Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/WrzCt0ggh7iZD0VHwtwqCx9fUjw.roa
File: WrzCt0ggh7iZD0VHwtwqCx9fUjw.roa (raw, json)
Hash identifier: rSWhgeEnr5lWgG/XFNR90qaps5z/LuCtc8T7p4q2CNw=
Subject key identifier: 5A:BC:C2:B7:48:20:87:B8:99:0F:45:47:C2:DC:2A:0B:1F:5F:52:3C
Certificate issuer: /CN=e10fbb9b3cd1c216adc699e5edad5f531d9afcb6
Certificate serial: 019DFD4E86BAD15529E4EFBE38C5A3D480C2
Authority key identifier: E1:0F:BB:9B:3C:D1:C2:16:AD:C6:99:E5:ED:AD:5F:53:1D:9A:FC:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q-7mzzRwhatxpnl7a1fUx2a_LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/WrzCt0ggh7iZD0VHwtwqCx9fUjw.roa
Signing time: Wed 06 May 2026 12:41:15 +0000
ROA not before: Wed 06 May 2026 12:41:15 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43530
IP address blocks: 5.35.128.0/19 maxlen: 19
37.75.192.0/21 maxlen: 21
46.245.128.0/21 maxlen: 21
78.110.144.0/20 maxlen: 20
176.62.240.0/20 maxlen: 20
185.222.236.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/4Q-7mzzRwhatxpnl7a1fUx2a_LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/4Q-7mzzRwhatxpnl7a1fUx2a_LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Q-7mzzRwhatxpnl7a1fUx2a_LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fd:4e:86:ba:d1:55:29:e4:ef:be:38:c5:a3:d4:80:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10fbb9b3cd1c216adc699e5edad5f531d9afcb6
Validity
Not Before: May 6 12:41:15 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5abcc2b7482087b8990f4547c2dc2a0b1f5f523c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f5:34:db:56:6b:c3:dc:1e:e8:40:bb:9b:30:
32:26:61:f1:c1:59:a9:54:e9:bf:5b:41:e8:fa:7c:
e5:18:2d:a1:a6:d3:09:fe:3e:07:29:dc:1c:3d:33:
50:a6:a9:64:e7:cd:49:78:24:39:b7:59:0f:5c:ff:
ac:c5:98:cf:1d:f3:7f:64:82:3e:5e:c6:f1:c7:39:
5e:00:96:39:51:fc:1f:6d:eb:3b:ed:dc:ff:4d:35:
ab:a9:82:65:b2:ae:06:ab:3e:65:a2:10:50:6a:9d:
28:4f:73:8e:b0:b5:28:fb:fa:20:ab:ed:f8:4a:0b:
9f:65:4b:82:40:df:20:0f:94:95:f1:ef:a7:ba:b9:
91:57:a1:39:3e:52:98:b8:11:98:3e:e0:2b:57:ed:
5b:91:42:9f:44:e0:d3:46:8e:a3:09:8b:16:34:39:
ba:4d:99:c4:f4:cd:f6:b4:f0:96:87:16:36:3f:ce:
d6:27:0d:eb:d6:f5:ec:e1:83:ba:a7:b0:09:5b:cf:
b2:6a:ea:36:2e:dd:8a:4c:d4:30:be:b5:6d:6f:c5:
c3:65:66:fa:41:8d:89:32:40:8a:53:84:24:7c:c2:
0f:2b:51:aa:c5:d4:fa:4e:0a:ae:3c:20:5c:9e:0f:
b7:37:51:04:b5:17:ca:27:a2:c3:31:aa:50:d1:dc:
75:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BC:C2:B7:48:20:87:B8:99:0F:45:47:C2:DC:2A:0B:1F:5F:52:3C
X509v3 Authority Key Identifier:
keyid:E1:0F:BB:9B:3C:D1:C2:16:AD:C6:99:E5:ED:AD:5F:53:1D:9A:FC:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q-7mzzRwhatxpnl7a1fUx2a_LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/WrzCt0ggh7iZD0VHwtwqCx9fUjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/83ff8f-16ca-4249-b774-62a28f3e001c/1/4Q-7mzzRwhatxpnl7a1fUx2a_LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.128.0/19
37.75.192.0/21
46.245.128.0/21
78.110.144.0/20
176.62.240.0/20
185.222.236.0/22
Signature Algorithm: sha256WithRSAEncryption
40:06:ba:e2:f1:d4:9d:2d:d7:5b:d9:1c:8f:68:9c:0b:bb:ff:
dc:3f:16:f6:7c:35:ca:16:1e:c1:58:9f:68:a4:3b:bf:2e:04:
c0:80:2b:20:87:41:a7:10:64:63:7f:37:eb:c7:4e:41:fc:62:
fd:b3:6c:29:85:e3:14:ab:23:63:dc:5a:54:ab:14:43:35:8c:
6c:da:f8:cd:5c:ba:fd:a9:b9:70:fc:3e:df:87:f6:72:a0:b6:
76:0f:d0:05:d4:87:4c:ec:cd:29:b1:ab:ba:e6:80:60:07:27:
1f:45:13:05:54:7e:32:93:16:be:5f:ef:e7:b7:1f:f5:f5:37:
1c:e7:97:09:52:22:b7:0b:7a:64:3e:55:88:b8:95:c5:09:de:
d7:4a:37:11:39:37:ee:9c:18:32:97:ff:6e:8d:bd:cf:ee:05:
1e:84:96:96:c9:45:16:82:bd:ca:1b:c9:e9:cd:23:17:a2:29:
28:d7:21:2d:37:d2:6e:ce:2f:a4:8c:7f:00:1e:cd:54:5c:7b:
53:44:61:e5:e9:22:e5:a3:42:cd:a6:3e:65:e7:0a:ce:fe:bc:
68:60:ee:33:47:5b:9c:28:db:bb:44:e3:da:39:02:ff:16:ee:
80:77:33:3c:12:a7:99:e8:f5:78:10:40:a3:dd:8a:b3:ff:78:
ea:de:37:f9
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZ39Toa60VUp5O++OMWj1IDCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMGZiYjliM2NkMWMyMTZhZGM2OTllNWVkYWQ1ZjUzMWQ5
YWZjYjYwHhcNMjYwNTA2MTI0MTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWJjYzJiNzQ4MjA4N2I4OTkwZjQ1NDdjMmRjMmEwYjFmNWY1MjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvU021Zrw9we6EC7mzAyJmHxwVmp
VOm/W0Ho+nzlGC2hptMJ/j4HKdwcPTNQpqlk581JeCQ5t1kPXP+sxZjPHfN/ZII+
XsbxxzleAJY5Ufwfbes77dz/TTWrqYJlsq4Gqz5lohBQap0oT3OOsLUo+/ogq+34
SgufZUuCQN8gD5SV8e+nurmRV6E5PlKYuBGYPuArV+1bkUKfRODTRo6jCYsWNDm6
TZnE9M32tPCWhxY2P87WJw3r1vXs4YO6p7AJW8+yauo2Lt2KTNQwvrVtb8XDZWb6
QY2JMkCKU4QkfMIPK1GqxdT6TgquPCBcng+3N1EEtRfKJ6LDMapQ0dx1sQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFFq8wrdIIIe4mQ9FR8LcKgsfX1I8MB8GA1UdIwQY
MBaAFOEPu5s80cIWrcaZ5e2tX1Mdmvy2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFEtN216elJ3aGF0eHBubDdhMWZVeDJhX0xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84M2ZmOGYtMTZjYS00MjQ5LWI3NzQt
NjJhMjhmM2UwMDFjLzEvV3J6Q3QwZ2doN2laRDBWSHd0d3FDeDlmVWp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi84M2ZmOGYtMTZjYS00MjQ5LWI3NzQtNjJhMjhmM2UwMDFj
LzEvNFEtN216elJ3aGF0eHBubDdhMWZVeDJhX0xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQFBSOAAwQD
JUvAAwQDLvWAAwQETm6QAwQEsD7wAwQCud7sMA0GCSqGSIb3DQEBCwUAA4IBAQBA
Brri8dSdLddb2RyPaJwLu//cPxb2fDXKFh7BWJ9opDu/LgTAgCsgh0GnEGRjfzfr
x05B/GL9s2wpheMUqyNj3FpUqxRDNYxs2vjNXLr9qblw/D7fh/ZyoLZ2D9AF1IdM
7M0psau65oBgBycfRRMFVH4ykxa+X+/ntx/19Tcc55cJUiK3C3pkPlWIuJXFCd7X
SjcROTfunBgyl/9ujb3P7gUehJaWyUUWgr3KG8npzSMXoiko1yEtN9Juzi+kjH8A
Hs1UXHtTRGHl6SLlo0LNpj5l5wrO/rxoYO4zR1ucKNu7ROPaOQL/Fu6AdzM8EqeZ
6PV4EECj3Yqz/3jq3jf5
-----END CERTIFICATE-----
Generated at Wed May 13 13:27:09 2026 by rpki-client