Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/POJtqD_w2gQFXYiIfTA3_GrL24Y.roa
File: POJtqD_w2gQFXYiIfTA3_GrL24Y.roa (raw, json)
Hash identifier: IbcwsmlvtEjcsYQ2xryZ6eJBCiOwxifkjZcUZvT1SVY=
Subject key identifier: 3C:E2:6D:A8:3F:F0:DA:04:05:5D:88:88:7D:30:37:FC:6A:CB:DB:86
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019C4205F81CAF3BE678A1782F63730B66D3
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/POJtqD_w2gQFXYiIfTA3_GrL24Y.roa
Signing time: Mon 09 Feb 2026 10:50:13 +0000
ROA not before: Mon 09 Feb 2026 10:50:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 61317
IP address blocks: 5.180.50.0/24 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:42:05:f8:1c:af:3b:e6:78:a1:78:2f:63:73:0b:66:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 9 10:50:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3ce26da83ff0da04055d88887d3037fc6acbdb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:40:54:be:3b:2b:8f:95:8a:88:9c:f3:cf:30:
3e:b4:13:55:b7:b6:b6:ae:97:4f:63:7b:6c:2a:2b:
d1:bd:a9:f3:c0:1b:4b:bb:90:cc:cd:04:13:5e:b5:
d4:67:b6:72:8d:d4:60:06:16:46:bb:89:27:41:18:
4e:02:b7:ea:ac:b4:cf:af:41:22:7e:e0:63:04:d0:
c3:13:dc:d7:8d:16:f5:6f:e4:69:29:c0:01:dd:ff:
8e:f2:4b:a2:46:c0:df:28:d6:6d:2f:1a:d0:f8:38:
c3:d8:97:6a:8b:f3:12:a2:ba:e4:53:23:f9:ee:e8:
7b:d1:84:e2:19:5b:40:30:9c:14:9a:35:db:9d:29:
f4:b2:bb:22:50:86:fa:bc:45:62:a0:cb:aa:04:3d:
5d:6e:f5:3a:df:ab:6c:84:86:bd:bb:51:72:14:23:
62:c5:f0:4e:67:00:9d:9e:93:cd:e1:39:23:95:4a:
e1:82:ed:a0:d3:d2:f7:9c:df:63:15:d1:51:ab:dd:
55:c3:92:da:8e:5d:33:7f:9b:08:d0:7f:1e:3f:8f:
bd:44:50:93:19:41:6f:7a:96:d5:dd:79:58:2e:0e:
4a:df:3d:8b:db:e9:c9:85:85:55:99:77:4f:92:72:
ca:42:5c:7c:82:1f:b3:2a:c2:80:34:54:a5:aa:7c:
e9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E2:6D:A8:3F:F0:DA:04:05:5D:88:88:7D:30:37:FC:6A:CB:DB:86
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/POJtqD_w2gQFXYiIfTA3_GrL24Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.50.0/23
5.180.80.0/24
5.253.39.0/24
45.8.188.0-45.8.195.255
45.8.199.0/24
45.8.255.0-45.9.1.255
85.208.115.0/24
85.209.160.0/24
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:2c:06:ec:b9:29:35:5c:24:e8:e9:92:d3:cc:95:e1:a0:25:
bc:bf:bb:c1:1e:d1:e9:7e:34:ab:1d:28:e6:72:97:36:09:17:
d9:81:17:b1:de:b1:ba:4f:43:74:ea:09:9e:53:b3:16:b7:1b:
0e:e6:17:69:fc:52:c4:a2:64:37:3d:32:74:64:51:13:fb:70:
67:34:a8:09:38:e9:26:73:3b:81:33:38:99:05:58:18:08:8c:
b8:d0:57:8f:03:2a:10:47:b4:41:9e:0d:47:20:bc:30:55:d4:
27:b8:54:3b:aa:0b:9e:4c:a5:c0:ae:96:ab:e1:46:63:0c:e4:
a1:e9:de:a7:d6:2b:2f:ec:8d:b9:dd:48:22:b0:c4:4a:9c:c0:
9b:aa:a5:5b:e1:4e:67:3e:a7:3d:0f:0f:bf:55:c1:05:cc:66:
08:31:7c:26:79:51:22:68:14:15:28:54:44:9f:e4:8c:f9:34:
3b:8b:8c:02:2d:54:11:1a:a3:f8:0f:53:a1:7f:cf:f5:27:ef:
43:d8:99:70:3c:57:c0:55:85:9f:60:1f:6d:b3:eb:a3:24:06:
db:76:5d:07:aa:aa:e1:98:a3:7f:7e:07:4d:8b:af:13:57:ef:
37:4b:a9:15:22:cd:e0:07:69:ae:5a:93:39:bb:16:b6:59:15:
09:24:11:5a
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAZxCBfgcrzvmeKF4L2NzC2bTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjYwMjA5MTA1MDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2UyNmRhODNmZjBkYTA0MDU1ZDg4ODg3ZDMwMzdmYzZhY2JkYjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUBUvjsrj5WKiJzzzzA+tBNVt7a2
rpdPY3tsKivRvanzwBtLu5DMzQQTXrXUZ7ZyjdRgBhZGu4knQRhOArfqrLTPr0Ei
fuBjBNDDE9zXjRb1b+RpKcAB3f+O8kuiRsDfKNZtLxrQ+DjD2Jdqi/MSorrkUyP5
7uh70YTiGVtAMJwUmjXbnSn0srsiUIb6vEVioMuqBD1dbvU636tshIa9u1FyFCNi
xfBOZwCdnpPN4TkjlUrhgu2g09L3nN9jFdFRq91Vw5Lajl0zf5sI0H8eP4+9RFCT
GUFvepbV3XlYLg5K3z2L2+nJhYVVmXdPknLKQlx8gh+zKsKANFSlqnzp4wIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFDzibag/8NoEBV2IiH0wN/xqy9uGMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvUE9KdHFEX3cyZ1FGWFlpSWZUQTNfR3JMMjRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjBMBAIAATBGAwQBBbQyAwQA
BbRQAwQABf0nMAwDBAItCLwDBAItCMADBAAtCMcwDAMEAC0I/wMEAS0JAAMEAFXQ
cwMEAFXRoAMEAsGo0DANBgkqhkiG9w0BAQsFAAOCAQEAzCwG7LkpNVwk6OmS08yV
4aAlvL+7wR7R6X40qx0o5nKXNgkX2YEXsd6xuk9DdOoJnlOzFrcbDuYXafxSxKJk
Nz0ydGRRE/twZzSoCTjpJnM7gTM4mQVYGAiMuNBXjwMqEEe0QZ4NRyC8MFXUJ7hU
O6oLnkylwK6Wq+FGYwzkoenep9YrL+yNud1IIrDESpzAm6qlW+FOZz6nPQ8Pv1XB
BcxmCDF8JnlRImgUFShURJ/kjPk0O4uMAi1UERqj+A9ToX/P9SfvQ9iZcDxXwFWF
n2AfbbProyQG23ZdB6qq4Zijf34HTYuvE1fvN0upFSLN4AdprlqTObsWtlkVCSQR
Wg==
-----END CERTIFICATE-----
Generated at Sun Feb 22 21:29:54 2026 by rpki-client