Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/gYOSbvuGz0Ck_POO1-CUDGzRVCI.roa
File: gYOSbvuGz0Ck_POO1-CUDGzRVCI.roa (raw, json)
Hash identifier: sHzfPL8RN8yWD3QXG0c8+NS1S1mp9iximR6+niBdSo4=
Subject key identifier: 81:83:92:6E:FB:86:CF:40:A4:FC:F3:8E:D7:E0:94:0C:6C:D1:54:22
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019D1A7D43CFC705AFC6E5572108A0BDBA49
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/gYOSbvuGz0Ck_POO1-CUDGzRVCI.roa
Signing time: Mon 23 Mar 2026 11:38:30 +0000
ROA not before: Mon 23 Mar 2026 11:38:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215346
IP address blocks: 193.42.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1a:7d:43:cf:c7:05:af:c6:e5:57:21:08:a0:bd:ba:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Mar 23 11:38:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8183926efb86cf40a4fcf38ed7e0940c6cd15422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fa:bc:07:c0:d7:b8:a0:e4:77:fb:14:5a:65:
40:dc:54:1a:9e:dd:a5:0c:6e:9c:ca:ca:7b:6b:d1:
41:92:74:da:51:b6:f6:d8:47:e4:f7:be:d8:8a:bb:
55:75:e7:af:50:8e:0d:27:c2:06:00:fa:e5:ab:e5:
ea:79:be:12:0b:3d:96:c7:c8:05:29:35:c8:60:04:
c0:da:26:bb:af:7e:f3:41:20:e5:28:74:7b:19:a9:
9b:b5:11:a8:17:ec:18:26:fa:72:1e:19:57:71:ad:
b6:9a:dc:98:be:a0:b9:3c:9d:4e:70:a0:9b:bb:51:
75:fd:38:c1:43:93:96:c9:73:e6:48:96:c1:c6:64:
43:79:27:dc:71:26:0e:67:15:d6:1b:7a:a2:67:b3:
97:e7:19:e6:40:41:f8:a9:93:5d:6a:2c:b3:b5:05:
52:c1:53:55:03:96:b4:af:3e:8d:8b:35:53:47:5a:
c5:b9:5a:27:58:ed:b8:95:ce:79:db:1b:0c:d7:69:
db:05:3f:df:df:68:22:4e:e9:b0:f4:34:1c:05:9b:
4a:6b:7c:ba:10:21:2c:42:41:8f:6b:61:10:45:7a:
4f:7f:96:15:57:d2:82:68:8c:38:5e:e1:0d:03:08:
a6:3e:28:96:0f:57:6e:19:ba:71:80:ed:b6:b9:5b:
cd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:83:92:6E:FB:86:CF:40:A4:FC:F3:8E:D7:E0:94:0C:6C:D1:54:22
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/gYOSbvuGz0Ck_POO1-CUDGzRVCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.118.0/24
Signature Algorithm: sha256WithRSAEncryption
73:60:1f:ef:86:24:e4:b7:5c:64:60:3d:6f:08:47:f3:1c:cf:
64:ff:54:88:7a:fb:47:55:05:3d:7f:1b:10:ea:cd:ea:b9:71:
a5:91:33:ec:97:b1:91:eb:fd:33:2b:be:87:3a:52:36:76:9b:
95:38:23:b5:ba:8e:5d:0a:f4:8c:78:22:b0:3b:54:83:e2:01:
2f:c6:97:af:5e:40:b4:7a:c6:a9:07:95:49:ba:a2:b3:8d:84:
09:64:08:95:7b:46:4d:e8:03:75:b9:f6:26:af:e8:df:41:b3:
df:4f:d6:bb:99:40:29:23:63:25:7b:d0:13:c5:c4:da:ed:a4:
90:9d:21:cb:7a:1a:25:58:bf:81:e9:eb:04:3d:9a:aa:21:c4:
e7:7d:f6:63:6b:fc:86:6a:de:d6:be:90:83:a1:f2:7c:02:c9:
9b:ff:09:58:a3:65:8a:f0:e2:22:23:57:91:3f:68:5f:48:61:
f7:f6:96:77:c2:e1:3b:f7:62:e3:3f:41:b7:79:d7:08:61:90:
ed:e7:c7:ad:13:8b:f6:5d:72:c9:08:99:fb:37:d9:04:75:76:
28:6a:97:e9:bf:0f:16:19:d4:ca:17:53:50:e4:95:09:38:a3:
73:da:fe:a3:59:64:db:4f:a4:b3:8e:82:df:1b:9c:bb:9a:1a:
ef:ee:da:9e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ0afUPPxwWvxuVXIQigvbpJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjYwMzIzMTEzODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTgzOTI2ZWZiODZjZjQwYTRmY2YzOGVkN2UwOTQwYzZjZDE1NDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg/q8B8DXuKDkd/sUWmVA3FQant2l
DG6cysp7a9FBknTaUbb22Efk977YirtVdeevUI4NJ8IGAPrlq+Xqeb4SCz2Wx8gF
KTXIYATA2ia7r37zQSDlKHR7GambtRGoF+wYJvpyHhlXca22mtyYvqC5PJ1OcKCb
u1F1/TjBQ5OWyXPmSJbBxmRDeSfccSYOZxXWG3qiZ7OX5xnmQEH4qZNdaiyztQVS
wVNVA5a0rz6NizVTR1rFuVonWO24lc552xsM12nbBT/f32giTumw9DQcBZtKa3y6
ECEsQkGPa2EQRXpPf5YVV9KCaIw4XuENAwimPiiWD1duGbpxgO22uVvNKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIGDkm77hs9ApPzzjtfglAxs0VQiMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvZ1lPU2J2dUd6MENrX1BPTzEtQ1VER3pSVkNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSp2MA0G
CSqGSIb3DQEBCwUAA4IBAQBzYB/vhiTkt1xkYD1vCEfzHM9k/1SIevtHVQU9fxsQ
6s3quXGlkTPsl7GR6/0zK76HOlI2dpuVOCO1uo5dCvSMeCKwO1SD4gEvxpevXkC0
esapB5VJuqKzjYQJZAiVe0ZN6AN1ufYmr+jfQbPfT9a7mUApI2Mle9ATxcTa7aSQ
nSHLeholWL+B6esEPZqqIcTnffZja/yGat7WvpCDofJ8Asmb/wlYo2WK8OIiI1eR
P2hfSGH39pZ3wuE792LjP0G3edcIYZDt58etE4v2XXLJCJn7N9kEdXYoapfpvw8W
GdTKF1NQ5JUJOKNz2v6jWWTbT6SzjoLfG5y7mhrv7tqe
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:00:08 2026 by rpki-client