Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/8TLppOneSupOT2gRP_1dgu2Fk1c.roa
File: 8TLppOneSupOT2gRP_1dgu2Fk1c.roa (raw, json)
Hash identifier: FLVrP6Vqn3ElA4scxJqjGtr44LoBIRx1kxEYMlr+Erg=
Subject key identifier: F1:32:E9:A4:E9:DE:4A:EA:4E:4F:68:11:3F:FD:5D:82:ED:85:93:57
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 019E3A1D90E55E9A747FA53AFAC002ABE57C
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/8TLppOneSupOT2gRP_1dgu2Fk1c.roa
Signing time: Mon 18 May 2026 08:04:36 +0000
ROA not before: Mon 18 May 2026 08:04:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 185.167.232.0/24 maxlen: 24
185.167.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 19 May 2026 08:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3a:1d:90:e5:5e:9a:74:7f:a5:3a:fa:c0:02:ab:e5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: May 18 08:04:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f132e9a4e9de4aea4e4f68113ffd5d82ed859357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5f:7e:d3:de:9a:9a:3a:00:37:3e:7e:85:d7:
c8:bc:5f:26:0d:1f:2a:c1:09:10:3e:b3:7e:ce:e6:
8b:21:6e:0f:67:d6:fa:9f:cf:bb:f5:48:0a:ee:f0:
cb:b2:f3:c0:9f:e5:f3:d3:b0:71:b9:56:ac:17:c2:
b5:e9:7e:7b:d2:07:c1:4c:c4:98:14:fa:b9:bc:8b:
26:22:38:53:f3:6a:ea:53:0f:4a:30:97:c7:e3:c9:
44:50:e4:52:a5:2e:42:ac:04:37:99:04:de:45:cc:
52:72:db:f4:67:95:fd:9a:16:1f:e5:21:ed:7c:12:
f3:5e:96:36:eb:d1:93:da:77:15:b6:c4:24:56:82:
3e:df:58:77:ce:b2:4c:61:8a:f7:48:8e:7b:05:08:
b7:6f:14:b2:c6:e1:1f:e7:50:b7:3e:ae:77:d1:29:
84:62:72:aa:ef:15:0a:54:97:0a:e6:cd:18:ea:cd:
13:f2:d4:07:74:3f:e8:57:b7:92:e5:05:e0:56:e0:
67:bd:69:75:86:02:98:dd:bd:49:f0:bd:5f:f7:36:
a3:8f:df:8d:d8:49:43:35:5f:8e:72:70:58:36:a7:
a5:54:35:ab:5c:0a:84:7a:91:af:b9:17:45:9a:bd:
d2:e3:94:78:20:03:bb:54:74:27:ef:3b:5d:6b:e1:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:32:E9:A4:E9:DE:4A:EA:4E:4F:68:11:3F:FD:5D:82:ED:85:93:57
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/8TLppOneSupOT2gRP_1dgu2Fk1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.232.0/23
Signature Algorithm: sha256WithRSAEncryption
39:92:e9:87:43:54:ee:65:2f:9c:59:49:d0:c6:03:2f:6a:5c:
a4:d6:78:7c:75:75:42:30:4e:49:c2:25:43:2d:f3:38:40:f2:
1e:9a:c0:86:0f:19:1b:3c:2e:26:a8:08:13:1e:e9:03:97:c2:
fc:29:4e:82:18:2c:60:56:7a:d8:d6:28:09:7f:c7:e9:22:c6:
03:ca:1f:4f:09:21:63:f5:dc:b2:4f:4e:30:16:22:64:fc:e7:
b6:b8:8e:eb:34:9a:ef:63:27:39:d1:80:93:b7:72:22:9d:fb:
ac:f3:10:07:0c:0c:da:f4:90:ec:98:79:25:ae:fd:cb:17:9e:
ed:86:f5:5f:c7:fe:a5:10:70:f8:23:65:5b:81:3f:85:a2:61:
da:6c:2e:cd:b5:74:2f:d1:35:a1:13:15:a3:e8:15:d4:88:6c:
05:8d:3f:7a:2f:1b:b6:c2:e2:b9:8c:13:cd:3e:1b:9c:78:af:
26:e2:bc:84:f5:4d:31:7a:ec:15:2c:20:d8:d7:1f:62:3d:9a:
cc:7b:19:54:ac:9c:2d:36:e4:af:d8:44:fe:df:93:5a:a8:c7:
29:a9:a2:ad:37:1e:9c:0c:4b:63:66:5b:0f:78:26:a0:df:7e:
03:ca:40:2f:e5:69:02:22:41:c5:88:e5:2f:c0:b5:8e:26:e5:
45:71:07:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ46HZDlXpp0f6U6+sACq+V8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMGIxNTE5MzgxNmZkMTVkY2ZkMDQ3ZGI0ZWVjYTY3Mjkx
MmJiNjAwHhcNMjYwNTE4MDgwNDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTMyZTlhNGU5ZGU0YWVhNGU0ZjY4MTEzZmZkNWQ4MmVkODU5MzU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxV9+096amjoANz5+hdfIvF8mDR8q
wQkQPrN+zuaLIW4PZ9b6n8+79UgK7vDLsvPAn+Xz07BxuVasF8K16X570gfBTMSY
FPq5vIsmIjhT82rqUw9KMJfH48lEUORSpS5CrAQ3mQTeRcxSctv0Z5X9mhYf5SHt
fBLzXpY269GT2ncVtsQkVoI+31h3zrJMYYr3SI57BQi3bxSyxuEf51C3Pq530SmE
YnKq7xUKVJcK5s0Y6s0T8tQHdD/oV7eS5QXgVuBnvWl1hgKY3b1J8L1f9zajj9+N
2ElDNV+OcnBYNqelVDWrXAqEepGvuRdFmr3S45R4IAO7VHQn7ztda+GyuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPEy6aTp3krqTk9oET/9XYLthZNXMB8GA1UdIwQY
MBaAFG8LFRk4Fv0V3P0EfbTuymcpErtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYndzVkdUZ1dfUlhjX1FSOXRPN0taeWtTdTJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85NTg4NDEtZjZiMC00MjQ5LTgwNDYt
OWNmODQzZjA1NjcwLzEvOFRMcHBPbmVTdXBPVDJnUlBfMWRndTJGazFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85NTg4NDEtZjZiMC00MjQ5LTgwNDYtOWNmODQzZjA1Njcw
LzEvYndzVkdUZ1dfUlhjX1FSOXRPN0taeWtTdTJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuafoMA0G
CSqGSIb3DQEBCwUAA4IBAQA5kumHQ1TuZS+cWUnQxgMvalyk1nh8dXVCME5JwiVD
LfM4QPIemsCGDxkbPC4mqAgTHukDl8L8KU6CGCxgVnrY1igJf8fpIsYDyh9PCSFj
9dyyT04wFiJk/Oe2uI7rNJrvYyc50YCTt3Iinfus8xAHDAza9JDsmHklrv3LF57t
hvVfx/6lEHD4I2VbgT+FomHabC7NtXQv0TWhExWj6BXUiGwFjT96Lxu2wuK5jBPN
PhuceK8m4ryE9U0xeuwVLCDY1x9iPZrMexlUrJwtNuSv2ET+35NaqMcpqaKtNx6c
DEtjZlsPeCag334DykAv5WkCIkHFiOUvwLWOJuVFcQcn
-----END CERTIFICATE-----
Generated at Mon May 18 13:00:41 2026 by rpki-client