Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wxG-1hIAuEkJcZHmgDJOk0F6bts.roa
File: wxG-1hIAuEkJcZHmgDJOk0F6bts.roa (raw, json)
Hash identifier: NxpA8Bnwk0J9w7WOEBldzCNPAKnn2gueU/D2iTwMxk0=
Subject key identifier: C3:11:BE:D6:12:00:B8:49:09:71:91:E6:80:32:4E:93:41:7A:6E:DB
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019DC4D68CD839C1A2AF862B2F380405E1A1
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wxG-1hIAuEkJcZHmgDJOk0F6bts.roa
Signing time: Sat 25 Apr 2026 13:31:28 +0000
ROA not before: Sat 25 Apr 2026 13:31:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 150293
IP address blocks: 151.245.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 May 2026 02:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c4:d6:8c:d8:39:c1:a2:af:86:2b:2f:38:04:05:e1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 25 13:31:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c311bed61200b849097191e680324e93417a6edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:35:d9:7a:5f:a9:ea:32:42:73:90:fa:f7:cd:
50:bf:58:2a:08:98:7e:27:ea:76:be:82:c6:b4:fb:
1f:11:48:a2:fc:d0:6a:24:09:12:9c:52:d6:cb:35:
0f:13:23:40:ae:c1:20:91:54:c5:02:f4:90:27:54:
24:fb:88:5b:bb:0e:25:0b:85:3e:90:25:87:e1:1b:
54:52:c8:02:be:73:c4:db:fa:ef:e7:bc:3d:a0:21:
40:9c:1a:3a:f8:4e:7b:59:a8:24:8f:4d:fa:66:f0:
46:c2:78:88:fb:bc:8d:23:7b:3b:b3:68:87:75:22:
d7:06:d8:9a:d8:c4:a5:be:ac:fe:a1:91:c7:d3:3c:
69:b2:13:db:8a:05:f5:c7:3b:2d:08:41:ed:a0:d5:
7b:3d:bf:3a:f6:49:48:ef:7d:bb:85:6c:07:41:74:
43:4f:b5:1f:71:79:74:5d:4b:f7:ad:5a:5d:60:95:
29:8f:e8:66:09:26:34:cd:bb:68:f5:30:38:22:af:
97:10:0b:0f:3b:8c:2a:6c:d3:ed:b1:66:3e:7a:90:
38:96:8a:0f:34:de:89:9a:d6:ad:1f:f7:34:c3:64:
71:eb:b4:5e:d9:b3:52:c4:60:98:72:07:b8:f1:3e:
2e:39:12:4a:13:e7:a5:19:9e:b4:6a:f1:ad:1e:49:
dd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:11:BE:D6:12:00:B8:49:09:71:91:E6:80:32:4E:93:41:7A:6E:DB
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wxG-1hIAuEkJcZHmgDJOk0F6bts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.245.1.0/24
Signature Algorithm: sha256WithRSAEncryption
93:43:31:06:59:02:96:f3:37:55:34:1c:6f:25:fe:f5:98:78:
fa:ba:b8:69:7b:4c:1d:69:44:e4:1a:ce:c8:ed:c1:e5:51:80:
b7:6e:6d:84:b1:7f:4b:f9:86:d7:eb:85:5b:e6:4c:6e:21:24:
2c:9a:56:d6:37:a9:50:c5:f4:43:f9:64:a2:05:28:0c:f6:62:
ef:98:a1:b1:a8:3e:3f:67:85:12:2b:76:6a:60:16:f9:d8:85:
15:91:6d:16:28:2a:27:ef:e5:bc:0d:ae:31:a7:91:fd:7d:95:
6f:35:9b:ff:0a:a4:97:e1:3a:a2:dc:4e:32:65:c9:41:42:12:
ce:9a:9c:44:81:ef:9a:17:e4:5f:89:08:1a:c4:16:78:fc:c0:
70:f2:c2:7b:45:4a:6a:47:f1:3f:bb:6b:0a:4b:e5:95:75:78:
c4:37:a2:3d:1d:3a:69:90:1e:46:24:cb:3b:aa:d7:d4:7a:4c:
35:0f:c4:e0:86:77:79:c0:b1:4b:e5:5e:1d:89:4f:d1:26:8b:
61:16:4a:59:a5:10:88:c3:56:33:04:59:aa:d9:c2:a6:6b:20:
a0:23:21:56:9c:9d:b6:18:45:4c:64:61:ac:df:32:d5:a0:47:
53:4a:6f:f5:a4:28:66:f5:79:19:b3:ce:5f:9c:de:7d:be:08:
4b:c0:45:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ3E1ozYOcGir4YrLzgEBeGhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjYwNDI1MTMzMTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzExYmVkNjEyMDBiODQ5MDk3MTkxZTY4MDMyNGU5MzQxN2E2ZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8TXZel+p6jJCc5D6981Qv1gqCJh+
J+p2voLGtPsfEUii/NBqJAkSnFLWyzUPEyNArsEgkVTFAvSQJ1Qk+4hbuw4lC4U+
kCWH4RtUUsgCvnPE2/rv57w9oCFAnBo6+E57Wagkj036ZvBGwniI+7yNI3s7s2iH
dSLXBtia2MSlvqz+oZHH0zxpshPbigX1xzstCEHtoNV7Pb869klI7327hWwHQXRD
T7UfcXl0XUv3rVpdYJUpj+hmCSY0zbto9TA4Iq+XEAsPO4wqbNPtsWY+epA4looP
NN6JmtatH/c0w2Rx67Re2bNSxGCYcge48T4uORJKE+elGZ60avGtHkndfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMMRvtYSALhJCXGR5oAyTpNBem7bMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvd3hHLTFoSUF1RWtKY1pIbWdESk9rMEY2YnRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/UBMA0G
CSqGSIb3DQEBCwUAA4IBAQCTQzEGWQKW8zdVNBxvJf71mHj6urhpe0wdaUTkGs7I
7cHlUYC3bm2EsX9L+YbX64Vb5kxuISQsmlbWN6lQxfRD+WSiBSgM9mLvmKGxqD4/
Z4USK3ZqYBb52IUVkW0WKCon7+W8Da4xp5H9fZVvNZv/CqSX4Tqi3E4yZclBQhLO
mpxEge+aF+RfiQgaxBZ4/MBw8sJ7RUpqR/E/u2sKS+WVdXjEN6I9HTppkB5GJMs7
qtfUekw1D8Tghnd5wLFL5V4diU/RJothFkpZpRCIw1YzBFmq2cKmayCgIyFWnJ22
GEVMZGGs3zLVoEdTSm/1pChm9XkZs85fnN59vghLwEWI
-----END CERTIFICATE-----
Generated at Sat May 2 09:09:34 2026 by rpki-client