Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/SeViM70Wqqd7UFcU2bBjE8RzwJU.roa
File: SeViM70Wqqd7UFcU2bBjE8RzwJU.roa (raw, json)
Hash identifier: 9MH1Qkdfg6lA/2wp9EQkv/Gv7ZDJcBAZDDp+sMunn5c=
Subject key identifier: 49:E5:62:33:BD:16:AA:A7:7B:50:57:14:D9:B0:63:13:C4:73:C0:95
Certificate issuer: /CN=bbe6fe14b8755d9ff7466fa97c4a55f735183249
Certificate serial: 019D348D706C91663ED5F0D80F5C48B9A484
Authority key identifier: BB:E6:FE:14:B8:75:5D:9F:F7:46:6F:A9:7C:4A:55:F7:35:18:32:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/SeViM70Wqqd7UFcU2bBjE8RzwJU.roa
Signing time: Sat 28 Mar 2026 13:06:17 +0000
ROA not before: Sat 28 Mar 2026 13:06:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 210036
IP address blocks: 193.36.104.0/24 maxlen: 24
193.36.105.0/24 maxlen: 24
193.36.106.0/24 maxlen: 24
2a0d:d740::/48 maxlen: 48
2a0d:d740:105::/48 maxlen: 48
2a0d:d742::/45 maxlen: 45
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:8d:70:6c:91:66:3e:d5:f0:d8:0f:5c:48:b9:a4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe6fe14b8755d9ff7466fa97c4a55f735183249
Validity
Not Before: Mar 28 13:06:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=49e56233bd16aaa77b505714d9b06313c473c095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:1b:b7:6c:eb:64:5e:ad:71:5a:45:d8:3f:
dd:51:41:9a:70:ea:24:d7:a7:ba:e6:d9:f0:e9:f6:
87:49:c7:d9:cb:7d:ab:d2:14:9a:a1:a9:de:10:b1:
34:1a:1a:07:84:03:0b:0d:69:22:23:e0:6a:b7:5e:
ff:d0:9c:db:4f:44:24:1b:ac:22:b1:ae:ac:15:ff:
b2:60:ec:78:c2:0e:45:4b:4a:71:a2:80:b5:a5:92:
b6:d7:a2:0f:c0:84:4d:9b:86:0e:be:e1:e4:b9:b7:
13:d9:54:a3:02:af:88:d0:6b:27:01:05:7e:d0:9c:
ae:88:fe:fc:47:44:6b:53:4a:14:80:5d:08:af:5d:
e1:79:c5:73:ec:67:75:2b:45:89:db:92:2b:43:7f:
ee:c4:64:61:92:2a:fc:1a:4c:33:f8:0e:e5:38:ac:
d3:a6:a5:63:4e:f2:21:11:d4:1f:04:1a:d0:65:08:
4d:b3:1c:f3:0d:44:ae:82:48:46:d0:a4:f9:a4:3b:
a2:67:1b:ba:86:2f:1e:72:e2:47:ea:89:1c:7a:4c:
81:f0:3d:6d:2d:a4:82:06:c3:d1:c4:83:33:cb:dc:
b6:c5:c5:23:ee:21:d2:dc:1b:34:a3:23:cf:b6:10:
a4:f8:8c:89:0a:f6:e4:fa:03:fe:55:00:19:e5:d0:
26:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E5:62:33:BD:16:AA:A7:7B:50:57:14:D9:B0:63:13:C4:73:C0:95
X509v3 Authority Key Identifier:
keyid:BB:E6:FE:14:B8:75:5D:9F:F7:46:6F:A9:7C:4A:55:F7:35:18:32:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/SeViM70Wqqd7UFcU2bBjE8RzwJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/75d4fd-90f5-4baa-a35c-87a6333d6e64/1/u-b-FLh1XZ_3Rm-pfEpV9zUYMkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.104.0-193.36.106.255
IPv6:
2a0d:d740::/48
2a0d:d740:105::/48
2a0d:d742::/45
Signature Algorithm: sha256WithRSAEncryption
2b:d5:49:73:60:ec:ec:84:3b:02:81:de:b9:03:e6:a1:43:6e:
94:f2:62:45:b3:e9:7a:6b:05:7a:c9:08:df:53:00:06:6e:29:
97:77:d6:1c:f1:f9:ae:0a:f4:5f:81:06:3f:83:79:65:9c:90:
bf:b8:f2:ee:f0:0e:0d:24:e0:32:6a:18:0a:fa:d2:c0:e9:90:
49:31:6b:f7:8a:fa:f6:1f:fc:98:00:c4:80:9f:08:05:e0:5d:
01:55:0f:e2:d8:9f:63:f7:c9:bd:52:5b:a7:30:31:4e:95:5a:
03:75:6f:f6:d7:3d:76:19:b9:01:5a:66:cd:e1:22:67:88:44:
50:85:c4:ce:79:e4:af:06:5a:31:8a:20:f9:e0:c0:e8:53:bc:
ce:f4:33:a8:a7:b7:1e:c2:fc:bf:e2:2f:7c:5e:ae:25:ee:bc:
65:35:2d:56:8a:9b:bf:49:ed:63:32:eb:8f:51:16:e9:34:aa:
0c:64:a7:23:90:23:e3:e0:68:5b:a8:97:0f:64:cf:e9:14:d0:
20:c9:20:c0:60:45:bf:f7:4d:85:b6:3e:bb:41:cb:e0:be:75:
fd:27:7c:f9:f4:f3:94:d4:d2:90:63:17:ae:45:18:a8:48:00:
e9:1b:19:26:88:10:ef:b3:5e:ec:b7:7f:59:c3:07:49:22:80:
75:85:cd:6b
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAZ00jXBskWY+1fDYD1xIuaSEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZTZmZTE0Yjg3NTVkOWZmNzQ2NmZhOTdjNGE1NWY3MzUx
ODMyNDkwHhcNMjYwMzI4MTMwNjE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWU1NjIzM2JkMTZhYWE3N2I1MDU3MTRkOWIwNjMxM2M0NzNjMDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxywbt2zrZF6tcVpF2D/dUUGacOok
16e65tnw6faHScfZy32r0hSaoaneELE0GhoHhAMLDWkiI+Bqt17/0JzbT0QkG6wi
sa6sFf+yYOx4wg5FS0pxooC1pZK216IPwIRNm4YOvuHkubcT2VSjAq+I0GsnAQV+
0JyuiP78R0RrU0oUgF0Ir13hecVz7Gd1K0WJ25IrQ3/uxGRhkir8Gkwz+A7lOKzT
pqVjTvIhEdQfBBrQZQhNsxzzDUSugkhG0KT5pDuiZxu6hi8ecuJH6okcekyB8D1t
LaSCBsPRxIMzy9y2xcUj7iHS3Bs0oyPPthCk+IyJCvbk+gP+VQAZ5dAmlwIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFEnlYjO9Fqqne1BXFNmwYxPEc8CVMB8GA1UdIwQY
MBaAFLvm/hS4dV2f90ZvqXxKVfc1GDJJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdS1iLUZMaDFYWl8zUm0tcGZFcFY5elVZTWtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83NWQ0ZmQtOTBmNS00YmFhLWEzNWMt
ODdhNjMzM2Q2ZTY0LzEvU2VWaU03MFdxcWQ3VUZjVTJiQmpFOFJ6d0pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC83NWQ0ZmQtOTBmNS00YmFhLWEzNWMtODdhNjMzM2Q2ZTY0
LzEvdS1iLUZMaDFYWl8zUm0tcGZFcFY5elVZTWtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAUBAIAATAOMAwDBAPBJGgD
BADBJGowIQQCAAIwGwMHACoN10AAAAMHACoN10ABBQMHAyoN10IAADANBgkqhkiG
9w0BAQsFAAOCAQEAK9VJc2Ds7IQ7AoHeuQPmoUNulPJiRbPpemsFeskI31MABm4p
l3fWHPH5rgr0X4EGP4N5ZZyQv7jy7vAODSTgMmoYCvrSwOmQSTFr94r69h/8mADE
gJ8IBeBdAVUP4tifY/fJvVJbpzAxTpVaA3Vv9tc9dhm5AVpmzeEiZ4hEUIXEznnk
rwZaMYog+eDA6FO8zvQzqKe3HsL8v+IvfF6uJe68ZTUtVoqbv0ntYzLrj1EW6TSq
DGSnI5Aj4+BoW6iXD2TP6RTQIMkgwGBFv/dNhbY+u0HL4L51/Sd8+fTzlNTSkGMX
rkUYqEgA6RsZJogQ77Ne7Ld/WcMHSSKAdYXNaw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:05 2026 by rpki-client