Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/L_8VGeJQdF_VAVZO8sFF6rx2A8Y.roa
File: L_8VGeJQdF_VAVZO8sFF6rx2A8Y.roa (raw, json)
Hash identifier: SD12zScUzANo1SQU7/4Djskt9BjeXHoqzyp+1DkX4SA=
Subject key identifier: 2F:FF:15:19:E2:50:74:5F:D5:01:56:4E:F2:C1:45:EA:BC:76:03:C6
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019E83DC843DFF2849A914DA660DBA6C62B0
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/L_8VGeJQdF_VAVZO8sFF6rx2A8Y.roa
Signing time: Mon 01 Jun 2026 15:45:27 +0000
ROA not before: Mon 01 Jun 2026 15:45:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9304
IP address blocks: 82.108.196.0/23 maxlen: 24
82.108.216.0/22 maxlen: 24
82.109.186.0/23 maxlen: 24
82.110.106.0/23 maxlen: 24
87.82.233.0/24 maxlen: 24
87.82.234.0/24 maxlen: 24
87.83.46.0/23 maxlen: 24
87.83.171.0/24 maxlen: 24
87.83.172.0/23 maxlen: 24
87.83.233.0/24 maxlen: 24
87.83.234.0/24 maxlen: 24
87.84.77.0/24 maxlen: 24
87.84.188.0/22 maxlen: 24
87.84.216.0/24 maxlen: 24
87.84.217.0/24 maxlen: 24
87.84.221.0/24 maxlen: 24
87.84.222.0/23 maxlen: 24
87.84.233.0/24 maxlen: 24
87.84.234.0/24 maxlen: 24
87.84.238.0/24 maxlen: 24
87.85.136.0/24 maxlen: 24
87.85.137.0/24 maxlen: 24
87.85.141.0/24 maxlen: 24
87.85.142.0/24 maxlen: 24
87.86.252.0/24 maxlen: 24
109.204.104.0/21 maxlen: 24
212.134.38.0/24 maxlen: 24
212.134.59.0/24 maxlen: 24
212.134.116.0/22 maxlen: 24
212.134.158.0/24 maxlen: 24
212.134.160.0/23 maxlen: 24
212.134.192.0/22 maxlen: 24
212.135.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 13:49:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:83:dc:84:3d:ff:28:49:a9:14:da:66:0d:ba:6c:62:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Jun 1 15:45:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2fff1519e250745fd501564ef2c145eabc7603c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:60:d6:15:36:8f:87:b6:c9:4b:79:37:8c:13:
ad:4c:73:ad:45:29:f4:c7:ee:35:8a:27:92:20:58:
0e:3c:54:40:bc:aa:54:03:13:7e:59:e1:d3:92:0a:
17:b9:45:da:95:63:bd:8e:b6:7d:ba:58:79:c2:06:
f1:b7:4d:25:7c:ae:69:63:0d:52:7f:5e:3c:b9:77:
b8:77:c9:6c:f8:e1:e2:b2:a1:ac:a6:ea:ee:19:27:
9d:d3:c8:de:08:f4:ea:e4:78:4d:ce:66:d8:5a:3c:
52:eb:b2:98:43:5b:22:0c:0f:87:d3:f1:35:35:25:
70:2e:3f:07:ac:1a:2f:75:24:fb:86:6c:32:31:8f:
ee:14:84:40:fa:35:ab:c3:87:fd:d4:36:bd:30:35:
b6:3b:6c:0e:5a:88:9a:40:c3:90:ef:a5:0e:93:e2:
26:7c:21:2f:6e:47:dd:a4:12:94:cd:c0:99:68:6d:
6a:c0:36:d8:61:f6:c9:db:5d:39:52:f7:e3:a6:75:
37:b0:db:d5:49:1c:62:6a:d2:5b:fe:06:79:c9:3f:
70:8c:cd:ea:36:92:2c:43:bf:23:44:04:92:64:c1:
78:13:1e:4d:bf:56:12:31:7d:93:62:f6:db:9e:81:
e7:a4:90:c7:13:76:c1:2b:af:79:44:a1:60:47:85:
84:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FF:15:19:E2:50:74:5F:D5:01:56:4E:F2:C1:45:EA:BC:76:03:C6
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/L_8VGeJQdF_VAVZO8sFF6rx2A8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.108.196.0/23
82.108.216.0/22
82.109.186.0/23
82.110.106.0/23
87.82.233.0-87.82.234.255
87.83.46.0/23
87.83.171.0-87.83.173.255
87.83.233.0-87.83.234.255
87.84.77.0/24
87.84.188.0/22
87.84.216.0/23
87.84.221.0-87.84.223.255
87.84.233.0-87.84.234.255
87.84.238.0/24
87.85.136.0/23
87.85.141.0-87.85.142.255
87.86.252.0/24
109.204.104.0/21
212.134.38.0/24
212.134.59.0/24
212.134.116.0/22
212.134.158.0/24
212.134.160.0/23
212.134.192.0/22
212.135.159.0/24
Signature Algorithm: sha256WithRSAEncryption
35:db:8a:40:c4:fe:d2:36:cd:c3:cd:52:de:73:fc:86:c4:bd:
45:b1:7a:f5:9f:1c:83:61:5e:d3:81:7f:39:b0:2f:00:39:9a:
e4:7e:b8:07:90:30:fb:ce:2a:b5:0a:9f:d4:50:0e:95:90:fa:
bb:5b:4e:6f:63:16:ad:eb:72:86:ba:55:94:b1:cf:2f:77:81:
86:33:46:7e:94:ac:a9:0c:a4:2d:58:8f:5e:c0:ff:cf:33:28:
42:2d:54:c2:c3:1f:67:00:83:05:90:1d:4f:f0:30:20:43:38:
fa:35:a5:c5:f2:f4:8a:48:25:34:a9:9e:cc:bc:48:ea:3c:1d:
75:01:65:4e:02:73:db:b2:a0:e5:9b:7f:ec:b7:08:15:c7:eb:
4f:e6:cf:67:34:b5:07:b3:33:00:6d:7e:11:84:81:21:5a:e5:
5a:f9:2a:b1:fc:2e:1a:cc:31:9c:fd:b0:83:e5:6d:f8:88:c4:
ba:e6:e2:ee:c8:14:f7:c6:d1:be:60:27:72:81:ff:e1:2c:04:
15:aa:18:c1:22:be:85:62:04:03:8f:a4:20:48:a5:7b:ef:6d:
c9:34:17:83:2b:d8:1b:68:96:d7:19:d8:ee:36:08:c3:29:ba:
ee:e6:11:0e:43:09:96:33:d6:85:a8:94:4f:b8:29:cc:c9:06:
00:e4:23:97
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAZ6D3IQ9/yhJqRTaZg26bGKwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3
NjUwMjkwHhcNMjYwNjAxMTU0NTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmZmMTUxOWUyNTA3NDVmZDUwMTU2NGVmMmMxNDVlYWJjNzYwM2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2DWFTaPh7bJS3k3jBOtTHOtRSn0
x+41iieSIFgOPFRAvKpUAxN+WeHTkgoXuUXalWO9jrZ9ulh5wgbxt00lfK5pYw1S
f148uXe4d8ls+OHisqGspuruGSed08jeCPTq5HhNzmbYWjxS67KYQ1siDA+H0/E1
NSVwLj8HrBovdST7hmwyMY/uFIRA+jWrw4f91Da9MDW2O2wOWoiaQMOQ76UOk+Im
fCEvbkfdpBKUzcCZaG1qwDbYYfbJ2105UvfjpnU3sNvVSRxiatJb/gZ5yT9wjM3q
NpIsQ78jRASSZMF4Ex5Nv1YSMX2TYvbbnoHnpJDHE3bBK695RKFgR4WEQwIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFC//FRniUHRf1QFWTvLBReq8dgPGMB8GA1UdIwQY
MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt
MDM1ZDk3N2Y0MjE2LzEvTF84VkdlSlFkRl9WQVZaTzhzRkY2cngyQThZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2
LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DCBzQQCAAEwgcYDBAFS
bMQDBAJSbNgDBAFSbboDBAFSbmowDAMEAFdS6QMEAFdS6gMEAVdTLjAMAwQAV1Or
AwQBV1OsMAwDBABXU+kDBABXU+oDBABXVE0DBAJXVLwDBAFXVNgwDAMEAFdU3QME
BVdUwDAMAwQAV1TpAwQAV1TqAwQAV1TuAwQBV1WIMAwDBABXVY0DBABXVY4DBABX
VvwDBANtzGgDBADUhiYDBADUhjsDBALUhnQDBADUhp4DBAHUhqADBALUhsADBADU
h58wDQYJKoZIhvcNAQELBQADggEBADXbikDE/tI2zcPNUt5z/IbEvUWxevWfHINh
XtOBfzmwLwA5muR+uAeQMPvOKrUKn9RQDpWQ+rtbTm9jFq3rcoa6VZSxzy93gYYz
Rn6UrKkMpC1Yj17A/88zKEItVMLDH2cAgwWQHU/wMCBDOPo1pcXy9IpIJTSpnsy8
SOo8HXUBZU4Cc9uyoOWbf+y3CBXH60/mz2c0tQezMwBtfhGEgSFa5Vr5KrH8LhrM
MZz9sIPlbfiIxLrm4u7IFPfG0b5gJ3KB/+EsBBWqGMEivoViBAOPpCBIpXvvbck0
F4Mr2BtoltcZ2O42CMMpuu7mEQ5DCZYz1oWolE+4KczJBgDkI5c=
-----END CERTIFICATE-----
Generated at Tue Jun 2 20:50:28 2026 by rpki-client