Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/506EUvIcG6QIu8kZpYBHWQJ1W48.roa
File: 506EUvIcG6QIu8kZpYBHWQJ1W48.roa (raw, json)
Hash identifier: Hl/Q7De90U0ifCfBraVaCvKK2DxUtCuddBiWUnpVjjY=
Subject key identifier: E7:4E:84:52:F2:1C:1B:A4:08:BB:C9:19:A5:80:47:59:02:75:5B:8F
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 019E15EB840167080B278827FF8B3952B0DD
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/506EUvIcG6QIu8kZpYBHWQJ1W48.roa
Signing time: Mon 11 May 2026 07:23:36 +0000
ROA not before: Mon 11 May 2026 07:23:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197722
IP address blocks: 77.79.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:15:eb:84:01:67:08:0b:27:88:27:ff:8b:39:52:b0:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: May 11 07:23:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e74e8452f21c1ba408bbc919a580475902755b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:27:3b:4b:3f:e3:28:aa:de:55:38:4f:5d:ac:
45:ec:eb:53:f8:75:7a:91:82:f0:33:66:97:77:a3:
99:f0:9b:99:9a:f7:26:64:a4:6a:9c:62:63:25:9b:
b1:64:5d:ee:71:fd:3f:12:d7:82:0d:37:a1:2e:c5:
92:ab:d6:8b:c3:6a:30:e4:e7:8d:c9:db:78:18:12:
d6:a1:64:3f:3a:0c:34:cf:52:71:41:5e:82:77:26:
70:10:a7:cd:7a:a8:7c:92:39:0d:db:d9:1f:78:97:
43:b3:c8:50:76:ee:e2:6b:26:b6:41:4c:df:ee:a6:
57:a6:37:ef:4a:96:bf:55:ad:22:24:a7:7a:b4:82:
c2:65:8f:c3:3e:94:4a:31:3f:e0:c4:f3:8a:62:31:
56:a8:86:cc:1b:72:a9:17:a7:e2:26:19:7c:2d:1a:
ad:52:cc:00:8b:60:03:24:54:1c:4a:c4:df:2f:d5:
e5:b6:a9:b0:98:57:ba:6e:11:73:b5:fb:eb:fe:32:
f5:a2:fe:90:1c:ab:4d:2e:77:8e:3d:09:92:a2:2d:
de:81:3e:5e:4b:b2:4c:d1:33:bf:12:04:53:db:69:
cd:4c:23:2d:db:e3:c5:2a:eb:cf:53:65:4e:b6:0b:
a0:15:37:9f:a3:4f:2a:5f:d1:c6:ac:25:d2:4d:eb:
a9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4E:84:52:F2:1C:1B:A4:08:BB:C9:19:A5:80:47:59:02:75:5B:8F
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/506EUvIcG6QIu8kZpYBHWQJ1W48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.253.0/24
Signature Algorithm: sha256WithRSAEncryption
36:6d:1c:22:c7:8b:d9:14:f7:6f:37:92:9d:7d:f2:13:0d:3e:
c5:1a:aa:31:a4:29:0a:56:1f:f3:4e:3e:fb:ea:bf:64:c7:81:
70:85:84:6c:95:0f:f1:99:7b:c0:f0:42:2f:e6:ea:de:a5:ad:
43:06:60:08:fa:99:34:5f:ab:d8:c3:8d:e6:09:1a:58:40:d2:
e2:42:7f:00:b0:b3:1f:ae:95:24:89:48:9c:8e:51:64:1f:b4:
2a:eb:f9:98:61:d6:d5:41:0a:24:e2:d6:ff:19:10:8a:f1:9f:
1a:b7:1b:df:e1:b3:da:e8:d1:22:70:0f:e5:f6:86:cc:8d:eb:
8d:4f:5f:a5:57:ad:fc:ef:61:2f:6b:83:a3:c3:15:15:fc:22:
d6:cd:37:cb:0e:f0:0a:10:09:1f:c3:81:e0:2a:d3:1b:ad:e5:
8a:e9:e2:10:ec:90:79:2a:a1:af:db:05:48:7e:cb:53:6d:14:
5b:aa:41:38:e5:26:96:40:0a:58:b1:b0:db:63:1a:06:ca:74:
97:63:17:71:a9:11:3d:2a:1e:78:6d:3c:71:ca:d3:c8:7b:9c:
00:e8:fe:e4:2a:5e:e7:ff:bf:36:a5:41:c6:ca:eb:36:a4:84:
97:d8:20:59:cf:1c:93:f4:9f:01:5d:c4:55:b6:ed:15:35:01:
7a:62:28:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ4V64QBZwgLJ4gn/4s5UrDdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzUxMGZjOWI4NjVkOTZlM2FmYzdjNTYwNTZlZmFkOWEz
MzBjNWIwHhcNMjYwNTExMDcyMzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzRlODQ1MmYyMWMxYmE0MDhiYmM5MTlhNTgwNDc1OTAyNzU1YjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlic7Sz/jKKreVThPXaxF7OtT+HV6
kYLwM2aXd6OZ8JuZmvcmZKRqnGJjJZuxZF3ucf0/EteCDTehLsWSq9aLw2ow5OeN
ydt4GBLWoWQ/Ogw0z1JxQV6CdyZwEKfNeqh8kjkN29kfeJdDs8hQdu7iaya2QUzf
7qZXpjfvSpa/Va0iJKd6tILCZY/DPpRKMT/gxPOKYjFWqIbMG3KpF6fiJhl8LRqt
UswAi2ADJFQcSsTfL9XltqmwmFe6bhFztfvr/jL1ov6QHKtNLneOPQmSoi3egT5e
S7JM0TO/EgRT22nNTCMt2+PFKuvPU2VOtgugFTefo08qX9HGrCXSTeupTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOdOhFLyHBukCLvJGaWAR1kCdVuPMB8GA1UdIwQY
MBaAFGjFEPybhl2W46/HxWBW762aMwxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEt
NWQ2NjVlOTk4ZjZhLzEvNTA2RVV2SWNHNlFJdThrWnBZQkhXUUoxVzQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEtNWQ2NjVlOTk4ZjZh
LzEvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATU/9MA0G
CSqGSIb3DQEBCwUAA4IBAQA2bRwix4vZFPdvN5KdffITDT7FGqoxpCkKVh/zTj77
6r9kx4FwhYRslQ/xmXvA8EIv5urepa1DBmAI+pk0X6vYw43mCRpYQNLiQn8AsLMf
rpUkiUicjlFkH7Qq6/mYYdbVQQok4tb/GRCK8Z8atxvf4bPa6NEicA/l9obMjeuN
T1+lV63872Eva4OjwxUV/CLWzTfLDvAKEAkfw4HgKtMbreWK6eIQ7JB5KqGv2wVI
fstTbRRbqkE45SaWQApYsbDbYxoGynSXYxdxqRE9Kh54bTxxytPIe5wA6P7kKl7n
/782pUHGyus2pISX2CBZzxyT9J8BXcRVtu0VNQF6YihP
-----END CERTIFICATE-----
Generated at Wed May 13 02:39:54 2026 by rpki-client