Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/SlyARKA9ZyNBxij8A9fhIY_EY3k.roa
File: SlyARKA9ZyNBxij8A9fhIY_EY3k.roa (raw, json)
Hash identifier: aPBp2qbjiTmEjK4mIyd8CC+c6TKeCvSqS3J9M7NE2/k=
Subject key identifier: 4A:5C:80:44:A0:3D:67:23:41:C6:28:FC:03:D7:E1:21:8F:C4:63:79
Certificate issuer: /CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Certificate serial: 019DE9B24BA4555A8F4BB14BE228CEDBC076
Authority key identifier: 30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/SlyARKA9ZyNBxij8A9fhIY_EY3k.roa
Signing time: Sat 02 May 2026 17:17:49 +0000
ROA not before: Sat 02 May 2026 17:17:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402215
IP address blocks: 185.87.58.0/24 maxlen: 24
188.246.209.0/24 maxlen: 24
188.246.212.0/24 maxlen: 24
188.246.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e9:b2:4b:a4:55:5a:8f:4b:b1:4b:e2:28:ce:db:c0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Validity
Not Before: May 2 17:17:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4a5c8044a03d672341c628fc03d7e1218fc46379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:81:91:26:0b:45:b1:18:60:30:91:c1:a7:
05:81:12:dc:37:17:39:92:c4:96:b5:6e:aa:b5:34:
62:81:54:65:d0:63:bc:08:5e:1d:a4:0d:e2:f9:9b:
b9:01:82:52:d7:9e:34:2a:da:f4:d8:c7:70:11:47:
a0:a4:0c:b2:b2:8c:d9:a6:2c:39:c1:ba:9c:e8:92:
b2:ac:ab:89:1d:97:17:2a:a3:11:00:d9:6d:d2:cd:
a5:21:e9:b3:84:64:14:09:4d:e1:e6:9f:e5:7c:7c:
3a:63:f4:3c:09:df:50:5e:ee:6a:10:2f:e6:57:dc:
22:87:b1:80:da:cb:de:15:b8:91:4a:aa:4e:98:58:
69:56:ca:e8:1f:19:f3:be:67:98:67:5f:4d:42:5b:
a9:23:f2:57:bb:88:13:21:64:02:51:d0:dc:4c:35:
81:74:ab:b0:62:ed:89:8b:22:c5:0e:09:22:ef:83:
4e:76:3d:6d:44:d8:1c:3e:29:06:7d:ca:46:a0:bd:
d2:75:a2:09:8b:8c:99:da:23:4f:7f:c3:d9:90:46:
3e:a4:a9:1c:db:72:55:75:31:7b:ba:f0:26:36:4b:
08:9b:e5:4e:17:46:27:f3:52:92:d3:c7:d5:05:a2:
a1:e0:84:29:6b:bb:32:af:05:c7:66:9c:8c:24:52:
cf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:5C:80:44:A0:3D:67:23:41:C6:28:FC:03:D7:E1:21:8F:C4:63:79
X509v3 Authority Key Identifier:
keyid:30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/SlyARKA9ZyNBxij8A9fhIY_EY3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.58.0/24
188.246.209.0/24
188.246.212.0/24
188.246.215.0/24
Signature Algorithm: sha256WithRSAEncryption
41:9b:8f:51:d0:be:16:ad:8b:10:12:ca:01:06:55:ed:b3:2c:
de:3a:b2:38:ec:f1:d1:c9:d6:18:6b:d2:48:6c:3e:78:e7:7f:
86:0f:9f:29:68:c6:bb:2c:79:a3:c1:65:64:3f:bd:80:c1:ea:
14:aa:69:0e:c5:50:2d:71:07:70:b9:1b:15:52:2a:ad:f6:b8:
ad:51:02:c1:be:45:d1:e9:a5:6f:38:b6:2d:dd:83:84:38:14:
a3:37:55:46:3b:a9:03:bd:7a:f9:56:c7:3b:9a:9a:25:6d:06:
25:5d:3a:71:9e:75:93:02:35:32:85:a8:4c:37:2c:dd:57:72:
bb:84:1b:e4:41:de:80:4a:92:2e:21:14:19:75:a8:bc:ab:85:
c3:96:73:66:09:f9:da:d6:1b:5a:73:e6:33:10:d1:56:e6:64:
bf:8d:b9:e0:15:f8:93:ae:ee:88:20:a4:1a:b4:2a:13:11:8e:
d2:e4:57:f8:63:27:77:a9:db:e0:7e:bc:b4:3a:48:de:07:48:
1d:ef:d7:22:28:b0:ba:29:16:49:d4:59:30:4e:54:c9:9d:23:
5a:6a:a3:69:aa:9c:3f:de:1b:79:df:a3:96:1f:23:55:08:c0:
87:ea:12:cc:33:f9:3b:92:b0:02:f4:17:71:e4:2e:b8:57:d3:
e1:68:7e:2a
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZ3pskukVVqPS7FL4ijO28B2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMjdhNjMxYmI2NzM4ZWI2OGJiNmVhNmM0MjRlZjRhN2Qx
NGMzY2IwHhcNMjYwNTAyMTcxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTVjODA0NGEwM2Q2NzIzNDFjNjI4ZmMwM2Q3ZTEyMThmYzQ2Mzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF6BkSYLRbEYYDCRwacFgRLcNxc5
ksSWtW6qtTRigVRl0GO8CF4dpA3i+Zu5AYJS1540Ktr02MdwEUegpAyysozZpiw5
wbqc6JKyrKuJHZcXKqMRANlt0s2lIemzhGQUCU3h5p/lfHw6Y/Q8Cd9QXu5qEC/m
V9wih7GA2sveFbiRSqpOmFhpVsroHxnzvmeYZ19NQlupI/JXu4gTIWQCUdDcTDWB
dKuwYu2JiyLFDgki74NOdj1tRNgcPikGfcpGoL3SdaIJi4yZ2iNPf8PZkEY+pKkc
23JVdTF7uvAmNksIm+VOF0Yn81KS08fVBaKh4IQpa7syrwXHZpyMJFLPZQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFEpcgESgPWcjQcYo/APX4SGPxGN5MB8GA1UdIwQY
MBaAFDAnpjG7ZzjraLtupsQk70p9FMPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYt
MWRkNmQyODFjODhhLzEvU2x5QVJLQTlaeU5CeGlqOEE5ZmhJWV9FWTNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYtMWRkNmQyODFjODhh
LzEvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAuVc6AwQA
vPbRAwQAvPbUAwQAvPbXMA0GCSqGSIb3DQEBCwUAA4IBAQBBm49R0L4WrYsQEsoB
BlXtsyzeOrI47PHRydYYa9JIbD5453+GD58paMa7LHmjwWVkP72AweoUqmkOxVAt
cQdwuRsVUiqt9ritUQLBvkXR6aVvOLYt3YOEOBSjN1VGO6kDvXr5Vsc7mpolbQYl
XTpxnnWTAjUyhahMNyzdV3K7hBvkQd6ASpIuIRQZdai8q4XDlnNmCfna1htac+Yz
ENFW5mS/jbngFfiTru6IIKQatCoTEY7S5Ff4Yyd3qdvgfry0OkjeB0gd79ciKLC6
KRZJ1FkwTlTJnSNaaqNpqpw/3ht536OWHyNVCMCH6hLMM/k7krAC9Bdx5C64V9Ph
aH4q
-----END CERTIFICATE-----
Generated at Wed May 13 04:08:39 2026 by rpki-client