Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q43rPWaszrWszUnOcR4twpnckI.roa
File: 4Q43rPWaszrWszUnOcR4twpnckI.roa (raw, json)
Hash identifier: oMTyI/aSQW5isFr8/nmBIWCenGGWd3UKt9lOBbvZTa8=
Subject key identifier: E1:0E:37:AC:F5:9A:B3:3A:D6:B3:35:27:39:C4:78:B7:0A:67:72:42
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019DD9F425858233E29DAAC49D1967159286
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q43rPWaszrWszUnOcR4twpnckI.roa
Signing time: Wed 29 Apr 2026 15:55:49 +0000
ROA not before: Wed 29 Apr 2026 15:55:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 30633
IP address blocks: 45.128.77.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
80.253.250.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.5.125.0/24 maxlen: 24
193.27.23.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a06:35c2::/32 maxlen: 32
2a0a:2d06:55::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:f201::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2d81::/32 maxlen: 32
2a0f:2e80::/29 maxlen: 29
2a0f:3046:320::/48 maxlen: 48
2a0f:3d84::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a0f:e7c2::/32 maxlen: 32
2a10:32c0::/29 maxlen: 29
2a10:32c0::/32 maxlen: 32
2a10:32c1::/32 maxlen: 32
2a10:32c2::/32 maxlen: 32
2a10:32c4::/32 maxlen: 32
2a10:32c5::/32 maxlen: 32
2a10:32c6::/32 maxlen: 32
2a10:32c7::/32 maxlen: 32
2a10:35c0::/29 maxlen: 29
2a10:35c0::/32 maxlen: 32
2a10:35c1::/32 maxlen: 32
2a10:35c2::/32 maxlen: 32
2a10:35c3::/32 maxlen: 32
2a10:35c4::/32 maxlen: 32
2a10:35c5::/32 maxlen: 32
2a10:35c6::/32 maxlen: 32
2a10:35c7::/32 maxlen: 32
2a10:68c0::/48 maxlen: 48
2a10:68c0:1::/48 maxlen: 48
2a10:68c0:2::/48 maxlen: 48
2a10:68c0:3::/48 maxlen: 48
2a10:68c0:4::/48 maxlen: 48
2a10:68c0:5::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:18c6:55::/48 maxlen: 48
2a13:8c82:3::/48 maxlen: 48
2a13:e101:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d9:f4:25:85:82:33:e2:9d:aa:c4:9d:19:67:15:92:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 29 15:55:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e10e37acf59ab33ad6b3352739c478b70a677242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ff:8e:d4:89:00:ba:6d:50:af:3d:03:d3:7e:
fa:a7:9e:28:12:8e:64:1c:d0:e6:6f:de:68:6c:8d:
f9:e9:f9:bf:e7:41:9a:96:5a:47:41:de:2d:a3:b8:
63:82:24:8a:44:27:2b:a4:8a:db:fd:aa:5f:58:00:
15:b4:6a:1b:a3:c4:c4:71:b2:5d:47:95:8b:76:4c:
23:09:0b:2e:c9:29:94:a8:19:98:ac:9e:2e:e9:24:
8d:fa:30:90:42:50:99:05:ed:95:7b:9f:13:80:6a:
7f:2e:69:c7:c4:3e:45:b2:5b:9a:ca:3e:62:5f:c6:
42:f4:7f:43:a5:8e:14:2e:96:ae:a2:6b:44:ba:93:
65:12:5f:4e:2d:76:8d:26:35:0a:86:ad:e9:ba:bc:
70:eb:1d:9e:32:28:7c:f3:a3:36:f1:ff:8e:fc:3c:
9b:ff:e1:a4:bc:4e:7e:a9:2a:2f:bf:6f:6a:20:a0:
ad:70:51:47:21:d0:82:ec:f2:c1:b9:3b:fc:b6:b9:
16:0a:f3:4b:6b:7b:33:32:00:48:0d:09:ca:1e:7c:
55:f8:2d:7c:6e:3c:e3:a4:6a:4d:71:ef:9c:63:6a:
80:8e:f1:b9:c3:a8:97:58:49:c0:f0:aa:5a:43:6d:
18:f2:1a:e8:ac:a9:9e:ce:ed:05:27:41:33:db:75:
1d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0E:37:AC:F5:9A:B3:3A:D6:B3:35:27:39:C4:78:B7:0A:67:72:42
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q43rPWaszrWszUnOcR4twpnckI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.77.0/24
45.129.127.0/24
45.135.37.0/24
80.253.250.0/24
103.139.50.0/24
193.5.125.0/24
193.27.23.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a06:35c2::/32
2a0a:2d06:55::/48
2a0c:7886:33::/48
2a0e:f201::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2d81::/32
2a0f:2e80::/29
2a0f:3046:320::/48
2a0f:3d84::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a0f:e7c2::/32
2a10:32c0::/29
2a10:35c0::/29
2a10:68c0::-2a10:68c0:5:ffff:ffff:ffff:ffff:ffff
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
2a13:18c6:55::/48
2a13:8c82:3::/48
2a13:e101:2::/48
Signature Algorithm: sha256WithRSAEncryption
14:b3:8c:46:1f:08:bc:51:23:dd:4a:e5:03:01:ea:05:cf:be:
b5:f4:64:ba:54:9e:17:03:e2:33:e8:10:b7:e1:93:ef:2b:ca:
05:aa:68:e7:68:3a:9c:c6:53:f8:e8:31:87:b0:57:10:0c:2d:
fa:63:8c:27:fc:34:0e:95:fd:50:e3:5a:92:40:47:f0:8a:90:
52:7d:61:34:59:69:ef:69:85:de:5b:59:87:fb:a8:56:8d:61:
95:e6:c1:8b:15:0f:86:1f:b8:31:77:dc:92:5c:18:3c:ce:24:
5a:87:24:3a:88:43:50:7b:78:5c:c1:2f:e0:91:85:87:aa:e4:
a3:81:f8:48:6c:19:5b:08:9d:ff:a2:1c:2f:8c:e8:ed:a6:53:
ee:70:3d:1d:00:e1:b1:91:f8:4e:96:dc:05:aa:41:98:55:6d:
a0:7f:cd:c8:46:94:58:9c:63:16:13:5d:e8:ad:3c:ae:2a:6d:
9d:a5:52:94:78:57:73:ec:60:0b:0c:89:60:12:56:77:0c:3c:
c9:fa:46:58:c3:ad:98:2c:a6:16:8d:21:1a:e2:ee:31:fc:39:
e4:2a:72:a1:06:d7:7d:32:c7:4d:d1:b1:ee:80:d5:90:df:9f:
69:dc:11:de:95:3a:04:2f:1a:ae:3d:4e:09:7b:c1:e8:db:89:
ab:39:0d:19
-----BEGIN CERTIFICATE-----
MIIGYzCCBUugAwIBAgISAZ3Z9CWFgjPinarEnRlnFZKGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwNDI5MTU1NTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTBlMzdhY2Y1OWFiMzNhZDZiMzM1MjczOWM0NzhiNzBhNjc3MjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/+O1IkAum1Qrz0D0376p54oEo5k
HNDmb95obI356fm/50GallpHQd4to7hjgiSKRCcrpIrb/apfWAAVtGobo8TEcbJd
R5WLdkwjCQsuySmUqBmYrJ4u6SSN+jCQQlCZBe2Ve58TgGp/LmnHxD5Fsluayj5i
X8ZC9H9DpY4ULpauomtEupNlEl9OLXaNJjUKhq3purxw6x2eMih886M28f+O/Dyb
/+GkvE5+qSovv29qIKCtcFFHIdCC7PLBuTv8trkWCvNLa3szMgBIDQnKHnxV+C18
bjzjpGpNce+cY2qAjvG5w6iXWEnA8KpaQ20Y8hrorKmezu0FJ0Ez23UdRQIDAQAB
o4IDbzCCA2swHQYDVR0OBBYEFOEON6z1mrM61rM1JznEeLcKZ3JCMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvNFE0M3JQV2FzenJXc3pVbk9jUjR0d3BuY2tJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBgwYIKwYBBQUHAQcBAf8EggFyMIIBbjA2BAIAATAwAwQA
LYBNAwQALYF/AwQALYclAwQAUP36AwQAZ4syAwQAwQV9AwQAwRsXAwQAwaTHMIIB
MgQCAAIwggEqAwcAKgYRhAAzAwUAKgY1wgMHACoKLQYAVQMHACoMeIYAMwMFACoO
8gEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkD
BwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMDBwAqDx6BQxkDBwAqDx6BkugDBwAq
Dx6Bo9ADBwAqDx6Bza4DBQAqDy2BAwUDKg8ugAMHACoPMEYDIAMFACoPPYQDBwAq
D30CAAEDBQAqD+HGAwUAKg/nwgMFAyoQMsADBQMqEDXAMBADBQYqEGjAAwcBKhBo
wAAEAwUDKhBtQAMFAyoR/YADBQEqEqxAAwUDKhL1QAMHACoTGMAAAQMHACoTGMYA
VQMHACoTjIIAAwMHACoT4QEAAjANBgkqhkiG9w0BAQsFAAOCAQEAFLOMRh8IvFEj
3UrlAwHqBc++tfRkulSeFwPiM+gQt+GT7yvKBapo52g6nMZT+Ogxh7BXEAwt+mOM
J/w0DpX9UONakkBH8IqQUn1hNFlp72mF3ltZh/uoVo1hlebBixUPhh+4MXfcklwY
PM4kWockOohDUHt4XMEv4JGFh6rko4H4SGwZWwid/6IcL4zo7aZT7nA9HQDhsZH4
TpbcBapBmFVtoH/NyEaUWJxjFhNd6K08riptnaVSlHhXc+xgCwyJYBJWdww8yfpG
WMOtmCymFo0hGuLuMfw55CpyoQbXfTLHTdGx7oDVkN+fadwR3pU6BC8arj1OCXvB
6NuJqzkNGQ==
-----END CERTIFICATE-----
Generated at Wed May 13 03:59:29 2026 by rpki-client