Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/NBarlOeDnTDHL4dsMLVONJ04KUo.roa
File: NBarlOeDnTDHL4dsMLVONJ04KUo.roa (raw, json)
Hash identifier: 0xEAm6YcgrktZQVDbCN5uEjk349MpvHCj/GBbYL2Q5M=
Subject key identifier: 34:16:AB:94:E7:83:9D:30:C7:2F:87:6C:30:B5:4E:34:9D:38:29:4A
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 019E5B0E7E667DE49879E5705103968C1AEB
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/NBarlOeDnTDHL4dsMLVONJ04KUo.roa
Signing time: Sun 24 May 2026 17:35:36 +0000
ROA not before: Sun 24 May 2026 17:35:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 40352
IP address blocks: 95.155.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5b:0e:7e:66:7d:e4:98:79:e5:70:51:03:96:8c:1a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: May 24 17:35:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3416ab94e7839d30c72f876c30b54e349d38294a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:59:44:e5:36:b1:59:29:e8:2b:58:01:99:61:
6f:7b:a2:72:b2:fc:7d:ef:fb:ce:ae:b4:4c:a8:b0:
66:e7:d2:7a:66:be:d7:5d:5b:4e:59:f6:b4:a7:a0:
3e:d1:f1:9c:b9:e0:c7:7e:ef:a1:52:84:8f:d2:9b:
c4:1c:cd:cf:01:b8:7f:5a:44:87:be:29:60:b1:b6:
7e:48:13:a0:b6:67:95:3f:47:3a:41:20:ab:20:16:
38:21:b2:c0:52:f3:3b:7a:4a:69:bf:69:75:de:35:
86:09:ab:16:49:2d:9e:61:55:72:18:b0:28:95:17:
0e:25:ce:fd:5e:d6:5d:96:b1:3b:18:43:58:e1:a1:
b1:7a:cb:07:be:1c:2f:e1:77:46:d9:49:95:16:2a:
f2:08:27:9c:73:b0:0e:b3:dc:c0:95:05:72:46:04:
2e:77:a0:2d:e7:ea:c4:08:bc:cd:b7:7d:e0:a6:bd:
17:fa:bf:36:87:a5:10:0c:c2:1c:f9:c1:3c:7e:06:
a3:b0:e2:9a:af:ba:fc:07:eb:1d:c1:ce:60:b1:e9:
44:f3:d9:ae:48:7e:02:80:40:03:c9:9e:80:45:fd:
13:05:a5:66:0d:5c:ea:76:ef:ec:da:f9:79:15:84:
e4:13:1d:db:02:a5:cc:4b:a9:18:85:4e:3d:41:12:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:16:AB:94:E7:83:9D:30:C7:2F:87:6C:30:B5:4E:34:9D:38:29:4A
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/NBarlOeDnTDHL4dsMLVONJ04KUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.155.154.0/24
Signature Algorithm: sha256WithRSAEncryption
30:74:92:88:a0:b5:1d:f1:19:e6:41:0a:83:34:a1:47:df:33:
25:ef:5d:13:b2:0f:41:4f:9d:bf:78:59:2e:aa:f3:49:53:4c:
a6:2e:f4:e9:77:f8:e7:e2:2e:c9:62:00:00:15:06:ff:87:45:
b4:c7:f4:06:f8:a4:cb:4d:d6:95:4d:8e:d8:42:89:57:9d:8d:
c6:53:3f:b0:b5:88:e3:f5:ae:63:20:fb:0f:bb:d9:21:ef:4b:
a5:1c:af:09:85:8c:01:79:a1:6f:ed:3e:0a:88:b8:36:04:0d:
61:2d:a8:83:cc:c9:99:92:41:f9:0e:0c:35:3d:70:7e:ce:37:
0e:80:68:5c:c6:46:16:39:06:e0:33:7d:7e:a2:53:34:14:f2:
dc:4f:8f:52:d5:e6:94:4f:29:e0:b8:c6:cc:c0:17:e9:7b:29:
c5:f4:fa:a3:67:c3:47:87:ec:78:72:89:6d:09:f9:7c:5e:4c:
1f:ef:6d:e7:3a:49:3c:7a:ed:e8:62:8d:23:be:bc:e2:d2:f5:
9f:24:42:8e:64:65:5f:cd:a4:de:ee:a9:38:0a:4b:70:8d:d9:
08:0d:ef:6f:a6:a4:13:6c:c0:d1:21:54:eb:73:67:40:5d:41:
1e:b1:1f:44:15:1e:0a:bd:92:d3:99:aa:4c:01:76:74:15:4f:
f8:ad:2b:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ5bDn5mfeSYeeVwUQOWjBrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YTI0OWEwZWFjZDhhYmNiZWEwZDgyZWY3MTAxNmQzODZl
OGVmOTQwHhcNMjYwNTI0MTczNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDE2YWI5NGU3ODM5ZDMwYzcyZjg3NmMzMGI1NGUzNDlkMzgyOTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1lE5TaxWSnoK1gBmWFve6Jysvx9
7/vOrrRMqLBm59J6Zr7XXVtOWfa0p6A+0fGcueDHfu+hUoSP0pvEHM3PAbh/WkSH
vilgsbZ+SBOgtmeVP0c6QSCrIBY4IbLAUvM7ekppv2l13jWGCasWSS2eYVVyGLAo
lRcOJc79XtZdlrE7GENY4aGxessHvhwv4XdG2UmVFiryCCecc7AOs9zAlQVyRgQu
d6At5+rECLzNt33gpr0X+r82h6UQDMIc+cE8fgajsOKar7r8B+sdwc5gselE89mu
SH4CgEADyZ6ARf0TBaVmDVzqdu/s2vl5FYTkEx3bAqXMS6kYhU49QRLxAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDQWq5Tng50wxy+HbDC1TjSdOClKMB8GA1UdIwQY
MBaAFMaiSaDqzYq8vqDYLvcQFtOG6O+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2Ut
MjEwNTdkMjI4ZDA1LzEvTkJhcmxPZURuVERITDRkc01MVk9OSjA0S1VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2UtMjEwNTdkMjI4ZDA1
LzEveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX5uaMA0G
CSqGSIb3DQEBCwUAA4IBAQAwdJKIoLUd8RnmQQqDNKFH3zMl710Tsg9BT52/eFku
qvNJU0ymLvTpd/jn4i7JYgAAFQb/h0W0x/QG+KTLTdaVTY7YQolXnY3GUz+wtYjj
9a5jIPsPu9kh70ulHK8JhYwBeaFv7T4KiLg2BA1hLaiDzMmZkkH5Dgw1PXB+zjcO
gGhcxkYWOQbgM31+olM0FPLcT49S1eaUTynguMbMwBfpeynF9PqjZ8NHh+x4colt
Cfl8Xkwf723nOkk8eu3oYo0jvrzi0vWfJEKOZGVfzaTe7qk4CktwjdkIDe9vpqQT
bMDRIVTrc2dAXUEesR9EFR4KvZLTmapMAXZ0FU/4rSt/
-----END CERTIFICATE-----
Generated at Tue May 26 03:58:43 2026 by rpki-client