Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c6zz610dAPS93YECDNiRE3FFJv8.roa
File: c6zz610dAPS93YECDNiRE3FFJv8.roa (raw, json)
Hash identifier: OsQ9xfdlBk9mMh8w37FIGirc6gzFq4ptiH5uxHMx2Y4=
Subject key identifier: 73:AC:F3:EB:5D:1D:00:F4:BD:DD:81:02:0C:D8:91:13:71:45:26:FF
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 019E1E27FB02A6C9ACC96E915CEA0087DC96
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c6zz610dAPS93YECDNiRE3FFJv8.roa
Signing time: Tue 12 May 2026 21:46:37 +0000
ROA not before: Tue 12 May 2026 21:46:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209372
IP address blocks: 77.90.149.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.167.0/24 maxlen: 24
77.90.168.0/24 maxlen: 24
77.90.174.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.135.0/24 maxlen: 24
213.209.137.0/24 maxlen: 24
213.209.153.0/24 maxlen: 24
213.209.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:46:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:27:fb:02:a6:c9:ac:c9:6e:91:5c:ea:00:87:dc:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 12 21:46:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=73acf3eb5d1d00f4bddd81020cd89113714526ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d1:17:f8:49:36:1a:bd:b3:ba:a6:47:2a:15:
7d:17:db:b8:f6:34:08:ee:84:0e:07:aa:63:1b:be:
de:9c:0c:cb:69:7a:8c:ec:da:44:19:df:c3:97:d5:
45:d6:8b:b3:2f:55:fc:21:0f:d5:e2:b0:78:43:50:
d4:35:df:64:4c:d4:51:c7:96:71:d7:fa:67:3c:eb:
dd:66:ee:61:e9:39:2b:4c:d1:a0:55:91:6b:0c:b1:
e2:8c:55:56:22:88:53:d4:51:0d:d8:89:e5:d1:2c:
70:da:fc:3b:7e:56:7b:39:37:f3:9e:f2:84:f8:3c:
e1:55:02:5c:63:92:7c:94:5c:4a:23:9a:be:b7:d3:
4c:36:14:a0:65:ac:76:b9:e4:bd:b6:ff:27:27:0f:
ac:9c:9d:86:66:12:a9:11:2a:7a:c1:5c:24:40:6b:
f1:23:39:19:e5:12:f6:9d:1e:c8:d1:35:75:55:b1:
a5:2e:f0:f6:38:e1:2e:b9:e4:45:c6:ba:24:3f:2a:
fe:51:5c:90:c9:e0:63:a2:eb:fc:23:2f:ff:9b:cd:
57:aa:ad:28:4b:61:d6:d7:bb:c0:69:66:70:57:95:
24:c1:83:f2:8f:70:43:99:45:9f:74:2c:69:18:5b:
10:7a:6e:e0:57:1e:1a:3c:7e:8e:e6:f1:fb:18:31:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AC:F3:EB:5D:1D:00:F4:BD:DD:81:02:0C:D8:91:13:71:45:26:FF
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c6zz610dAPS93YECDNiRE3FFJv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.149.0-77.90.150.255
77.90.152.0/24
77.90.155.0/24
77.90.167.0-77.90.168.255
77.90.174.0/24
77.90.179.0-77.90.181.255
185.230.12.0/24
213.209.133.0-213.209.135.255
213.209.137.0/24
213.209.153.0-213.209.154.255
Signature Algorithm: sha256WithRSAEncryption
2a:da:4e:95:70:dd:8f:aa:c0:dc:65:c7:a4:e0:f4:8d:e7:5c:
10:d8:6a:70:27:6d:e4:01:f6:51:7c:3a:b4:5e:7a:8a:6c:9d:
51:9d:0d:a7:94:e2:2d:0e:76:22:ea:b9:54:6e:ef:ca:4f:1d:
95:2c:c1:89:cc:ad:94:2b:a9:41:34:23:25:ae:8c:6f:6d:6a:
16:e7:18:38:33:ae:9f:25:48:a3:b7:ed:65:72:50:bc:76:e4:
ae:40:ce:58:0d:53:d7:84:24:96:af:d4:1d:57:1a:ee:17:60:
06:10:8b:4f:eb:c3:e8:8c:ee:f0:fb:6e:70:50:6d:fc:43:6e:
bb:f7:21:83:17:3c:97:34:a5:dc:53:34:90:00:01:f3:a2:26:
4b:af:9e:38:72:d1:30:df:bb:82:41:14:41:95:2e:70:ab:3d:
66:03:9d:3b:1a:f2:ee:15:f7:fd:de:60:eb:4a:14:f4:98:45:
3f:6a:52:77:6f:c2:8a:90:16:5d:83:17:5a:46:be:38:9d:d6:
0d:1d:09:6e:33:e8:eb:57:4d:6c:3f:a2:f5:4c:75:df:9b:48:
5b:0d:e1:2c:88:2a:ed:89:51:24:24:fd:d6:8a:02:cd:ba:be:
b2:14:83:14:9f:f0:ba:ec:e5:49:d8:d3:96:4c:c9:55:77:e6:
17:21:45:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:15:18 2026 by rpki-client