Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vo19wFGUnbGTMJGTS4-hjmrqYnw.roa
File: Vo19wFGUnbGTMJGTS4-hjmrqYnw.roa (raw, json)
Hash identifier: WHph6ZnrVgjfvGkEbeVUC+QETq+4FnmQJVbkDD0/3UM=
Subject key identifier: 56:8D:7D:C0:51:94:9D:B1:93:30:91:93:4B:8F:A1:8E:6A:EA:62:7C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019CE17521F586BCB13C3BBEEB493B26918F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vo19wFGUnbGTMJGTS4-hjmrqYnw.roa
Signing time: Thu 12 Mar 2026 09:51:15 +0000
ROA not before: Thu 12 Mar 2026 09:51:15 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:1180:36af::/48 maxlen: 48
2a0a:2d07:cc::/48 maxlen: 48
2a0e:1a84::/32 maxlen: 32
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:df45:25b::/48 maxlen: 48
2a12:ecc0:22::/48 maxlen: 48
2a13:18c6:c9a1::/48 maxlen: 48
2a13:c900:66::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 19:51:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e1:75:21:f5:86:bc:b1:3c:3b:be:eb:49:3b:26:91:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 12 09:51:15 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=568d7dc051949db1933091934b8fa18e6aea627c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:71:b6:6c:f3:6d:e1:80:6e:a9:88:44:0a:f5:
04:a9:19:52:d0:5f:25:2c:25:44:8d:55:66:db:5e:
ac:93:a1:6d:05:00:de:9d:85:56:75:a2:4f:52:85:
0c:dc:55:67:88:63:d5:76:d8:bd:a0:29:3b:e6:40:
19:f0:0f:af:33:b5:6d:a2:d0:1b:7d:b5:55:bd:26:
d7:95:08:f1:9c:49:21:30:b0:17:28:31:ba:10:3a:
10:98:e0:66:09:0f:d9:39:93:8c:94:ab:80:12:b1:
7d:f6:56:59:11:4c:b0:ae:0b:59:0c:5d:93:12:63:
85:ef:2b:92:c6:8e:43:fe:22:88:35:44:ad:39:e3:
85:4c:e4:ca:f1:77:a2:cd:91:5a:96:67:1b:14:3a:
8b:c9:dd:9f:4a:d9:0b:c3:63:76:6d:d5:35:f5:4b:
a5:be:80:20:cb:ae:46:0b:89:d4:c4:59:d6:d5:b4:
5d:2f:af:14:21:62:fc:45:99:74:bf:d2:87:43:a7:
ed:6d:fd:ef:c3:9f:25:d9:44:79:e9:0b:ce:d2:90:
9b:25:4f:cb:54:71:4e:22:2f:de:13:65:37:3b:f6:
60:97:a4:5a:93:d9:cb:a5:29:d7:a2:67:7f:c7:5f:
5e:28:1a:57:37:92:b5:be:b7:94:22:e0:d0:d8:0e:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8D:7D:C0:51:94:9D:B1:93:30:91:93:4B:8F:A1:8E:6A:EA:62:7C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vo19wFGUnbGTMJGTS4-hjmrqYnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1180:36af::/48
2a0a:2d07:cc::/48
2a0e:1a84::/32
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:df45:25b::/48
2a12:ecc0:22::/48
2a13:18c6:c9a1::/48
2a13:c900:66::/48
Signature Algorithm: sha256WithRSAEncryption
1d:1e:57:be:83:8a:c4:68:63:60:a3:57:c7:14:48:d4:b9:d9:
85:a5:75:c7:eb:fc:86:5f:6b:e2:91:15:27:d4:68:97:2a:ef:
8b:71:1a:a8:4d:e0:08:dc:f2:5f:c0:3a:7b:a4:04:e2:c2:a3:
d0:3a:b7:e7:e7:34:c7:9b:e9:da:7c:3d:ce:50:42:22:09:c8:
c3:3d:c8:fb:08:40:fe:9d:72:e3:e1:bb:b5:f4:0b:13:c4:45:
02:a9:98:95:1c:9d:bb:60:1a:19:dc:80:54:4b:01:0f:d7:31:
f7:4e:60:db:59:c2:2d:62:72:f1:d9:a4:cd:f2:9d:ca:63:2a:
71:ea:98:2b:54:6d:d4:b9:d4:27:b2:e5:9b:ae:19:ad:1a:5f:
03:9e:54:ba:39:5a:20:23:36:76:56:aa:bb:e8:ff:59:e3:93:
bb:c0:2d:2b:1b:2b:1e:c2:3e:97:44:35:25:63:bb:65:bc:91:
fa:d3:30:81:87:b0:fa:e6:45:17:96:9c:48:32:bd:a3:b1:3d:
19:d6:c7:9a:10:46:4e:ca:d7:d3:0f:04:f6:c7:fe:20:3f:54:
58:89:5c:2c:c6:47:34:f1:b4:cc:21:39:2c:1b:ce:26:ec:dc:
a5:f3:48:f3:6c:3d:47:77:34:e1:15:48:f7:12:65:6e:21:8a:
5b:7b:cd:e8
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgISAZzhdSH1hryxPDu+60k7JpGPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwMzEyMDk1MTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjhkN2RjMDUxOTQ5ZGIxOTMzMDkxOTM0YjhmYTE4ZTZhZWE2MjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXG2bPNt4YBuqYhECvUEqRlS0F8l
LCVEjVVm216sk6FtBQDenYVWdaJPUoUM3FVniGPVdti9oCk75kAZ8A+vM7VtotAb
fbVVvSbXlQjxnEkhMLAXKDG6EDoQmOBmCQ/ZOZOMlKuAErF99lZZEUywrgtZDF2T
EmOF7yuSxo5D/iKINUStOeOFTOTK8XeizZFalmcbFDqLyd2fStkLw2N2bdU19Uul
voAgy65GC4nUxFnW1bRdL68UIWL8RZl0v9KHQ6ftbf3vw58l2UR56QvO0pCbJU/L
VHFOIi/eE2U3O/Zgl6Rak9nLpSnXomd/x19eKBpXN5K1vreUIuDQ2A4MrQIDAQAB
o4ICUjCCAk4wHQYDVR0OBBYEFFaNfcBRlJ2xkzCRk0uPoY5q6mJ8MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvVm8xOXdGR1VuYkdUTUpHVFM0LWhqbXJxWW53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGgGCCsGAQUFBwEHAQH/BFkwVzBVBAIAAjBPAwcAKgYRgDav
AwcAKgotBwDMAwUAKg4ahAMHACoPfQAAAQMHACoPvAChxAMHACoP30UCWwMHACoS
7MAAIgMHACoTGMbJoQMHACoTyQAAZjANBgkqhkiG9w0BAQsFAAOCAQEAHR5XvoOK
xGhjYKNXxxRI1LnZhaV1x+v8hl9r4pEVJ9Rolyrvi3EaqE3gCNzyX8A6e6QE4sKj
0Dq35+c0x5vp2nw9zlBCIgnIwz3I+whA/p1y4+G7tfQLE8RFAqmYlRydu2AaGdyA
VEsBD9cx905g21nCLWJy8dmkzfKdymMqceqYK1Rt1LnUJ7Llm64ZrRpfA55Uujla
ICM2dlaqu+j/WeOTu8AtKxsrHsI+l0Q1JWO7ZbyR+tMwgYew+uZFF5acSDK9o7E9
GdbHmhBGTsrX0w8E9sf+ID9UWIlcLMZHNPG0zCE5LBvOJuzcpfNI82w9R3c04RVI
9xJlbiGKW3vN6A==
-----END CERTIFICATE-----
Generated at Fri Mar 13 02:17:45 2026 by rpki-client