Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/UTv_Wzs0329ezMALoL8Ouk0Lu-Y.roa
File: UTv_Wzs0329ezMALoL8Ouk0Lu-Y.roa (raw, json)
Hash identifier: 4WQlkg62ZhE7du/TFSSxwaL+/iT7zUCAqGeMhW2IheY=
Subject key identifier: 51:3B:FF:5B:3B:34:DF:6F:5E:CC:C0:0B:A0:BF:0E:BA:4D:0B:BB:E6
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 019C4225FD6B08579A65634C42D10EEFA77C
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/UTv_Wzs0329ezMALoL8Ouk0Lu-Y.roa
Signing time: Mon 09 Feb 2026 11:25:11 +0000
ROA not before: Mon 09 Feb 2026 11:25:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206499
IP address blocks: 45.14.68.0/24 maxlen: 32
45.14.69.0/24 maxlen: 24
193.177.223.0/24 maxlen: 32
194.36.26.0/24 maxlen: 32
194.36.27.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:42:25:fd:6b:08:57:9a:65:63:4c:42:d1:0e:ef:a7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Feb 9 11:25:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=513bff5b3b34df6f5eccc00ba0bf0eba4d0bbbe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5d:33:07:6c:b3:b5:94:cc:41:fd:c2:36:fb:
98:26:19:56:0e:d0:e1:ea:4d:23:3a:9d:4b:d9:30:
94:d0:e4:cf:4c:98:97:8f:f8:a9:f4:7d:51:1e:f7:
07:ac:9a:9a:a1:59:51:a4:39:d2:9e:ab:82:70:1e:
ae:f2:b0:e2:39:43:ea:a9:aa:93:f8:48:76:82:66:
2c:44:c3:31:71:d3:e5:24:a6:84:e7:34:a8:fb:f5:
05:98:98:d4:6e:7d:38:b8:c8:9e:f8:d9:3f:c3:be:
14:40:17:97:60:29:88:82:92:f5:f2:37:df:d6:45:
0e:9c:08:da:cd:bb:84:20:b5:0a:0c:ba:13:1a:7b:
70:ec:3e:ba:29:cc:bf:03:70:df:56:bc:a1:9b:49:
a2:42:96:56:89:4a:00:93:6c:a5:c6:be:24:0d:1d:
63:ab:54:5e:ae:e6:9e:dd:44:f0:85:70:7e:a1:52:
a1:7b:97:a7:96:e6:95:b4:66:96:12:85:11:30:83:
ec:c0:ed:5d:76:93:52:03:a7:78:e0:3f:82:0c:32:
0a:20:fa:6b:bf:ce:c8:bd:87:33:8a:d6:0c:93:aa:
ba:9e:24:c6:fe:d4:7d:14:d5:ce:38:4a:64:90:72:
35:80:d4:6d:fd:31:53:f3:98:9c:55:9a:5d:a6:2b:
b7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3B:FF:5B:3B:34:DF:6F:5E:CC:C0:0B:A0:BF:0E:BA:4D:0B:BB:E6
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/UTv_Wzs0329ezMALoL8Ouk0Lu-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.68.0/23
193.177.223.0/24
194.36.26.0/23
Signature Algorithm: sha256WithRSAEncryption
21:10:59:97:fc:a9:f9:f1:73:98:ba:ec:ef:9a:45:d3:d4:07:
51:1c:e8:c6:ad:53:6a:68:51:ed:66:67:67:54:e6:2f:36:10:
0b:7a:da:87:54:b8:b0:2f:5f:a6:32:0f:f5:30:7c:b3:55:0d:
83:3b:93:18:1e:20:2e:2e:d1:0e:3f:9e:91:15:52:dc:89:49:
cf:25:f3:cb:6d:db:f1:59:2c:53:0b:37:0e:f3:95:1a:8b:ba:
3d:c3:ce:b8:04:84:45:d2:6c:0b:ac:7a:70:87:e3:78:14:d9:
18:4d:2a:93:aa:8f:6d:08:41:ee:99:04:7a:aa:f0:42:fc:dd:
cb:a9:8b:dc:88:7b:48:e7:e2:2d:52:52:71:91:b5:f7:33:a6:
50:14:73:5c:05:db:12:05:5c:6d:03:a6:5e:a8:b9:e0:09:e3:
00:10:d7:7f:88:25:9f:c0:91:98:f0:42:a8:7a:ea:ee:45:e0:
9f:73:35:a7:f1:9b:fb:29:9b:5d:5e:52:be:33:bc:37:04:c9:
b7:b9:0d:cb:19:b1:a4:5a:ff:66:ba:68:09:76:37:38:ee:47:
1c:13:07:34:fe:8e:d0:30:95:51:94:35:89:99:27:79:c6:ab:
0e:e8:33:f0:d1:05:db:4c:39:32:04:1c:bb:ac:b3:16:d0:dc:
3d:36:92:d0
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZxCJf1rCFeaZWNMQtEO76d8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi
YmFhZTIwHhcNMjYwMjA5MTEyNTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTNiZmY1YjNiMzRkZjZmNWVjY2MwMGJhMGJmMGViYTRkMGJiYmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7l0zB2yztZTMQf3CNvuYJhlWDtDh
6k0jOp1L2TCU0OTPTJiXj/ip9H1RHvcHrJqaoVlRpDnSnquCcB6u8rDiOUPqqaqT
+Eh2gmYsRMMxcdPlJKaE5zSo+/UFmJjUbn04uMie+Nk/w74UQBeXYCmIgpL18jff
1kUOnAjazbuEILUKDLoTGntw7D66Kcy/A3DfVryhm0miQpZWiUoAk2ylxr4kDR1j
q1Reruae3UTwhXB+oVKhe5enluaVtGaWEoURMIPswO1ddpNSA6d44D+CDDIKIPpr
v87IvYczitYMk6q6niTG/tR9FNXOOEpkkHI1gNRt/TFT85icVZpdpiu3ZwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFFE7/1s7NN9vXszAC6C/DrpNC7vmMB8GA1UdIwQY
MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt
MjU0YWNkOTJiNGUxLzEvVVR2X1d6czAzMjllek1BTG9MOE91azBMdS1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx
LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBLQ5EAwQA
wbHfAwQBwiQaMA0GCSqGSIb3DQEBCwUAA4IBAQAhEFmX/Kn58XOYuuzvmkXT1AdR
HOjGrVNqaFHtZmdnVOYvNhALetqHVLiwL1+mMg/1MHyzVQ2DO5MYHiAuLtEOP56R
FVLciUnPJfPLbdvxWSxTCzcO85Uai7o9w864BIRF0mwLrHpwh+N4FNkYTSqTqo9t
CEHumQR6qvBC/N3LqYvciHtI5+ItUlJxkbX3M6ZQFHNcBdsSBVxtA6ZeqLngCeMA
ENd/iCWfwJGY8EKoeuruReCfczWn8Zv7KZtdXlK+M7w3BMm3uQ3LGbGkWv9mumgJ
djc47kccEwc0/o7QMJVRlDWJmSd5xqsO6DPw0QXbTDkyBBy7rLMW0Nw9NpLQ
-----END CERTIFICATE-----
Generated at Sun Feb 22 23:29:31 2026 by rpki-client