Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uGMFJ585HilI-vw_adYq5nsNTsg.roa
File: uGMFJ585HilI-vw_adYq5nsNTsg.roa (raw, json)
Hash identifier: fiIYIVuond9WuociywKIQHKIabP4+9bpBK1otMroUvk=
Subject key identifier: B8:63:05:27:9F:39:1E:29:48:FA:FC:3F:69:D6:2A:E6:7B:0D:4E:C8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019E1B91230180A4D03EBDF6ED7C4F0CCEC7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uGMFJ585HilI-vw_adYq5nsNTsg.roa
Signing time: Tue 12 May 2026 09:42:37 +0000
ROA not before: Tue 12 May 2026 09:42:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 200566
IP address blocks: 46.102.237.0/24 maxlen: 24
78.17.20.0/24 maxlen: 24
78.17.21.0/24 maxlen: 24
78.17.30.0/24 maxlen: 24
78.17.31.0/24 maxlen: 24
78.17.58.0/24 maxlen: 24
78.17.61.0/24 maxlen: 24
78.17.81.0/24 maxlen: 24
89.125.223.0/24 maxlen: 24
89.125.242.0/24 maxlen: 24
89.125.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:91:23:01:80:a4:d0:3e:bd:f6:ed:7c:4f:0c:ce:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 12 09:42:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b86305279f391e2948fafc3f69d62ae67b0d4ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5e:6d:0a:71:cc:d7:ae:72:f6:38:d3:90:44:
88:fe:3b:45:eb:21:6f:22:86:fc:57:d4:b0:a9:0e:
98:0c:21:2e:6e:22:e9:ec:dd:db:c8:be:47:30:44:
be:8b:c8:00:eb:73:6b:0c:8d:5f:95:bb:5b:f0:f5:
70:20:b1:4a:c7:6c:bc:e9:09:a7:94:65:97:c7:d3:
68:50:aa:61:a2:04:cf:b9:8f:07:fd:8a:f1:53:91:
e2:2a:c9:7e:ce:26:e3:18:aa:f7:5a:7a:15:17:66:
3d:18:57:fe:cb:68:d2:68:de:d7:48:39:53:12:d9:
94:95:8e:63:7b:89:ac:27:ce:0b:0d:a8:65:ae:b8:
86:df:b8:82:d7:8a:a4:d9:c0:85:10:7a:05:16:49:
ce:92:0c:22:34:95:82:15:52:53:d0:f3:7f:cc:72:
e6:b1:3b:22:f3:44:0b:b9:13:24:b7:25:6f:67:51:
1e:88:01:16:3f:ed:ea:f2:04:50:37:78:e5:19:b0:
05:5a:30:8d:4a:f0:ba:41:48:4f:bc:8e:c2:ca:8c:
22:f3:b1:f2:36:5f:62:68:0d:90:a9:e7:72:0c:ed:
db:d1:fc:cf:79:b6:65:7d:27:1a:45:e0:fd:c8:bc:
f7:ce:f0:96:0a:ff:2f:a8:96:b2:5f:b5:d6:25:06:
3a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:63:05:27:9F:39:1E:29:48:FA:FC:3F:69:D6:2A:E6:7B:0D:4E:C8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uGMFJ585HilI-vw_adYq5nsNTsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
78.17.20.0/23
78.17.30.0/23
78.17.58.0/24
78.17.61.0/24
78.17.81.0/24
89.125.223.0/24
89.125.242.0/24
89.125.245.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:29:31:85:9e:61:6e:99:3e:a1:3d:2c:f8:fc:91:84:d4:17:
69:ae:2c:ae:d8:5d:77:6c:58:83:d9:aa:13:2b:01:cb:c2:4f:
49:5f:9b:ea:b3:a1:75:d4:24:35:5b:a3:a3:70:a0:31:55:89:
4c:a2:71:37:e1:ef:40:ec:14:0d:9d:14:2c:20:8e:8d:e7:08:
0f:8e:67:59:b7:f6:9e:54:dc:68:d3:9d:2d:92:e2:7b:de:a9:
7b:86:57:c0:fa:01:4f:de:3e:7e:a8:7d:50:f2:d6:66:91:fa:
e4:74:8e:f8:26:81:ba:a7:e3:ba:b6:f5:a1:24:2a:2a:e5:41:
39:0c:6a:5b:d4:0e:a3:be:22:7c:ae:68:ce:5f:f2:ee:0e:2c:
19:59:a9:c0:0d:05:60:72:43:91:ca:6e:6b:93:c1:85:eb:d3:
38:64:d4:70:c0:0e:ec:4d:f8:2b:f4:60:8d:aa:c5:bc:29:b6:
18:8d:9b:88:07:4b:51:4b:03:6f:5d:8c:e3:a2:ce:ac:05:9f:
b9:41:25:3b:56:24:98:8c:53:07:36:78:b6:27:74:4b:fe:de:
82:14:1a:7d:5e:d3:35:0d:44:41:18:d0:17:72:61:50:f1:75:
e0:82:fd:11:1c:21:f7:70:7a:e8:c7:e0:21:62:aa:da:b6:0e:
55:93:4b:b6
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZ4bkSMBgKTQPr327XxPDM7HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjYwNTEyMDk0MjM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODYzMDUyNzlmMzkxZTI5NDhmYWZjM2Y2OWQ2MmFlNjdiMGQ0ZWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8V5tCnHM165y9jjTkESI/jtF6yFv
Iob8V9SwqQ6YDCEubiLp7N3byL5HMES+i8gA63NrDI1flbtb8PVwILFKx2y86Qmn
lGWXx9NoUKphogTPuY8H/YrxU5HiKsl+zibjGKr3WnoVF2Y9GFf+y2jSaN7XSDlT
EtmUlY5je4msJ84LDahlrriG37iC14qk2cCFEHoFFknOkgwiNJWCFVJT0PN/zHLm
sTsi80QLuRMktyVvZ1EeiAEWP+3q8gRQN3jlGbAFWjCNSvC6QUhPvI7Cyowi87Hy
Nl9iaA2QqedyDO3b0fzPebZlfScaReD9yLz3zvCWCv8vqJayX7XWJQY6HwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFLhjBSefOR4pSPr8P2nWKuZ7DU7IMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvdUdNRko1ODVIaWxJLXZ3X2FkWXE1bnNOVHNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALmbtAwQB
ThEUAwQBThEeAwQAThE6AwQAThE9AwQAThFRAwQAWX3fAwQAWX3yAwQAWX31MA0G
CSqGSIb3DQEBCwUAA4IBAQBtKTGFnmFumT6hPSz4/JGE1Bdpriyu2F13bFiD2aoT
KwHLwk9JX5vqs6F11CQ1W6OjcKAxVYlMonE34e9A7BQNnRQsII6N5wgPjmdZt/ae
VNxo050tkuJ73ql7hlfA+gFP3j5+qH1Q8tZmkfrkdI74JoG6p+O6tvWhJCoq5UE5
DGpb1A6jviJ8rmjOX/LuDiwZWanADQVgckORym5rk8GF69M4ZNRwwA7sTfgr9GCN
qsW8KbYYjZuIB0tRSwNvXYzjos6sBZ+5QSU7ViSYjFMHNni2J3RL/t6CFBp9XtM1
DURBGNAXcmFQ8XXggv0RHCH3cHrox+AhYqratg5Vk0u2
-----END CERTIFICATE-----
Generated at Wed May 13 04:53:35 2026 by rpki-client