359bdb13f03b2527a9
Certificate serial: 019DB4430EEF3B5BF979748857D7F7004AC1
Authority key identifier: 11:A3:86:45:58:BF:42:89:2B:F9:E5:35:9B:DB:13:F0:3B:25:27:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaOGRVi_Qokr-eU1m9sT8DslJ6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/jYV5i-ghvEsa_8WHfDKRCRh8rSw.roa
Signing time: Wed 22 Apr 2026 08:16:26 +0000
ROA not before: Wed 22 Apr 2026 08:16:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 6823
IP address blocks: 37.202.48.0/21 maxlen: 21
37.202.48.0/24 maxlen: 24
37.202.49.0/24 maxlen: 24
37.202.50.0/24 maxlen: 24
37.202.51.0/24 maxlen: 24
37.202.52.0/24 maxlen: 24
37.202.53.0/24 maxlen: 24
37.202.54.0/24 maxlen: 24
37.202.55.0/24 maxlen: 24
178.251.40.0/21 maxlen: 21
178.251.40.0/24 maxlen: 24
178.251.41.0/24 maxlen: 24
178.251.42.0/24 maxlen: 24
178.251.43.0/24 maxlen: 24
178.251.44.0/24 maxlen: 24
178.251.45.0/24 maxlen: 24
178.251.46.0/24 maxlen: 24
178.251.47.0/24 maxlen: 24
2a01:6be0::/32 maxlen: 38
2a01:6be0::/38 maxlen: 38
2a01:6be0:400::/38 maxlen: 38
2a01:6be0:800::/38 maxlen: 38
2a01:6be0:c00::/38 maxlen: 38
2a01:6be0:1000::/38 maxlen: 38
2a01:6be0:1400::/38 maxlen: 38
2a01:6be0:1800::/38 maxlen: 38
2a01:6be0:1c00::/38 maxlen: 38
2a01:6be0:2000::/38 maxlen: 38
2a01:6be0:2400::/38 maxlen: 38
2a01:6be0:2800::/38 maxlen: 38
2a01:6be0:2c00::/38 maxlen: 38
2a01:6be0:3000::/38 maxlen: 38
2a01:6be0:3400::/38 maxlen: 38
2a01:6be0:3800::/38 maxlen: 38
2a01:6be0:3c00::/38 maxlen: 38
2a01:6be0:4000::/38 maxlen: 38
2a01:6be0:4400::/38 maxlen: 38
2a01:6be0:4800::/38 maxlen: 38
2a01:6be0:4c00::/38 maxlen: 38
2a01:6be0:5000::/38 maxlen: 38
2a01:6be0:5400::/38 maxlen: 38
2a01:6be0:5800::/38 maxlen: 38
2a01:6be0:5c00::/38 maxlen: 38
2a01:6be0:6000::/38 maxlen: 38
2a01:6be0:6400::/38 maxlen: 38
2a01:6be0:6800::/38 maxlen: 38
2a01:6be0:6c00::/38 maxlen: 38
2a01:6be0:7000::/38 maxlen: 38
2a01:6be0:7400::/38 maxlen: 38
2a01:6be0:7800::/38 maxlen: 38
2a01:6be0:7c00::/38 maxlen: 38
2a01:6be0:8000::/38 maxlen: 38
2a01:6be0:8400::/38 maxlen: 38
2a01:6be0:8800::/38 maxlen: 38
2a01:6be0:8c00::/38 maxlen: 38
2a01:6be0:9000::/38 maxlen: 38
2a01:6be0:9400::/38 maxlen: 38
2a01:6be0:9800::/38 maxlen: 38
2a01:6be0:9c00::/38 maxlen: 38
2a01:6be0:a000::/38 maxlen: 38
2a01:6be0:a400::/38 maxlen: 38
2a01:6be0:a800::/38 maxlen: 38
2a01:6be0:ac00::/38 maxlen: 38
2a01:6be0:b000::/38 maxlen: 38
2a01:6be0:b400::/38 maxlen: 38
2a01:6be0:b800::/38 maxlen: 38
2a01:6be0:bc00::/38 maxlen: 38
2a01:6be0:c000::/38 maxlen: 38
2a01:6be0:c400::/38 maxlen: 38
2a01:6be0:c800::/38 maxlen: 38
2a01:6be0:cc00::/38 maxlen: 38
2a01:6be0:d000::/38 maxlen: 38
2a01:6be0:d400::/38 maxlen: 38
2a01:6be0:d800::/38 maxlen: 38
2a01:6be0:dc00::/38 maxlen: 38
2a01:6be0:e000::/38 maxlen: 38
2a01:6be0:e400::/38 maxlen: 38
2a01:6be0:e800::/38 maxlen: 38
2a01:6be0:ec00::/38 maxlen: 38
2a01:6be0:f000::/38 maxlen: 38
2a01:6be0:f400::/38 maxlen: 38
2a01:6be0:f800::/38 maxlen: 38
2a01:6be0:fc00::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/EaOGRVi_Qokr-eU1m9sT8DslJ6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/EaOGRVi_Qokr-eU1m9sT8DslJ6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EaOGRVi_Qokr-eU1m9sT8DslJ6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b4:43:0e:ef:3b:5b:f9:79:74:88:57:d7:f7:00:4a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a3864558bf42892bf9e5359bdb13f03b2527a9
Validity
Not Before: Apr 22 08:16:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8d85798be821bc4b1affc5877c329109187cad2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:28:98:8b:b8:86:d5:50:47:f6:0f:db:4d:38:
52:d7:56:43:a7:2c:3a:91:ef:08:13:28:2a:14:0e:
c2:5c:a3:6a:9c:d2:f8:96:ad:df:70:25:ef:56:5a:
c2:f0:d9:cb:ee:b4:82:ce:8e:10:47:9b:76:35:26:
86:92:3b:44:1e:fd:71:95:15:d0:cd:b1:e7:25:c5:
92:53:2e:7c:3c:54:c7:dc:90:e9:63:60:78:ef:56:
69:41:91:c5:b4:d9:1c:6a:eb:de:a0:46:f1:26:01:
87:0b:f7:5a:9b:78:03:de:ba:f6:95:58:c7:cc:75:
51:60:3d:53:fd:ed:08:75:52:27:04:5f:ef:19:3a:
b7:33:6d:ca:99:46:00:c2:f9:db:17:b3:e7:74:17:
7b:99:b6:ab:ab:e6:d9:24:73:89:70:5a:89:bc:dc:
56:83:c2:a2:bd:0e:be:21:e5:a4:a6:c1:dd:c4:8d:
91:a7:67:2d:b8:b7:ac:7f:13:61:1b:41:ab:6d:3f:
62:c4:31:11:19:46:f8:3d:f7:b5:2b:a9:6e:91:80:
a0:a9:23:a9:9d:e5:c3:96:76:4c:3e:d9:85:cc:4b:
4f:e5:d5:43:69:ac:47:96:9c:fd:80:45:60:bc:a9:
e2:3e:1c:71:0b:29:24:4a:a7:f6:06:6b:10:70:60:
24:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:85:79:8B:E8:21:BC:4B:1A:FF:C5:87:7C:32:91:09:18:7C:AD:2C
X509v3 Authority Key Identifier:
keyid:11:A3:86:45:58:BF:42:89:2B:F9:E5:35:9B:DB:13:F0:3B:25:27:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaOGRVi_Qokr-eU1m9sT8DslJ6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/jYV5i-ghvEsa_8WHfDKRCRh8rSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/acd34b-357f-4307-83c0-0857e3ec03e0/1/EaOGRVi_Qokr-eU1m9sT8DslJ6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.48.0/21
178.251.40.0/21
IPv6:
2a01:6be0::/32
Signature Algorithm: sha256WithRSAEncryption
af:64:d1:59:9a:2c:48:33:c7:77:d4:79:fb:38:3a:64:37:7a:
8f:44:27:cf:9b:74:e5:4b:7e:f1:36:d0:6a:1b:ee:dc:68:52:
0b:fd:3c:06:cf:b2:d0:bb:5f:4b:cc:d9:e3:5e:a5:83:21:5c:
d9:71:71:96:5a:b2:39:f9:a3:65:3d:fc:bc:bb:88:0e:98:e6:
03:7a:63:1d:62:c7:3e:18:76:7e:5a:17:65:ba:f0:ce:d8:4b:
ce:50:5c:b7:b6:54:ba:c9:92:a7:35:5c:4d:28:8a:1c:66:34:
f0:3f:b5:8a:77:ea:fd:06:0f:7c:46:e2:27:03:7e:ad:9b:e7:
99:df:73:43:78:1f:46:cc:f3:67:f2:a5:cc:0a:ad:25:69:c9:
c2:ca:bb:ad:bb:13:e6:cd:50:f3:e8:e1:e7:20:c1:d4:38:3b:
2f:99:6a:97:cc:b0:20:90:fc:aa:59:55:96:31:ce:52:f0:4c:
f3:a9:e6:3e:ec:c7:d2:11:cf:fa:a2:bc:ec:aa:d1:61:43:9e:
fb:5d:9a:9c:e0:97:be:1b:93:0f:2a:0c:0f:88:f5:aa:4e:1a:
4a:44:7a:7b:34:6e:2c:68:de:93:d7:11:20:c5:c0:d0:b0:0a:
f7:b2:84:c7:87:1f:43:3f:f7:8f:32:96:01:51:b1:79:d1:3f:
c8:4c:f0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 13:18:46 2026 by rpki-client