Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/w2EbvbMlk1vQVS1L_gh7f8JcQII.roa
File: w2EbvbMlk1vQVS1L_gh7f8JcQII.roa (raw, json)
Hash identifier: 0r3piY21wjYG6/bd5paELk5vAN9xgo5tcM9Ea+Ly8ns=
Subject key identifier: C3:61:1B:BD:B3:25:93:5B:D0:55:2D:4B:FE:08:7B:7F:C2:5C:40:82
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019E53397CFE303DB465FD342FF9A32D6F4F
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/w2EbvbMlk1vQVS1L_gh7f8JcQII.roa
Signing time: Sat 23 May 2026 05:05:36 +0000
ROA not before: Sat 23 May 2026 05:05:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 401776
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:53:39:7c:fe:30:3d:b4:65:fd:34:2f:f9:a3:2d:6f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: May 23 05:05:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c3611bbdb325935bd0552d4bfe087b7fc25c4082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:44:30:2c:66:a9:4d:4d:e7:16:35:2f:b6:21:
bf:31:66:a9:e3:d9:3d:03:63:60:06:b9:2b:fa:a8:
aa:90:5b:fa:c0:a7:41:6e:42:59:f0:52:6a:0f:03:
8d:2a:e5:f3:af:c7:f0:41:30:0a:47:b9:ee:3b:41:
56:ee:53:94:31:c3:9e:23:6e:35:1c:fd:81:0a:6d:
c2:c6:f0:e0:fe:a4:d8:1d:29:33:07:fd:02:20:85:
b8:d6:d8:23:a8:9e:14:45:0e:af:dd:ad:42:84:09:
8f:cf:1c:ea:94:39:43:8f:59:a8:8a:40:37:74:9f:
12:3c:f1:4e:0d:b3:5f:e9:8f:12:0e:0c:16:6f:7c:
d5:73:36:79:be:e1:81:c3:ad:ba:cd:99:e6:21:cd:
15:0c:c6:d8:28:1b:7d:83:09:0d:c8:21:64:9b:b2:
0e:43:81:97:4b:35:fd:69:f0:5f:ad:e9:07:8c:22:
e0:1c:e7:2a:11:49:5c:46:eb:71:7e:9d:7b:da:0a:
7e:05:a3:a5:9c:d8:b6:d1:14:a2:d7:c1:2a:89:5d:
91:91:44:b3:b2:9f:d2:bd:05:d4:0d:76:b7:46:c7:
11:fc:84:9e:71:50:b3:16:70:42:0c:e1:0e:d1:27:
67:86:42:3b:68:4d:83:90:82:17:3d:95:62:af:91:
d8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:61:1B:BD:B3:25:93:5B:D0:55:2D:4B:FE:08:7B:7F:C2:5C:40:82
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/w2EbvbMlk1vQVS1L_gh7f8JcQII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
09:49:b0:dc:33:a9:49:e7:f3:2f:0e:a4:92:25:fd:cb:c7:0b:
bc:5d:44:e8:88:47:67:05:8e:45:a6:58:b1:17:29:7d:25:93:
ef:16:8c:d6:72:75:34:0d:9e:ba:53:ac:5e:5e:d9:d1:d7:f6:
29:d0:d8:2a:68:35:be:f8:5a:b7:a4:05:57:81:70:11:ad:f7:
a7:6a:ed:e2:1e:e1:93:35:31:36:ca:f5:91:36:35:3d:b3:a5:
73:6d:4c:4e:ef:a8:91:3e:97:1f:e4:08:d4:26:0f:69:55:12:
84:aa:a7:de:c2:33:53:39:66:9e:6e:00:98:79:5e:af:43:62:
55:3a:a2:d2:1b:1a:2b:68:c5:50:99:50:7d:8d:9b:b6:fe:b8:
4a:81:d1:3b:05:6d:01:f0:bd:7d:e1:a3:ee:59:25:ac:67:bd:
c9:34:36:82:09:b3:e4:3f:cf:ba:8c:ad:7d:9f:c1:4c:d8:a6:
62:ab:92:cb:ac:f2:c3:f3:b9:47:74:ac:15:85:3c:bb:9a:c2:
74:29:80:aa:01:42:e6:0b:77:2d:45:d6:47:ef:2c:d3:fa:91:
90:53:d3:50:5f:06:55:73:89:b5:90:c4:6b:cc:da:fd:a0:e9:
72:96:2a:be:df:98:0a:10:51:99:03:f7:53:df:25:ba:7e:25:
de:ca:71:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ5TOXz+MD20Zf00L/mjLW9PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2
MzFiZmIwHhcNMjYwNTIzMDUwNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzYxMWJiZGIzMjU5MzViZDA1NTJkNGJmZTA4N2I3ZmMyNWM0MDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA90QwLGapTU3nFjUvtiG/MWap49k9
A2NgBrkr+qiqkFv6wKdBbkJZ8FJqDwONKuXzr8fwQTAKR7nuO0FW7lOUMcOeI241
HP2BCm3CxvDg/qTYHSkzB/0CIIW41tgjqJ4URQ6v3a1ChAmPzxzqlDlDj1moikA3
dJ8SPPFODbNf6Y8SDgwWb3zVczZ5vuGBw626zZnmIc0VDMbYKBt9gwkNyCFkm7IO
Q4GXSzX9afBfrekHjCLgHOcqEUlcRutxfp172gp+BaOlnNi20RSi18EqiV2RkUSz
sp/SvQXUDXa3RscR/ISecVCzFnBCDOEO0SdnhkI7aE2DkIIXPZVir5HYfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMNhG72zJZNb0FUtS/4Ie3/CXECCMB8GA1UdIwQY
MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt
YWI4ZjFmMzM4N2VlLzEvdzJFYnZiTWxrMXZRVlMxTF9naDdmOEpjUUlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl
LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATfbcMA0G
CSqGSIb3DQEBCwUAA4IBAQAJSbDcM6lJ5/MvDqSSJf3Lxwu8XUToiEdnBY5Fplix
Fyl9JZPvFozWcnU0DZ66U6xeXtnR1/Yp0NgqaDW++Fq3pAVXgXARrfenau3iHuGT
NTE2yvWRNjU9s6VzbUxO76iRPpcf5AjUJg9pVRKEqqfewjNTOWaebgCYeV6vQ2JV
OqLSGxoraMVQmVB9jZu2/rhKgdE7BW0B8L194aPuWSWsZ73JNDaCCbPkP8+6jK19
n8FM2KZiq5LLrPLD87lHdKwVhTy7msJ0KYCqAULmC3ctRdZH7yzT+pGQU9NQXwZV
c4m1kMRrzNr9oOlyliq+35gKEFGZA/dT3yW6fiXeynED
-----END CERTIFICATE-----
Generated at Thu Jun 4 09:59:20 2026 by rpki-client