Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/2wOulV0vAbQf8biJXAnQkgGArPI.roa
File: 2wOulV0vAbQf8biJXAnQkgGArPI.roa (raw, json)
Hash identifier: 7hYlyThHw9PBylpjQHX2//RefihYkxx++H9IszVVhRo=
Subject key identifier: DB:03:AE:95:5D:2F:01:B4:1F:F1:B8:89:5C:09:D0:92:01:80:AC:F2
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019C8B710A78121F82A6733B28692EE40613
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/2wOulV0vAbQf8biJXAnQkgGArPI.roa
Signing time: Mon 23 Feb 2026 16:59:27 +0000
ROA not before: Mon 23 Feb 2026 16:59:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201002
IP address blocks: 62.171.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.mft
rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Feb 2026 07:20:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:8b:71:0a:78:12:1f:82:a6:73:3b:28:69:2e:e4:06:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Feb 23 16:59:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=db03ae955d2f01b41ff1b8895c09d0920180acf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0c:67:15:6d:ad:d8:7e:85:a5:4a:55:33:af:
c2:98:6d:f8:31:66:a3:0e:49:fd:1d:0f:d6:ee:55:
9e:f6:35:65:a4:59:00:ae:72:41:dc:39:cb:15:0d:
9d:4a:b0:50:3b:cb:0b:be:20:88:cd:3d:8c:8d:88:
61:46:44:9e:1a:ca:cb:ac:dd:ef:40:92:35:07:8a:
15:ae:ed:bf:74:1e:ea:df:47:b4:ae:6a:db:47:2b:
c6:65:59:34:ad:7d:8b:37:a9:51:cf:62:d9:f7:7c:
b0:2b:99:36:80:1f:65:60:0f:3f:2a:53:07:b0:2a:
3d:f5:c7:ff:3d:ff:4b:84:14:ae:ef:45:8f:ba:0a:
08:de:90:27:ee:85:38:74:06:79:b6:c5:b9:cb:ce:
e8:81:6a:d8:0c:10:d5:44:7b:bc:4a:a3:f2:23:5b:
be:6b:9f:51:a9:4c:e6:75:fa:5f:fb:39:2f:92:e8:
ab:39:b9:30:eb:29:94:99:56:e8:48:a0:f3:c5:2d:
1c:91:d3:de:d9:1a:31:0b:fa:0a:2f:05:ba:df:96:
7a:38:be:bc:d2:3c:c2:4d:f1:8b:7c:fe:c4:82:56:
ea:2b:d6:02:e6:4c:79:9e:ff:01:be:e5:31:46:ff:
ad:dc:0f:3c:a3:20:cb:5c:63:e3:50:07:d0:1f:9a:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:03:AE:95:5D:2F:01:B4:1F:F1:B8:89:5C:09:D0:92:01:80:AC:F2
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/2wOulV0vAbQf8biJXAnQkgGArPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.251.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c4:8e:de:6a:ed:44:ff:64:45:f4:79:d6:16:f2:13:db:67:
d6:1d:25:2d:3e:cd:ba:e2:14:ba:5f:43:07:0c:33:00:97:9a:
af:0a:5b:33:91:79:18:08:5d:95:c3:aa:48:9e:52:20:91:8f:
c8:f1:22:ee:e8:38:b7:16:9c:b0:05:07:22:7a:0d:ad:99:17:
47:01:d0:4c:14:41:f8:28:a7:38:d1:f3:08:58:7c:cb:ff:b9:
6b:5d:a5:1f:12:70:f4:d0:ba:d6:35:89:f9:29:34:7f:f1:63:
82:60:89:02:b2:fd:a9:d2:24:d3:80:de:c3:0c:7a:28:e0:c7:
4a:5b:c4:dd:8a:80:13:79:6f:1b:74:6e:f5:c1:ca:d2:f7:70:
fc:c8:a3:0c:eb:95:6c:aa:db:43:8f:ca:7d:1a:c7:2a:a9:db:
02:ab:34:bb:ac:0e:2c:93:f1:e5:3e:c3:fa:49:b0:cd:ac:69:
51:1a:74:7d:27:f8:e3:9f:04:ee:b6:e0:db:7f:e2:59:c7:0c:
55:76:0a:6d:3e:c1:ea:4e:d5:1a:db:72:38:0b:cf:c1:98:89:
36:cc:86:ea:68:77:9f:f2:e8:78:f9:3d:73:f8:d8:83:0d:0f:
6b:67:15:e1:33:30:67:32:ca:82:d4:b2:34:a3:6b:7f:bc:46:
c6:b0:ff:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZyLcQp4Eh+CpnM7KGku5AYTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjYwMjIzMTY1OTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjAzYWU5NTVkMmYwMWI0MWZmMWI4ODk1YzA5ZDA5MjAxODBhY2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6AxnFW2t2H6FpUpVM6/CmG34MWaj
Dkn9HQ/W7lWe9jVlpFkArnJB3DnLFQ2dSrBQO8sLviCIzT2MjYhhRkSeGsrLrN3v
QJI1B4oVru2/dB7q30e0rmrbRyvGZVk0rX2LN6lRz2LZ93ywK5k2gB9lYA8/KlMH
sCo99cf/Pf9LhBSu70WPugoI3pAn7oU4dAZ5tsW5y87ogWrYDBDVRHu8SqPyI1u+
a59RqUzmdfpf+zkvkuirObkw6ymUmVboSKDzxS0ckdPe2RoxC/oKLwW635Z6OL68
0jzCTfGLfP7EglbqK9YC5kx5nv8BvuUxRv+t3A88oyDLXGPjUAfQH5p/NwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNsDrpVdLwG0H/G4iVwJ0JIBgKzyMB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvMndPdWxWMHZBYlFmOGJpSlhBblFrZ0dBclBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPqv7MA0G
CSqGSIb3DQEBCwUAA4IBAQB3xI7eau1E/2RF9HnWFvIT22fWHSUtPs264hS6X0MH
DDMAl5qvClszkXkYCF2Vw6pInlIgkY/I8SLu6Di3FpywBQcieg2tmRdHAdBMFEH4
KKc40fMIWHzL/7lrXaUfEnD00LrWNYn5KTR/8WOCYIkCsv2p0iTTgN7DDHoo4MdK
W8TdioATeW8bdG71wcrS93D8yKMM65VsqttDj8p9GscqqdsCqzS7rA4sk/HlPsP6
SbDNrGlRGnR9J/jjnwTutuDbf+JZxwxVdgptPsHqTtUa23I4C8/BmIk2zIbqaHef
8uh4+T1z+NiDDQ9rZxXhMzBnMsqC1LI0o2t/vEbGsP82
-----END CERTIFICATE-----
Generated at Tue Feb 24 16:17:02 2026 by rpki-client