Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/endTU74Pqruhj_u-GscX6eV9TyY.roa
File: endTU74Pqruhj_u-GscX6eV9TyY.roa (raw, json)
Hash identifier: zGjt6sn8OMhgDdwNoCulMYtFuT4HYmb2TRwx99WkTWQ=
Subject key identifier: 7A:77:53:53:BE:0F:AA:BB:A1:8F:FB:BE:1A:C7:17:E9:E5:7D:4F:26
Certificate issuer: /CN=22877298dae5d5a3beabca16e92d1a141e948627
Certificate serial: 019ED9E9554D82E03331470D876140679D93
Authority key identifier: 22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/endTU74Pqruhj_u-GscX6eV9TyY.roa
Signing time: Thu 18 Jun 2026 08:46:48 +0000
ROA not before: Thu 18 Jun 2026 08:46:48 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62597
IP address blocks: 163.114.192.0/18 maxlen: 24
163.114.233.0/24 maxlen: 24
163.114.234.0/24 maxlen: 24
185.103.32.0/22 maxlen: 24
185.103.32.0/24 maxlen: 24
185.103.33.0/24 maxlen: 24
185.103.34.0/24 maxlen: 24
185.103.35.0/24 maxlen: 24
2a00:edc0::/32 maxlen: 32
2a00:edc0:100::/44 maxlen: 48
2a00:edc0:107::/48 maxlen: 48
2a00:edc0:10f::/48 maxlen: 48
2a00:edc0:136::/48 maxlen: 48
2a00:edc0:137::/48 maxlen: 48
2a00:edc0:1f0::/44 maxlen: 48
2a00:edc0:469::/48 maxlen: 48
2a00:edc0:1000::/48 maxlen: 48
2a00:edc0:1001::/48 maxlen: 48
2a00:edc0:1002::/48 maxlen: 48
2a00:edc0:1003::/48 maxlen: 48
2a00:edc0:1004::/48 maxlen: 48
2a00:edc0:1005::/48 maxlen: 48
2a00:edc0:1010::/48 maxlen: 48
2a00:edc0:6000::/48 maxlen: 48
2a00:edc0:6259::/48 maxlen: 48
2a00:edc0:7ffe::/48 maxlen: 48
2a00:edc0:7fff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 19:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d9:e9:55:4d:82:e0:33:31:47:0d:87:61:40:67:9d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22877298dae5d5a3beabca16e92d1a141e948627
Validity
Not Before: Jun 18 08:46:48 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7a775353be0faabba18ffbbe1ac717e9e57d4f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:97:06:3d:a0:32:4a:e4:39:c8:36:3f:93:be:
44:a6:5b:03:91:c1:75:c6:b8:d0:92:27:07:15:7d:
c3:b8:eb:86:8a:76:13:99:14:1a:d9:35:76:6d:88:
e6:99:6f:c5:e2:44:61:4c:3f:27:94:05:41:5c:1b:
d9:40:15:cf:c5:eb:64:05:14:7a:05:b8:ac:8a:d7:
9e:3e:63:45:87:45:82:b1:2b:cc:74:76:bb:f0:c2:
1a:51:2e:8d:b6:38:6d:3f:fb:a3:fa:3c:11:77:fa:
db:36:6e:b4:15:63:e1:d2:59:e7:0a:ca:6d:bc:f3:
54:d8:a7:5a:38:18:10:41:3f:04:83:3c:50:82:e0:
54:7f:e8:14:8f:85:74:1c:2b:46:07:9a:84:cb:5a:
2e:36:2f:cb:93:b9:8d:85:15:2b:00:c1:03:21:2a:
29:86:da:61:e5:9a:63:11:46:35:da:89:5c:96:f6:
f0:c6:a9:56:c8:9a:02:a2:94:d1:9c:ef:de:2c:fd:
c8:83:99:38:43:91:91:4c:74:f0:cd:d8:de:79:a4:
57:54:bb:fc:ba:9f:9d:e2:68:37:61:44:0e:44:07:
da:8d:95:1d:7f:30:21:0e:d2:af:c4:6d:fa:c4:de:
fc:9d:42:01:ea:35:5c:88:8e:e6:18:a9:b7:0b:ec:
37:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:77:53:53:BE:0F:AA:BB:A1:8F:FB:BE:1A:C7:17:E9:E5:7D:4F:26
X509v3 Authority Key Identifier:
keyid:22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/endTU74Pqruhj_u-GscX6eV9TyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.114.192.0/18
185.103.32.0/22
IPv6:
2a00:edc0::/32
Signature Algorithm: sha256WithRSAEncryption
b8:60:84:e0:a8:4b:1a:b2:ec:76:a2:07:66:da:a3:f3:ab:e5:
80:62:12:f4:e3:db:eb:14:ba:6f:e8:24:d2:88:7a:74:3c:1e:
21:75:ae:32:bf:c9:0d:6f:17:dd:7c:42:bf:16:b6:b1:8c:ad:
ec:60:b5:ed:4b:4f:e0:0a:51:58:ff:92:96:17:b9:22:8b:56:
65:d3:23:07:8a:98:cc:70:9d:c0:02:07:43:a3:d1:dc:17:c3:
52:33:10:bc:6d:43:59:0c:6f:28:d2:00:24:4b:9a:f4:3f:57:
75:63:f8:f5:ec:1d:bc:a0:e8:68:33:3d:f0:f3:0f:12:f5:6c:
b4:b7:40:73:7a:d3:ab:11:14:fe:fc:ca:9a:f1:2d:40:d3:5d:
39:95:f0:b4:10:de:a3:68:90:ec:db:e1:9a:d6:34:64:e4:2d:
10:c6:00:e6:77:06:d4:57:11:d6:1d:ed:81:91:a9:2d:ea:1e:
9e:7f:74:87:6e:b3:ac:2e:25:46:34:83:71:e9:53:d5:98:56:
8d:c7:e4:28:64:b1:1d:e1:8c:54:91:62:fc:12:fb:8b:70:1d:
47:07:38:eb:e5:3d:25:0b:0e:bb:b3:1f:7a:14:24:5f:0c:95:
79:2f:98:a1:fa:f1:a2:c8:26:73:71:d7:03:11:e3:c2:0c:b7:
93:08:11:68
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZ7Z6VVNguAzMUcNh2FAZ52TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyODc3Mjk4ZGFlNWQ1YTNiZWFiY2ExNmU5MmQxYTE0MWU5
NDg2MjcwHhcNMjYwNjE4MDg0NjQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTc3NTM1M2JlMGZhYWJiYTE4ZmZiYmUxYWM3MTdlOWU1N2Q0ZjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JcGPaAySuQ5yDY/k75EplsDkcF1
xrjQkicHFX3DuOuGinYTmRQa2TV2bYjmmW/F4kRhTD8nlAVBXBvZQBXPxetkBRR6
BbisiteePmNFh0WCsSvMdHa78MIaUS6NtjhtP/uj+jwRd/rbNm60FWPh0lnnCspt
vPNU2KdaOBgQQT8EgzxQguBUf+gUj4V0HCtGB5qEy1ouNi/Lk7mNhRUrAMEDISop
htph5ZpjEUY12olclvbwxqlWyJoCopTRnO/eLP3Ig5k4Q5GRTHTwzdjeeaRXVLv8
up+d4mg3YUQORAfajZUdfzAhDtKvxG36xN78nUIB6jVciI7mGKm3C+w3hQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFHp3U1O+D6q7oY/7vhrHF+nlfU8mMB8GA1UdIwQY
MBaAFCKHcpja5dWjvqvKFuktGhQelIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYt
NTkzM2EwOWY3MmQxLzEvZW5kVFU3NFBxcnVoal91LUdzY1g2ZVY5VHlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYtNTkzM2EwOWY3MmQx
LzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQGo3LAAwQC
uWcgMA0EAgACMAcDBQAqAO3AMA0GCSqGSIb3DQEBCwUAA4IBAQC4YITgqEsasux2
ogdm2qPzq+WAYhL049vrFLpv6CTSiHp0PB4hda4yv8kNbxfdfEK/FraxjK3sYLXt
S0/gClFY/5KWF7kii1Zl0yMHipjMcJ3AAgdDo9HcF8NSMxC8bUNZDG8o0gAkS5r0
P1d1Y/j17B28oOhoMz3w8w8S9Wy0t0BzetOrERT+/Mqa8S1A0105lfC0EN6jaJDs
2+Ga1jRk5C0QxgDmdwbUVxHWHe2Bkakt6h6ef3SHbrOsLiVGNINx6VPVmFaNx+Qo
ZLEd4YxUkWL8EvuLcB1HBzjr5T0lCw67sx96FCRfDJV5L5ih+vGiyCZzcdcDEePC
DLeTCBFo
-----END CERTIFICATE-----
Generated at Sat Jun 20 03:28:45 2026 by rpki-client