Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/eoxNCvRAuxq2WDw85tkGbm517pU.roa
File: eoxNCvRAuxq2WDw85tkGbm517pU.roa (raw, json)
Hash identifier: c78izLgDjaMu6FHJjxAFTQ96kObypnIXMvMeYJoOj9c=
Subject key identifier: 7A:8C:4D:0A:F4:40:BB:1A:B6:58:3C:3C:E6:D9:06:6E:6E:75:EE:95
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019D24019E55D6B4A5A7F267E67C84DAA54E
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/eoxNCvRAuxq2WDw85tkGbm517pU.roa
Signing time: Wed 25 Mar 2026 07:59:39 +0000
ROA not before: Wed 25 Mar 2026 07:59:39 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63099
IP address blocks: 87.83.31.0/24 maxlen: 24
87.83.49.0/24 maxlen: 24
87.83.51.0/24 maxlen: 24
87.83.72.0/24 maxlen: 24
87.83.75.0/24 maxlen: 24
87.83.91.0/24 maxlen: 24
87.83.118.0/24 maxlen: 24
87.83.169.0/24 maxlen: 24
87.83.200.0/24 maxlen: 24
87.83.212.0/24 maxlen: 24
87.83.215.0/24 maxlen: 24
87.83.229.0/24 maxlen: 24
87.83.236.0/24 maxlen: 24
87.84.49.0/24 maxlen: 24
87.84.150.0/24 maxlen: 24
87.84.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:01:9e:55:d6:b4:a5:a7:f2:67:e6:7c:84:da:a5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Mar 25 07:59:39 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7a8c4d0af440bb1ab6583c3ce6d9066e6e75ee95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:b2:4f:6f:b2:45:66:16:8a:f3:da:cb:31:
fa:82:b5:ac:f6:0a:26:4f:60:3e:cb:ff:d8:82:c7:
89:8c:32:eb:48:29:07:ec:d8:44:31:e0:ea:ec:a9:
99:43:58:d8:5b:35:16:91:de:35:60:ae:dd:db:d3:
37:25:77:d3:a4:90:16:d2:14:15:f2:67:af:c5:16:
4b:16:f7:0e:9a:87:ea:b2:72:9b:1d:91:d8:86:73:
4a:d3:58:1f:a3:06:ab:36:d0:7f:0b:d1:00:28:98:
f5:86:8a:56:e9:db:00:9a:fa:5c:03:d0:79:2b:26:
59:fe:79:c3:48:99:be:9f:fe:9b:0a:7d:c9:5a:98:
f8:79:58:86:d6:89:76:97:e8:48:58:23:b6:82:ce:
4b:a9:0f:96:84:89:51:53:a3:c6:ba:53:c1:0a:45:
ee:26:f1:32:ab:99:55:12:ab:0a:99:c8:74:7b:95:
87:9b:8f:41:49:9a:cc:f7:56:af:24:ff:7c:79:ab:
b7:ab:7e:f8:e3:e5:90:ea:fe:9c:85:cd:75:30:41:
58:46:a1:06:d5:3d:e2:fa:ba:d5:2b:75:d5:eb:f0:
07:2c:80:f7:8f:34:b5:14:16:4d:d4:7b:8c:26:4a:
a1:aa:f1:05:d2:83:10:75:1f:52:08:e1:dd:8a:36:
5b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8C:4D:0A:F4:40:BB:1A:B6:58:3C:3C:E6:D9:06:6E:6E:75:EE:95
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/eoxNCvRAuxq2WDw85tkGbm517pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.83.31.0/24
87.83.49.0/24
87.83.51.0/24
87.83.72.0/24
87.83.75.0/24
87.83.91.0/24
87.83.118.0/24
87.83.169.0/24
87.83.200.0/24
87.83.212.0/24
87.83.215.0/24
87.83.229.0/24
87.83.236.0/24
87.84.49.0/24
87.84.150.0/24
87.84.187.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:96:76:1d:a1:ec:4b:18:0d:30:d8:f8:f7:66:4c:36:90:f7:
53:87:ed:08:d7:6d:08:19:96:1f:5d:41:07:f3:a9:67:07:bf:
36:b6:da:fa:df:da:13:3f:83:70:5d:55:11:64:42:11:fa:aa:
8e:d9:8a:2a:ff:a3:09:9e:6b:7c:a1:46:29:8a:63:83:f1:3a:
dc:19:39:ee:d7:5f:cf:40:b4:55:af:c3:f5:11:17:54:89:0a:
58:88:40:12:ba:e5:dd:7a:8e:67:1e:06:82:ec:1d:df:77:54:
e9:20:0e:f0:a8:0e:70:1d:ab:d3:ca:8f:e4:c8:cc:96:e6:f8:
f6:ab:0d:b9:b8:aa:36:af:6b:73:eb:62:46:61:97:51:11:63:
2a:29:a2:7a:16:26:c8:21:76:0d:8b:b6:d5:cf:5b:30:e8:ef:
cc:00:8f:e0:df:a1:89:5b:66:12:5c:69:db:7b:a3:da:3a:7a:
0b:fe:ca:32:0e:ef:0d:ce:4c:c0:f7:48:9b:d7:34:a2:2e:80:
bc:30:ca:b7:da:7a:e9:75:f8:2d:70:7a:6d:1a:28:73:3d:7e:
73:a1:3b:6e:34:2a:e1:7c:80:d9:01:83:25:cd:c0:f4:74:32:
42:27:e9:6c:c9:0c:16:fd:65:15:57:a6:84:dd:4d:dd:14:2f:
de:8c:93:e0
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZ0kAZ5V1rSlp/Jn5nyE2qVOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3
NjUwMjkwHhcNMjYwMzI1MDc1OTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YThjNGQwYWY0NDBiYjFhYjY1ODNjM2NlNmQ5MDY2ZTZlNzVlZTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqCyT2+yRWYWivPayzH6grWs9gom
T2A+y//YgseJjDLrSCkH7NhEMeDq7KmZQ1jYWzUWkd41YK7d29M3JXfTpJAW0hQV
8mevxRZLFvcOmofqsnKbHZHYhnNK01gfowarNtB/C9EAKJj1hopW6dsAmvpcA9B5
KyZZ/nnDSJm+n/6bCn3JWpj4eViG1ol2l+hIWCO2gs5LqQ+WhIlRU6PGulPBCkXu
JvEyq5lVEqsKmch0e5WHm49BSZrM91avJP98eau3q3744+WQ6v6chc11MEFYRqEG
1T3i+rrVK3XV6/AHLID3jzS1FBZN1HuMJkqhqvEF0oMQdR9SCOHdijZb+QIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFHqMTQr0QLsatlg8PObZBm5ude6VMB8GA1UdIwQY
MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt
MDM1ZDk3N2Y0MjE2LzEvZW94TkN2UkF1eHEyV0R3ODV0a0dibTUxN3BVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2
LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQAV1MfAwQA
V1MxAwQAV1MzAwQAV1NIAwQAV1NLAwQAV1NbAwQAV1N2AwQAV1OpAwQAV1PIAwQA
V1PUAwQAV1PXAwQAV1PlAwQAV1PsAwQAV1QxAwQAV1SWAwQAV1S7MA0GCSqGSIb3
DQEBCwUAA4IBAQBalnYdoexLGA0w2Pj3Zkw2kPdTh+0I120IGZYfXUEH86lnB782
ttr639oTP4NwXVURZEIR+qqO2Yoq/6MJnmt8oUYpimOD8TrcGTnu11/PQLRVr8P1
ERdUiQpYiEASuuXdeo5nHgaC7B3fd1TpIA7wqA5wHavTyo/kyMyW5vj2qw25uKo2
r2tz62JGYZdREWMqKaJ6FibIIXYNi7bVz1sw6O/MAI/g36GJW2YSXGnbe6PaOnoL
/soyDu8NzkzA90ib1zSiLoC8MMq32nrpdfgtcHptGihzPX5zoTtuNCrhfIDZAYMl
zcD0dDJCJ+lsyQwW/WUVV6aE3U3dFC/ejJPg
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:48:33 2026 by rpki-client