Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/V0MQL1QSGaHPg-fuZpiIbQ95It8.roa
File: V0MQL1QSGaHPg-fuZpiIbQ95It8.roa (raw, json)
Hash identifier: /iEauArFETSHt+oVh4X0P9XauroZqIQkKpyGkW/oVAA=
Subject key identifier: 57:43:10:2F:54:12:19:A1:CF:83:E7:EE:66:98:88:6D:0F:79:22:DF
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019CBCE2357B79D3405F3B2EFA329CD9560C
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/V0MQL1QSGaHPg-fuZpiIbQ95It8.roa
Signing time: Thu 05 Mar 2026 07:24:27 +0000
ROA not before: Thu 05 Mar 2026 07:24:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 2a0f:9bc0::/32 maxlen: 32
2a0f:9bc1::/32 maxlen: 32
2a0f:9bc2::/32 maxlen: 32
2a0f:9bc3::/32 maxlen: 32
2a0f:9bc4::/32 maxlen: 32
2a0f:9bc5::/32 maxlen: 32
2a0f:9bc6::/32 maxlen: 32
2a0f:9bc7::/32 maxlen: 32
2a13:1300::/32 maxlen: 32
2a13:1301::/32 maxlen: 32
2a13:1302::/32 maxlen: 32
2a13:1303::/32 maxlen: 32
2a13:1304::/32 maxlen: 32
2a13:1305::/32 maxlen: 32
2a13:1306::/32 maxlen: 32
2a13:1307::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bc:e2:35:7b:79:d3:40:5f:3b:2e:fa:32:9c:d9:56:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Mar 5 07:24:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5743102f541219a1cf83e7ee6698886d0f7922df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:28:70:3d:39:bb:28:24:5f:ff:49:43:67:da:
f8:d0:82:18:46:3e:c8:50:da:0d:a0:e7:c4:8c:14:
63:e1:86:4e:db:5e:3c:8a:63:a7:b8:4a:10:1a:9e:
1d:80:0f:ec:da:62:a9:05:b4:33:75:80:12:86:ef:
b0:9a:75:94:e3:ba:e3:bc:48:53:d1:dd:87:09:fe:
92:64:37:08:ac:ef:ef:09:45:2e:9e:ca:50:75:74:
c1:f1:d3:ba:f7:e0:83:f9:72:f1:78:b3:75:bb:5e:
ad:e5:05:16:9c:1c:b0:14:dd:63:6f:d7:a3:3e:65:
e1:ce:8f:75:0e:11:8f:5e:a2:d8:21:95:ef:f8:77:
11:da:c4:fc:0a:d4:1e:88:39:ad:ab:c7:87:19:f7:
45:d1:17:05:26:c6:0d:0b:96:67:d7:32:bd:01:37:
b7:b8:aa:0f:bb:5d:17:91:09:6b:d4:79:ca:7d:aa:
e6:7f:94:e1:59:56:8b:fc:53:b9:86:9c:9b:eb:4e:
53:3e:8a:e4:32:20:21:59:35:70:43:7c:17:94:fd:
4e:8f:ab:0d:44:9b:dc:82:d8:5a:43:b9:72:4d:d0:
f1:71:ba:79:c4:dd:2d:2c:da:64:36:bc:f7:a8:4b:
9c:bd:6b:90:8c:c3:74:90:9c:a7:31:6b:80:f7:3b:
bc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:43:10:2F:54:12:19:A1:CF:83:E7:EE:66:98:88:6D:0F:79:22:DF
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/V0MQL1QSGaHPg-fuZpiIbQ95It8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9bc0::/29
2a13:1300::/29
Signature Algorithm: sha256WithRSAEncryption
a7:80:9f:b4:18:1e:86:ec:94:cd:1e:29:01:c7:b6:cb:51:f5:
5f:ae:3c:eb:85:77:73:85:85:cb:9a:ee:7c:41:4b:15:2d:7f:
b0:51:44:80:55:c4:cc:2f:82:ea:dd:0b:ec:44:7b:f6:5d:d4:
d3:f8:5a:89:ff:3b:ef:30:e4:10:c3:6b:36:e2:36:4a:86:fd:
6d:78:3a:c6:48:44:62:00:46:04:73:67:21:96:ee:b2:a7:8c:
2a:63:da:6b:46:d9:88:e2:c3:97:c2:47:ac:aa:18:48:24:b2:
44:c8:bb:94:8a:4b:f9:58:2f:b1:a4:eb:fd:8c:3f:33:e9:90:
ee:ea:10:52:3d:d5:5e:95:72:9f:e5:35:5f:2d:3c:05:53:90:
0b:ce:c1:df:69:95:99:cc:64:1e:69:64:d0:dd:eb:b7:b3:4d:
93:e4:00:59:75:38:92:e7:86:f4:f9:ca:7e:7e:ab:5d:9f:1d:
3c:72:69:42:12:6f:4e:53:78:c2:01:6e:a8:e8:ce:04:ad:46:
52:4d:c7:5f:1d:d1:90:46:9f:a2:d2:a4:ac:da:8f:11:75:e7:
ee:49:38:36:f9:42:9d:9a:b7:09:d5:d1:09:d0:0a:4c:25:cf:
27:05:58:00:70:e1:a2:91:84:24:fd:ed:95:4a:d1:48:c5:49:
51:aa:00:c6
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZy84jV7edNAXzsu+jKc2VYMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0
MWJlOWUwHhcNMjYwMzA1MDcyNDI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzQzMTAyZjU0MTIxOWExY2Y4M2U3ZWU2Njk4ODg2ZDBmNzkyMmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yhwPTm7KCRf/0lDZ9r40IIYRj7I
UNoNoOfEjBRj4YZO2148imOnuEoQGp4dgA/s2mKpBbQzdYAShu+wmnWU47rjvEhT
0d2HCf6SZDcIrO/vCUUunspQdXTB8dO69+CD+XLxeLN1u16t5QUWnBywFN1jb9ej
PmXhzo91DhGPXqLYIZXv+HcR2sT8CtQeiDmtq8eHGfdF0RcFJsYNC5Zn1zK9ATe3
uKoPu10XkQlr1HnKfarmf5ThWVaL/FO5hpyb605TPorkMiAhWTVwQ3wXlP1Oj6sN
RJvcgthaQ7lyTdDxcbp5xN0tLNpkNrz3qEucvWuQjMN0kJynMWuA9zu8aQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFFdDEC9UEhmhz4Pn7maYiG0PeSLfMB8GA1UdIwQY
MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct
MTFiM2NmM2ZkNGUxLzEvVjBNUUwxUVNHYUhQZy1mdVpwaUliUTk1SXQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx
LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKg+bwAMF
AyoTEwAwDQYJKoZIhvcNAQELBQADggEBAKeAn7QYHobslM0eKQHHtstR9V+uPOuF
d3OFhcua7nxBSxUtf7BRRIBVxMwvgurdC+xEe/Zd1NP4Won/O+8w5BDDazbiNkqG
/W14OsZIRGIARgRzZyGW7rKnjCpj2mtG2Yjiw5fCR6yqGEgkskTIu5SKS/lYL7Gk
6/2MPzPpkO7qEFI91V6Vcp/lNV8tPAVTkAvOwd9plZnMZB5pZNDd67ezTZPkAFl1
OJLnhvT5yn5+q12fHTxyaUISb05TeMIBbqjozgStRlJNx18d0ZBGn6LSpKzajxF1
5+5JODb5Qp2atwnV0QnQCkwlzycFWABw4aKRhCT97ZVK0UjFSVGqAMY=
-----END CERTIFICATE-----
Generated at Thu Mar 5 23:26:25 2026 by rpki-client