Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/6WWr83TSCDVC54Q6T3lJdNTzhec.roa
File: 6WWr83TSCDVC54Q6T3lJdNTzhec.roa (raw, json)
Hash identifier: bqOXRmyjRmssTC0gEpcTMmCXeTubysghN9/RhsWfZ2I=
Subject key identifier: E9:65:AB:F3:74:D2:08:35:42:E7:84:3A:4F:79:49:74:D4:F3:85:E7
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 019CF6C064BE04CB3D52549B95A0733F383E
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/6WWr83TSCDVC54Q6T3lJdNTzhec.roa
Signing time: Mon 16 Mar 2026 13:05:29 +0000
ROA not before: Mon 16 Mar 2026 13:05:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43733
IP address blocks: 46.130.0.0/16 maxlen: 16
46.130.0.0/17 maxlen: 17
46.130.128.0/17 maxlen: 17
46.130.255.0/24 maxlen: 24
83.139.24.0/21 maxlen: 21
83.139.24.0/22 maxlen: 22
83.139.28.0/22 maxlen: 22
83.139.32.0/22 maxlen: 22
185.36.36.0/22 maxlen: 22
185.36.36.0/24 maxlen: 24
217.76.0.0/20 maxlen: 20
217.76.0.0/21 maxlen: 21
217.76.0.0/24 maxlen: 24
217.76.1.0/24 maxlen: 24
217.76.2.0/24 maxlen: 24
217.76.8.0/21 maxlen: 21
2a00:1f28::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 15:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f6:c0:64:be:04:cb:3d:52:54:9b:95:a0:73:3f:38:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 16 13:05:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e965abf374d2083542e7843a4f794974d4f385e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7a:f5:c3:7e:24:67:13:36:ba:66:32:dd:42:
09:70:ae:aa:c9:21:db:ec:8f:50:fc:91:5c:f7:0f:
6e:92:1f:fc:6b:51:ba:4c:8a:a9:ac:cc:9b:e2:e9:
60:0a:ca:3d:67:64:64:4c:24:ff:d0:24:f8:d4:95:
a3:a9:49:a2:d5:58:e3:0b:00:4f:4a:ca:c1:ed:77:
e6:75:4f:2c:ae:b3:d3:4a:e5:bf:2a:f1:eb:a2:38:
56:a4:16:b0:bb:19:ec:0a:6e:bd:00:39:a8:75:34:
19:82:36:18:7c:49:ff:5b:ec:f2:5b:ce:e1:da:f7:
b1:cf:95:0e:65:9f:a0:ad:66:3e:69:5c:46:48:7f:
35:2b:f6:59:70:89:d2:35:2f:64:85:58:16:8d:78:
55:65:97:d4:a7:50:a8:8e:5b:5b:3d:cf:d1:0c:5b:
20:f6:25:65:e1:22:5d:49:a1:3e:49:0a:f8:31:3a:
d6:6d:ac:e1:c8:7c:2b:e0:0f:98:43:ac:0c:f0:36:
1a:1d:d2:f3:0a:a5:a7:f7:10:a1:40:c9:f6:82:05:
38:65:8f:b0:a0:f8:95:28:d9:49:a2:ad:bb:63:b3:
0c:b7:7d:76:f6:fc:1a:ac:ba:99:96:4c:0a:5e:7b:
db:58:f2:56:c4:33:61:5a:25:65:45:b4:b2:c2:0a:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:65:AB:F3:74:D2:08:35:42:E7:84:3A:4F:79:49:74:D4:F3:85:E7
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/6WWr83TSCDVC54Q6T3lJdNTzhec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.130.0.0/16
83.139.24.0-83.139.35.255
185.36.36.0/22
217.76.0.0/20
IPv6:
2a00:1f28::/32
Signature Algorithm: sha256WithRSAEncryption
4f:48:90:30:20:46:12:a0:50:1f:82:10:8d:90:98:29:cc:68:
5e:f3:52:26:3e:06:aa:a7:e1:04:b9:5f:16:10:50:c7:8d:6e:
14:38:92:8b:0b:9e:51:bc:b6:f4:5e:50:61:48:44:93:55:f8:
ce:4f:09:cb:5a:6f:ba:98:42:72:76:02:e4:af:36:30:6f:9b:
e1:53:92:29:88:e9:1a:4a:0a:3c:2f:b7:f4:d3:ab:6b:50:28:
9f:a1:a7:e2:aa:e6:e6:97:48:6b:c6:89:dc:4d:93:7f:cd:ee:
b2:b1:8d:3b:79:f6:0d:0d:9d:4d:52:bf:b2:80:2f:dd:b9:15:
a5:cb:fb:3a:30:de:b8:24:8a:ba:a3:80:ba:6c:b9:de:17:15:
3f:52:09:a7:75:6f:5a:eb:53:c7:70:b5:a9:a6:e2:bf:1a:da:
03:bb:59:5d:b9:f7:dd:e1:cf:4a:34:7d:24:0e:d1:4b:8b:a1:
77:65:36:70:a3:13:aa:bb:89:63:f9:d4:fd:c7:ff:6a:85:56:
1b:d8:78:95:61:f3:b6:4b:f9:fa:d9:40:ba:53:7c:2a:26:71:
f9:f1:66:3b:88:6a:cf:ef:e3:01:1c:4a:6b:39:88:5b:fe:93:
da:f3:c2:28:bd:e2:88:0a:5b:fb:59:fa:23:7d:49:0f:65:42:
fe:81:cd:7a
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAZz2wGS+BMs9UlSblaBzPzg+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNzVmYjRmNTJhODI5ZDEzNmUyOWE5YTAyNWM2MzZkMTlh
ZTMyOGUwHhcNMjYwMzE2MTMwNTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTY1YWJmMzc0ZDIwODM1NDJlNzg0M2E0Zjc5NDk3NGQ0ZjM4NWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXr1w34kZxM2umYy3UIJcK6qySHb
7I9Q/JFc9w9ukh/8a1G6TIqprMyb4ulgCso9Z2RkTCT/0CT41JWjqUmi1VjjCwBP
SsrB7XfmdU8srrPTSuW/KvHrojhWpBawuxnsCm69ADmodTQZgjYYfEn/W+zyW87h
2vexz5UOZZ+grWY+aVxGSH81K/ZZcInSNS9khVgWjXhVZZfUp1CojltbPc/RDFsg
9iVl4SJdSaE+SQr4MTrWbazhyHwr4A+YQ6wM8DYaHdLzCqWn9xChQMn2ggU4ZY+w
oPiVKNlJoq27Y7MMt3129vwarLqZlkwKXnvbWPJWxDNhWiVlRbSywgqcMwIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFOllq/N00gg1QueEOk95SXTU84XnMB8GA1UdIwQY
MBaAFA51+09SqCnRNuKamgJcY20ZrjKOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYt
MzViYTI2N2RlZDNiLzEvNldXcjgzVFNDRFZDNTRRNlQzbEpkTlR6aGVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYtMzViYTI2N2RlZDNi
LzEvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAlBAIAATAfAwMALoIwDAME
A1OLGAMEAlOLIAMEArkkJAMEBNlMADANBAIAAjAHAwUAKgAfKDANBgkqhkiG9w0B
AQsFAAOCAQEAT0iQMCBGEqBQH4IQjZCYKcxoXvNSJj4GqqfhBLlfFhBQx41uFDiS
iwueUby29F5QYUhEk1X4zk8Jy1pvuphCcnYC5K82MG+b4VOSKYjpGkoKPC+39NOr
a1Aon6Gn4qrm5pdIa8aJ3E2Tf83usrGNO3n2DQ2dTVK/soAv3bkVpcv7OjDeuCSK
uqOAumy53hcVP1IJp3VvWutTx3C1qabivxraA7tZXbn33eHPSjR9JA7RS4uhd2U2
cKMTqruJY/nU/cf/aoVWG9h4lWHztkv5+tlAulN8KiZx+fFmO4hqz+/jARxKazmI
W/6T2vPCKL3iiApb+1n6I31JD2VC/oHNeg==
-----END CERTIFICATE-----
Generated at Wed Mar 25 02:49:58 2026 by rpki-client