Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/txjcbRu8Lb8eOqj-B5FfPUFN3Ng.roa
File: txjcbRu8Lb8eOqj-B5FfPUFN3Ng.roa (raw, json)
Hash identifier: nalpF/g00olfH+SSv4y4o6X9yfhJ62Oc4MijSiEores=
Subject key identifier: B7:18:DC:6D:1B:BC:2D:BF:1E:3A:A8:FE:07:91:5F:3D:41:4D:DC:D8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019D44C1B3AB1B3BDC157D8CB25661179FB0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/txjcbRu8Lb8eOqj-B5FfPUFN3Ng.roa
Signing time: Tue 31 Mar 2026 16:37:18 +0000
ROA not before: Tue 31 Mar 2026 16:37:18 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207046
IP address blocks: 45.134.84.0/22 maxlen: 24
80.71.155.0/24 maxlen: 24
178.212.225.0/24 maxlen: 24
185.221.16.0/23 maxlen: 23
185.224.220.0/22 maxlen: 22
185.227.206.0/24 maxlen: 24
185.227.207.0/24 maxlen: 24
185.247.4.0/22 maxlen: 24
185.247.5.0/24 maxlen: 24
185.247.6.0/23 maxlen: 24
185.247.7.0/24 maxlen: 24
185.249.52.0/24 maxlen: 24
185.249.204.0/22 maxlen: 22
185.250.182.0/23 maxlen: 24
194.113.28.0/22 maxlen: 24
194.146.220.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 Apr 2026 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:44:c1:b3:ab:1b:3b:dc:15:7d:8c:b2:56:61:17:9f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 31 16:37:18 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b718dc6d1bbc2dbf1e3aa8fe07915f3d414ddcd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7c:2e:2a:d5:11:66:28:02:82:e0:88:9f:73:
8e:21:a3:ef:d4:26:f0:55:81:3e:0b:3f:6f:1b:a2:
26:d5:12:1f:0c:9d:9f:20:7e:8b:a6:2b:95:f1:51:
ef:87:7d:ee:8c:4a:70:df:d5:01:00:b0:0d:cb:08:
d5:dc:13:57:cf:51:75:df:af:aa:d5:9f:43:fe:ff:
13:35:9d:47:af:c3:60:41:d7:9a:95:f3:5d:5f:a2:
6e:05:a8:38:75:b1:70:28:3f:0a:ef:1c:64:28:c2:
88:eb:79:4d:d4:6f:a0:48:5e:fc:fd:ad:40:ff:35:
d5:cf:df:8c:09:39:46:58:fb:4e:6a:28:b4:1a:45:
d1:ea:bc:9c:c3:41:32:ff:d2:3f:83:cf:0b:42:fa:
b2:e1:93:8b:2f:f6:e9:ce:17:a1:08:3d:8e:ad:9f:
c7:47:d9:51:54:0e:34:39:95:c2:20:a5:79:db:25:
6f:b2:e8:67:57:39:09:66:92:91:7b:e1:22:00:68:
99:cd:68:27:0e:50:95:4f:44:0e:99:50:2a:d5:4c:
0d:03:ef:5d:d8:fb:07:5e:32:25:7f:96:b3:5a:77:
a6:e8:7c:e0:54:25:e9:8c:7b:03:c1:8e:02:6a:57:
96:d3:d6:be:3a:52:38:c8:5e:ab:5b:02:49:4a:1a:
80:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:18:DC:6D:1B:BC:2D:BF:1E:3A:A8:FE:07:91:5F:3D:41:4D:DC:D8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/txjcbRu8Lb8eOqj-B5FfPUFN3Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
80.71.155.0/24
178.212.225.0/24
185.221.16.0/23
185.224.220.0/22
185.227.206.0/23
185.247.4.0/22
185.249.52.0/24
185.249.204.0/22
185.250.182.0/23
194.113.28.0/22
194.146.220.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:6c:c6:68:ad:cf:6d:1c:8d:6e:47:5b:70:7e:f5:aa:64:1d:
1d:cd:02:69:12:5a:f6:90:4a:76:7e:33:00:4c:9b:9e:64:99:
f4:d4:30:d5:9d:52:5b:eb:a1:b8:74:d5:34:60:80:e4:5e:92:
c1:55:ab:c8:a2:95:11:12:58:c0:df:a4:78:61:3c:cc:31:fc:
3f:72:a8:51:7e:d8:16:d5:a8:56:23:c9:c3:56:40:a0:83:57:
0d:5b:16:26:97:21:77:22:1d:f6:48:65:b3:f5:19:95:1b:6e:
b5:21:a2:12:04:39:2b:8f:d0:35:82:fa:5e:42:88:d7:a1:2c:
8d:bf:43:c4:36:83:db:bf:48:fd:f8:6a:7f:0a:56:e7:e2:b7:
d1:43:89:18:c4:60:fb:4c:02:83:71:74:40:bd:71:e7:3e:5b:
44:c0:5c:73:f3:8b:c3:1f:f8:48:54:a0:90:46:65:dd:fa:a4:
b3:49:1e:16:84:c8:0f:39:22:f3:e2:eb:f4:a5:9e:41:0e:b8:
98:da:83:4a:51:76:a4:d3:c0:8b:58:58:8f:b6:92:51:6a:35:
40:ef:45:22:7c:53:5a:59:15:9f:7f:81:c7:67:ce:9c:44:e2:
b6:84:61:f0:47:4a:77:aa:7c:ca:78:6d:4b:e2:2c:26:21:77:
09:a5:48:10
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAZ1EwbOrGzvcFX2MslZhF5+wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjYwMzMxMTYzNzE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzE4ZGM2ZDFiYmMyZGJmMWUzYWE4ZmUwNzkxNWYzZDQxNGRkY2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHwuKtURZigCguCIn3OOIaPv1Cbw
VYE+Cz9vG6Im1RIfDJ2fIH6LpiuV8VHvh33ujEpw39UBALANywjV3BNXz1F136+q
1Z9D/v8TNZ1Hr8NgQdealfNdX6JuBag4dbFwKD8K7xxkKMKI63lN1G+gSF78/a1A
/zXVz9+MCTlGWPtOaii0GkXR6rycw0Ey/9I/g88LQvqy4ZOLL/bpzhehCD2OrZ/H
R9lRVA40OZXCIKV52yVvsuhnVzkJZpKRe+EiAGiZzWgnDlCVT0QOmVAq1UwNA+9d
2PsHXjIlf5azWnem6HzgVCXpjHsDwY4CaleW09a+OlI4yF6rWwJJShqALQIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFLcY3G0bvC2/Hjqo/geRXz1BTdzYMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvdHhqY2JSdThMYjhlT3FqLUI1RmZQVUZOM05nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQCLYZUAwQA
UEebAwQAstThAwQBud0QAwQCueDcAwQBuePOAwQCufcEAwQAufk0AwQCufnMAwQB
ufq2AwQCwnEcAwQCwpLcMA0GCSqGSIb3DQEBCwUAA4IBAQBObMZorc9tHI1uR1tw
fvWqZB0dzQJpElr2kEp2fjMATJueZJn01DDVnVJb66G4dNU0YIDkXpLBVavIopUR
EljA36R4YTzMMfw/cqhRftgW1ahWI8nDVkCgg1cNWxYmlyF3Ih32SGWz9RmVG261
IaISBDkrj9A1gvpeQojXoSyNv0PENoPbv0j9+Gp/Clbn4rfRQ4kYxGD7TAKDcXRA
vXHnPltEwFxz84vDH/hIVKCQRmXd+qSzSR4WhMgPOSLz4uv0pZ5BDriY2oNKUXak
08CLWFiPtpJRajVA70UifFNaWRWff4HHZ86cROK2hGHwR0p3qnzKeG1L4iwmIXcJ
pUgQ
-----END CERTIFICATE-----
Generated at Fri Apr 3 05:12:04 2026 by rpki-client