Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/qgI98YNcmQLvfkXHKuZxNHL4574.roa
File: qgI98YNcmQLvfkXHKuZxNHL4574.roa (raw, json)
Hash identifier: 8dRnqffRLHS6jR44g2lBHMkNU/P4x7vfQ5ETXUcwgag=
Subject key identifier: AA:02:3D:F1:83:5C:99:02:EF:7E:45:C7:2A:E6:71:34:72:F8:E7:BE
Certificate issuer: /CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Certificate serial: 019E1D97526BA73012F970208F75436DB506
Authority key identifier: CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/qgI98YNcmQLvfkXHKuZxNHL4574.roa
Signing time: Tue 12 May 2026 19:08:36 +0000
ROA not before: Tue 12 May 2026 19:08:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 25145
IP address blocks: 31.40.240.0/24 maxlen: 24
77.92.96.0/19 maxlen: 19
77.92.96.0/24 maxlen: 24
77.92.97.0/24 maxlen: 24
77.92.98.0/24 maxlen: 24
77.92.99.0/24 maxlen: 24
77.92.100.0/22 maxlen: 22
77.92.100.0/24 maxlen: 24
77.92.101.0/24 maxlen: 24
77.92.102.0/24 maxlen: 24
77.92.103.0/24 maxlen: 24
77.92.104.0/24 maxlen: 24
77.92.105.0/24 maxlen: 24
77.92.106.0/24 maxlen: 24
77.92.107.0/24 maxlen: 24
77.92.108.0/22 maxlen: 22
77.92.108.0/24 maxlen: 24
77.92.109.0/24 maxlen: 24
77.92.110.0/24 maxlen: 24
77.92.111.0/24 maxlen: 24
77.92.112.0/22 maxlen: 22
77.92.112.0/24 maxlen: 24
77.92.113.0/24 maxlen: 24
77.92.114.0/24 maxlen: 24
77.92.115.0/24 maxlen: 24
77.92.116.0/24 maxlen: 24
77.92.117.0/24 maxlen: 24
77.92.118.0/24 maxlen: 24
77.92.119.0/24 maxlen: 24
77.92.120.0/24 maxlen: 24
77.92.121.0/24 maxlen: 24
77.92.122.0/24 maxlen: 24
77.92.123.0/24 maxlen: 24
77.92.124.0/24 maxlen: 24
77.92.125.0/24 maxlen: 24
77.92.126.0/24 maxlen: 24
77.92.127.0/24 maxlen: 24
185.115.208.0/24 maxlen: 24
185.115.210.0/24 maxlen: 24
185.115.211.0/24 maxlen: 24
213.144.96.0/19 maxlen: 19
213.144.96.0/22 maxlen: 22
213.144.96.0/24 maxlen: 24
213.144.97.0/24 maxlen: 24
213.144.98.0/24 maxlen: 24
213.144.99.0/24 maxlen: 24
213.144.100.0/24 maxlen: 24
213.144.101.0/24 maxlen: 24
213.144.103.0/24 maxlen: 24
213.144.104.0/22 maxlen: 22
213.144.104.0/24 maxlen: 24
213.144.105.0/24 maxlen: 24
213.144.106.0/24 maxlen: 24
213.144.107.0/24 maxlen: 24
213.144.108.0/22 maxlen: 22
213.144.108.0/24 maxlen: 24
213.144.109.0/24 maxlen: 24
213.144.110.0/24 maxlen: 24
213.144.111.0/24 maxlen: 24
213.144.112.0/22 maxlen: 22
213.144.112.0/24 maxlen: 24
213.144.113.0/24 maxlen: 24
213.144.114.0/24 maxlen: 24
213.144.115.0/24 maxlen: 24
213.144.116.0/22 maxlen: 22
213.144.116.0/24 maxlen: 24
213.144.117.0/24 maxlen: 24
213.144.118.0/24 maxlen: 24
213.144.119.0/24 maxlen: 24
213.144.120.0/22 maxlen: 22
213.144.120.0/24 maxlen: 24
213.144.121.0/24 maxlen: 24
213.144.122.0/24 maxlen: 24
213.144.123.0/24 maxlen: 24
213.144.124.0/22 maxlen: 22
213.144.124.0/24 maxlen: 24
213.144.125.0/24 maxlen: 24
213.144.126.0/24 maxlen: 24
213.144.127.0/24 maxlen: 24
2a02:ac80::/29 maxlen: 29
2a02:ac80::/32 maxlen: 32
2a02:ac80:10::/48 maxlen: 48
2a02:ac80:20::/48 maxlen: 48
2a02:ac80:30::/48 maxlen: 48
2a02:ac80:40::/48 maxlen: 48
2a02:ac80:50::/48 maxlen: 48
2a02:ac80:60::/48 maxlen: 48
2a02:ac80:6a::/48 maxlen: 48
2a02:ac80:70::/48 maxlen: 48
2a02:ac80:97::/48 maxlen: 48
2a02:ac80:99::/48 maxlen: 48
2a02:ac80:a0::/48 maxlen: 48
2a02:ac80:b0::/48 maxlen: 48
2a02:ac80:c0::/48 maxlen: 48
2a02:ac80:d0::/48 maxlen: 48
2a02:ac80:e0::/48 maxlen: 48
2a02:ac80:f0::/48 maxlen: 48
2a02:ac80:100::/48 maxlen: 48
2a02:ac80:101::/48 maxlen: 48
2a02:ac80:102::/48 maxlen: 48
2a02:ac80:105::/48 maxlen: 48
2a02:ac80:127::/48 maxlen: 48
2a02:ac80:200::/48 maxlen: 48
2a02:ac80:300::/48 maxlen: 48
2a02:ac80:400::/48 maxlen: 48
2a02:ac80:500::/48 maxlen: 48
2a02:ac80:600::/48 maxlen: 48
2a02:ac80:700::/48 maxlen: 48
2a02:ac80:a00::/48 maxlen: 48
2a02:ac80:b00::/48 maxlen: 48
2a02:ac80:c00::/48 maxlen: 48
2a02:ac80:d00::/48 maxlen: 48
2a02:ac80:e00::/48 maxlen: 48
2a02:ac80:f00::/48 maxlen: 48
2a02:ac80:1000::/48 maxlen: 48
2a02:ac80:2000::/48 maxlen: 48
2a02:ac80:3000::/48 maxlen: 48
2a02:ac80:4000::/48 maxlen: 48
2a02:ac80:5000::/48 maxlen: 48
2a02:ac80:6000::/48 maxlen: 48
2a02:ac80:6100::/48 maxlen: 48
2a02:ac80:6300::/48 maxlen: 48
2a02:ac80:7000::/48 maxlen: 48
2a02:ac80:7370::/48 maxlen: 48
2a02:ac80:9100::/48 maxlen: 48
2a02:ac80:9300::/48 maxlen: 48
2a02:ac80:a000::/48 maxlen: 48
2a02:ac80:b000::/48 maxlen: 48
2a02:ac80:c000::/48 maxlen: 48
2a02:ac80:d000::/48 maxlen: 48
2a02:ac80:e000::/48 maxlen: 48
2a02:ac80:f000::/48 maxlen: 48
2a02:ac81::/32 maxlen: 32
2a02:ac82::/32 maxlen: 32
2a02:ac83::/32 maxlen: 32
2a02:ac84::/32 maxlen: 32
2a02:ac85::/32 maxlen: 32
2a02:ac86::/32 maxlen: 32
2a02:ac87::/32 maxlen: 32
2a02:ac87:5900::/48 maxlen: 48
2a02:ac87:59cb::/48 maxlen: 48
2a02:ac87:ac87::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:97:52:6b:a7:30:12:f9:70:20:8f:75:43:6d:b5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Validity
Not Before: May 12 19:08:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=aa023df1835c9902ef7e45c72ae6713472f8e7be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:c1:b7:ae:9e:e8:50:dc:ec:0e:09:46:cf:
b3:81:b0:03:b7:2a:78:06:58:31:43:ab:57:04:74:
a5:f4:81:4f:83:3b:37:32:4b:ba:2b:01:50:24:f7:
b9:4f:62:56:49:56:99:62:82:61:56:a7:3f:79:5d:
ce:d2:31:e4:25:b2:f1:ad:70:14:e5:00:9f:09:2a:
f3:79:a5:1f:a6:6f:74:c2:a6:32:dd:97:1d:20:29:
01:b4:98:cc:3f:a1:d6:ec:d7:51:ad:cd:c9:ca:2a:
07:8f:ab:11:9a:3f:ff:b5:2d:79:f8:e8:b8:91:ac:
2f:e7:65:d3:9f:70:bb:7e:20:64:d0:0e:5d:a2:ef:
19:02:c3:3d:d7:8f:83:92:da:f5:e9:7e:ba:c5:8a:
6e:1b:95:8e:d4:36:06:60:03:c8:eb:bc:70:fd:ed:
58:36:ee:41:c4:f4:37:ea:14:f8:96:36:35:90:a0:
a7:24:c5:98:b5:ba:ca:15:f0:30:f0:29:c2:80:00:
cc:d6:24:81:6e:2f:59:d9:da:27:d7:31:ab:3f:5a:
91:59:fc:da:37:6c:eb:92:58:c0:b5:a3:45:25:61:
1d:9a:ae:ab:81:c6:5a:90:d8:33:3a:ec:4f:ae:c5:
f4:42:e9:15:ff:46:13:30:a9:25:24:8a:c8:44:74:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:02:3D:F1:83:5C:99:02:EF:7E:45:C7:2A:E6:71:34:72:F8:E7:BE
X509v3 Authority Key Identifier:
keyid:CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/qgI98YNcmQLvfkXHKuZxNHL4574.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.240.0/24
77.92.96.0/19
185.115.208.0/24
185.115.210.0/23
213.144.96.0/19
IPv6:
2a02:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
2a:63:8d:ee:43:00:60:2c:1e:22:b9:66:e3:96:19:68:1c:64:
a6:3b:a4:42:c8:50:2f:36:b3:29:d4:76:b3:e4:c7:07:4f:b5:
ca:d9:26:65:64:53:a1:d3:36:f3:c4:11:cf:21:c7:1b:ef:cd:
23:4c:6b:37:13:9c:4a:fa:d7:82:b5:4b:ed:6c:de:d8:c5:71:
d2:01:c6:b0:d5:be:11:71:93:d8:59:0b:d3:6d:a7:e6:9a:35:
b1:d3:64:a2:89:db:64:a4:63:ed:85:f1:8f:c9:fa:e1:53:3c:
75:d7:37:3e:94:67:1c:4e:28:7b:8a:0f:f8:f4:d9:94:4e:8c:
21:7f:eb:97:07:2a:51:8b:eb:72:c6:1c:e6:72:22:7a:1a:f6:
ef:62:4f:87:03:a8:00:73:23:95:6a:ee:cc:0d:9d:da:1e:ce:
fb:8d:db:9e:ea:f5:a5:ef:1a:c0:b4:b6:7d:2c:a0:b1:10:1d:
f4:59:62:b7:cb:62:7b:8d:a4:31:27:98:c7:1e:64:de:1c:ff:
ea:11:ce:c9:4f:d9:fe:66:79:f2:62:de:3f:bb:10:2a:78:40:
6e:62:ec:79:1e:48:24:7e:ec:03:e7:27:5c:15:12:79:5b:50:
41:2f:98:10:7d:5f:c2:ca:20:95:22:4a:71:12:47:d6:55:e6:
6c:95:b2:c6
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZ4dl1JrpzAS+XAgj3VDbbUGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOTYyMThjMjBlZmQ4ZmU1M2ZjYTk5OTBiNzI1ZGQ3OTYz
Yzg4NWMwHhcNMjYwNTEyMTkwODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTAyM2RmMTgzNWM5OTAyZWY3ZTQ1YzcyYWU2NzEzNDcyZjhlN2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUjBt66e6FDc7A4JRs+zgbADtyp4
BlgxQ6tXBHSl9IFPgzs3Mku6KwFQJPe5T2JWSVaZYoJhVqc/eV3O0jHkJbLxrXAU
5QCfCSrzeaUfpm90wqYy3ZcdICkBtJjMP6HW7NdRrc3JyioHj6sRmj//tS15+Oi4
kawv52XTn3C7fiBk0A5dou8ZAsM914+Dktr16X66xYpuG5WO1DYGYAPI67xw/e1Y
Nu5BxPQ36hT4ljY1kKCnJMWYtbrKFfAw8CnCgADM1iSBbi9Z2don1zGrP1qRWfza
N2zrkljAtaNFJWEdmq6rgcZakNgzOuxPrsX0QukV/0YTMKklJIrIRHTZcwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFKoCPfGDXJkC735FxyrmcTRy+Oe+MB8GA1UdIwQY
MBaAFMqWIYwg79j+U/ypmQtyXdeWPIhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXBZaGpDRHYyUDVUX0ttWkMzSmQxNVk4aUZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC85NzU1ZDUtN2YwYi00MjdmLWFmZTAt
ZDcxMmQ0NzM4MDQ2LzEvcWdJOThZTmNtUUx2ZmtYSEt1WnhOSEw0NTc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC85NzU1ZDUtN2YwYi00MjdmLWFmZTAtZDcxMmQ0NzM4MDQ2
LzEveXBZaGpDRHYyUDVUX0ttWkMzSmQxNVk4aUZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQAHyjwAwQF
TVxgAwQAuXPQAwQBuXPSAwQF1ZBgMA0EAgACMAcDBQMqAqyAMA0GCSqGSIb3DQEB
CwUAA4IBAQAqY43uQwBgLB4iuWbjlhloHGSmO6RCyFAvNrMp1Haz5McHT7XK2SZl
ZFOh0zbzxBHPIccb780jTGs3E5xK+teCtUvtbN7YxXHSAcaw1b4RcZPYWQvTbafm
mjWx02SiidtkpGPthfGPyfrhUzx11zc+lGccTih7ig/49NmUTowhf+uXBypRi+ty
xhzmciJ6GvbvYk+HA6gAcyOVau7MDZ3aHs77jdue6vWl7xrAtLZ9LKCxEB30WWK3
y2J7jaQxJ5jHHmTeHP/qEc7JT9n+ZnnyYt4/uxAqeEBuYux5HkgkfuwD5ydcFRJ5
W1BBL5gQfV/CyiCVIkpxEkfWVeZslbLG
-----END CERTIFICATE-----
Generated at Tue May 12 21:48:26 2026 by rpki-client