Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/Tmne0hWa4-fPsor8b5zK4nEvNRU.roa
File: Tmne0hWa4-fPsor8b5zK4nEvNRU.roa (raw, json)
Hash identifier: 5nfGisaAONTIlTyTZ64xSUkC4BGRkz6qPeky6Dw5Czw=
Subject key identifier: 4E:69:DE:D2:15:9A:E3:E7:CF:B2:8A:FC:6F:9C:CA:E2:71:2F:35:15
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019DBADC35E854598712DCD5411A6E11116F
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/Tmne0hWa4-fPsor8b5zK4nEvNRU.roa
Signing time: Thu 23 Apr 2026 15:01:27 +0000
ROA not before: Thu 23 Apr 2026 15:01:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51082
IP address blocks: 212.134.50.0/24 maxlen: 24
212.134.155.0/24 maxlen: 24
212.135.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Apr 2026 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ba:dc:35:e8:54:59:87:12:dc:d5:41:1a:6e:11:11:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Apr 23 15:01:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4e69ded2159ae3e7cfb28afc6f9ccae2712f3515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bc:64:8f:cf:ca:81:5a:c9:b8:ab:4a:9a:93:
0e:2f:57:ed:df:f5:df:12:f9:a1:5d:8c:69:0a:a9:
fb:fd:0a:aa:7e:48:01:0a:d3:e8:78:f3:38:87:f4:
65:3e:55:36:db:f7:4d:a0:7e:0d:51:07:2c:84:6f:
a0:7a:1f:7f:0a:ff:cb:23:bf:3c:e7:04:0f:04:d2:
8b:5f:1f:28:7b:ca:26:13:be:0b:c3:f5:31:ec:24:
a3:9b:77:05:80:3a:2b:61:23:63:92:e4:39:3c:19:
26:26:f4:8f:41:54:d9:eb:38:b8:2e:2a:9f:be:df:
40:e0:0c:ee:e8:6c:96:e5:57:f7:60:13:19:21:c2:
cb:d7:4a:b4:91:56:14:f6:c8:5b:31:74:85:23:17:
75:40:07:d8:00:c4:47:6a:3a:7b:a1:d3:0c:27:60:
34:45:7b:03:f6:53:a2:13:b0:28:8c:49:c9:da:8a:
39:b1:20:71:51:d7:15:14:44:33:9e:2a:a7:ee:b1:
f8:34:72:e9:37:4c:6d:6a:2a:f9:20:e4:72:34:2c:
33:fb:bd:25:74:7e:f8:a8:d0:41:09:59:80:27:14:
5c:bb:7f:b8:80:77:72:4e:42:99:67:ad:49:c0:72:
50:2b:5f:02:77:49:e8:64:5a:97:7a:26:8a:12:82:
94:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:69:DE:D2:15:9A:E3:E7:CF:B2:8A:FC:6F:9C:CA:E2:71:2F:35:15
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/Tmne0hWa4-fPsor8b5zK4nEvNRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.134.50.0/24
212.134.155.0/24
212.135.23.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:5d:74:3a:8d:02:17:43:85:e7:16:70:ea:45:83:96:8e:00:
93:66:d8:2e:fa:79:8a:25:4f:24:88:35:26:99:ca:f3:33:c2:
25:d3:5e:93:51:da:0a:1c:01:89:16:4b:c0:12:65:d0:3c:5c:
0a:6e:4a:ed:b0:aa:e2:64:bb:26:76:97:31:f7:82:cc:8b:8a:
4f:08:c1:27:8e:b8:b9:90:ff:46:f7:4f:77:e7:35:8a:d8:5a:
f7:4e:47:90:17:7a:f2:99:7f:57:f7:99:9f:97:68:49:e9:1c:
7f:11:62:b2:13:b6:e4:9a:d1:73:9f:fa:6a:0a:4b:4b:23:86:
03:90:97:b9:a9:48:d5:23:e9:f5:7a:eb:bb:e0:fe:6c:08:aa:
3d:c0:f5:3e:69:1f:84:cb:c6:60:8c:8a:8d:62:10:57:8a:2e:
36:14:8c:54:04:bb:35:a6:a7:66:aa:53:74:05:96:96:df:e2:
89:a7:ae:a0:90:d7:b6:a2:36:f5:6e:e3:e9:f3:e9:e8:7f:b9:
7e:60:66:7d:38:3c:4b:96:cf:44:c1:1a:e6:59:e7:63:86:ea:
a2:03:69:36:9f:0a:95:fd:c0:4b:08:fb:eb:ac:84:be:bd:e3:
17:b8:b5:0c:3a:31:3e:15:13:8b:c5:9e:05:ea:c7:3c:bc:1b:
f3:76:62:87
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZ263DXoVFmHEtzVQRpuERFvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3
NjUwMjkwHhcNMjYwNDIzMTUwMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTY5ZGVkMjE1OWFlM2U3Y2ZiMjhhZmM2ZjljY2FlMjcxMmYzNTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7xkj8/KgVrJuKtKmpMOL1ft3/Xf
EvmhXYxpCqn7/QqqfkgBCtPoePM4h/RlPlU22/dNoH4NUQcshG+geh9/Cv/LI788
5wQPBNKLXx8oe8omE74Lw/Ux7CSjm3cFgDorYSNjkuQ5PBkmJvSPQVTZ6zi4Liqf
vt9A4Azu6GyW5Vf3YBMZIcLL10q0kVYU9shbMXSFIxd1QAfYAMRHajp7odMMJ2A0
RXsD9lOiE7AojEnJ2oo5sSBxUdcVFEQzniqn7rH4NHLpN0xtair5IORyNCwz+70l
dH74qNBBCVmAJxRcu3+4gHdyTkKZZ61JwHJQK18Cd0noZFqXeiaKEoKUhwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFE5p3tIVmuPnz7KK/G+cyuJxLzUVMB8GA1UdIwQY
MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt
MDM1ZDk3N2Y0MjE2LzEvVG1uZTBoV2E0LWZQc29yOGI1eks0bkV2TlJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2
LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQA1IYyAwQA
1IabAwQA1IcXMA0GCSqGSIb3DQEBCwUAA4IBAQCNXXQ6jQIXQ4XnFnDqRYOWjgCT
Ztgu+nmKJU8kiDUmmcrzM8Il016TUdoKHAGJFkvAEmXQPFwKbkrtsKriZLsmdpcx
94LMi4pPCMEnjri5kP9G90935zWK2Fr3TkeQF3rymX9X95mfl2hJ6Rx/EWKyE7bk
mtFzn/pqCktLI4YDkJe5qUjVI+n1euu74P5sCKo9wPU+aR+Ey8ZgjIqNYhBXii42
FIxUBLs1pqdmqlN0BZaW3+KJp66gkNe2ojb1buPp8+nof7l+YGZ9ODxLls9EwRrm
WedjhuqiA2k2nwqV/cBLCPvrrIS+veMXuLUMOjE+FROLxZ4F6sc8vBvzdmKH
-----END CERTIFICATE-----
Generated at Sun Apr 26 04:02:29 2026 by rpki-client