Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y6MJfe_UUoFLM5jA5FdQfdDbIJI.roa
File: Y6MJfe_UUoFLM5jA5FdQfdDbIJI.roa (raw, json)
Hash identifier: iA8H5mH5QmUJUSsmVMoSYp5RGvKfD8R0loS5mW7v73g=
Subject key identifier: 63:A3:09:7D:EF:D4:52:81:4B:33:98:C0:E4:57:50:7D:D0:DB:20:92
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 019CBCFF7FF5BD5E8E1687DABD13563A2377
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y6MJfe_UUoFLM5jA5FdQfdDbIJI.roa
Signing time: Thu 05 Mar 2026 07:56:26 +0000
ROA not before: Thu 05 Mar 2026 07:56:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9123
IP address blocks: 83.217.200.0/24 maxlen: 32
83.217.201.0/24 maxlen: 32
83.217.202.0/24 maxlen: 32
83.217.203.0/24 maxlen: 32
83.217.220.0/24 maxlen: 32
83.217.221.0/24 maxlen: 32
83.217.223.0/24 maxlen: 32
85.198.80.0/24 maxlen: 32
85.198.81.0/24 maxlen: 32
85.198.82.0/24 maxlen: 32
85.198.83.0/24 maxlen: 32
89.169.0.0/24 maxlen: 32
89.169.1.0/24 maxlen: 32
89.169.2.0/24 maxlen: 32
89.169.3.0/24 maxlen: 32
89.169.44.0/24 maxlen: 32
89.169.45.0/24 maxlen: 32
89.169.46.0/24 maxlen: 32
89.169.47.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 13:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bc:ff:7f:f5:bd:5e:8e:16:87:da:bd:13:56:3a:23:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Mar 5 07:56:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=63a3097defd452814b3398c0e457507dd0db2092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0d:18:9d:46:37:2d:44:e1:0e:5c:c0:31:d3:
fd:f5:a2:13:75:eb:15:9e:74:06:43:26:fc:ee:79:
e0:b2:46:b0:9a:c2:a5:85:b1:a4:2e:90:3e:bd:72:
d3:46:cc:f6:03:e7:84:d2:a3:28:0f:46:48:27:f0:
c5:dc:05:24:e6:9b:62:2e:ab:2f:04:7e:79:1f:0f:
47:9b:6a:d3:49:db:78:2c:52:10:42:b2:48:66:2c:
8d:88:f4:a6:50:9b:6f:55:0b:d1:ad:1d:e3:71:ba:
cd:b7:61:b8:6b:7c:f9:b9:ee:d1:0d:2d:7d:d5:d7:
95:81:10:4b:7a:81:3d:0f:fc:e4:6b:54:da:cf:25:
ef:52:96:14:1a:dd:28:66:f8:fd:82:44:d8:f7:1a:
73:f4:46:7c:15:7f:eb:59:2d:ee:1a:c4:a5:7c:8b:
95:51:20:56:77:17:47:0c:75:64:52:bc:74:8f:b1:
c5:a6:09:10:63:0a:cb:ab:c5:3b:19:3e:df:75:22:
13:f1:5e:f0:23:91:8f:4d:9a:db:0d:3d:c3:f6:02:
76:7a:dd:2c:6e:f2:26:61:ba:f2:77:2a:e8:c8:b9:
78:71:d9:06:ce:7e:22:16:f5:9b:d9:70:01:d6:af:
e4:39:f6:70:a7:24:d0:fc:22:f3:67:ac:5c:0a:5f:
46:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A3:09:7D:EF:D4:52:81:4B:33:98:C0:E4:57:50:7D:D0:DB:20:92
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y6MJfe_UUoFLM5jA5FdQfdDbIJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.200.0/22
83.217.220.0/23
83.217.223.0/24
85.198.80.0/22
89.169.0.0/22
89.169.44.0/22
Signature Algorithm: sha256WithRSAEncryption
95:cb:60:e7:be:03:1d:3a:3a:3c:ad:4e:08:43:18:20:01:34:
83:e4:01:05:81:5f:28:e8:51:4a:cd:7d:bb:ee:b9:3a:51:62:
68:60:9b:db:fc:ea:5b:af:3a:25:d8:74:6f:98:c7:74:38:2d:
de:a5:43:83:09:7d:06:32:53:22:c8:35:58:f3:b9:d3:b3:5b:
4e:fb:80:5f:4a:0d:fd:3d:ee:bd:4e:e6:50:fa:dc:b8:4f:6c:
2a:15:76:19:e3:de:cf:09:1e:26:6b:0f:11:ee:5e:fe:ad:f9:
d9:5b:d3:f3:b5:62:aa:fe:a9:a0:36:26:0f:ee:29:07:ec:dd:
2f:15:5f:a1:81:fb:ec:0d:a2:cd:97:6f:49:a6:13:b4:84:03:
f2:cd:eb:92:5f:60:61:c7:dd:0a:59:b7:4a:81:2b:e2:b0:e7:
28:86:b8:ee:1d:6b:52:de:3d:fb:f3:a1:5b:63:87:1c:7f:1d:
71:82:e2:56:07:39:33:a0:8b:4a:65:38:c8:75:bc:67:6f:49:
e5:56:bf:e9:5b:a2:3f:9a:c6:23:6d:ff:a7:db:ce:d3:bc:87:
7f:58:b0:6f:2a:a0:77:b8:dd:ba:4a:40:17:09:28:99:87:82:
57:ee:d3:29:3d:a3:d6:a5:cd:b3:4f:b3:4d:4c:1f:d5:87:ba:
20:57:2f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 22:42:17 2026 by rpki-client