Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/drRx6oK3wzVmSWmW_sTFK5Oo1YA.roa
File: drRx6oK3wzVmSWmW_sTFK5Oo1YA.roa (raw, json)
Hash identifier: elx33VnSMmg2ZcK0CCnOK29rTHBb/zkGmQYwvK+RcE4=
Subject key identifier: 76:B4:71:EA:82:B7:C3:35:66:49:69:96:FE:C4:C5:2B:93:A8:D5:80
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019D0ACCD84CA96A01B33EA0C44D33D7B8AE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/drRx6oK3wzVmSWmW_sTFK5Oo1YA.roa
Signing time: Fri 20 Mar 2026 10:31:29 +0000
ROA not before: Fri 20 Mar 2026 10:31:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 28753
IP address blocks: 45.130.124.0/24 maxlen: 24
192.166.153.0/24 maxlen: 24
2a04:9f40::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a09:7b00::/29 maxlen: 29
2a0a:2d06:102::/48 maxlen: 48
2a0a:7d00::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0c:7886:99::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0f:17c0::/29 maxlen: 29
2a0f:2500::/29 maxlen: 29
2a0f:d200::/29 maxlen: 29
2a0f:db40::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:ac43:1312::/48 maxlen: 48
2a12:ecc6:1312::/48 maxlen: 48
2a13:1380::/29 maxlen: 29
2a13:18c6:66::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:2cc0::/29 maxlen: 29
2a13:2d40::/29 maxlen: 29
2a13:2dc0::/29 maxlen: 29
2a13:2e40::/29 maxlen: 29
2a13:3380::/29 maxlen: 29
2a13:4900::/29 maxlen: 29
2a13:5b80::/29 maxlen: 29
2a13:7900::/29 maxlen: 29
2a13:7d80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:d700::/29 maxlen: 29
2a13:d900::/29 maxlen: 29
2a13:f900::/29 maxlen: 29
2a13:fb00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0a:cc:d8:4c:a9:6a:01:b3:3e:a0:c4:4d:33:d7:b8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 20 10:31:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=76b471ea82b7c33566496996fec4c52b93a8d580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:15:e8:49:bc:3d:64:92:97:43:7a:92:1b:
1f:be:fb:ce:17:d8:69:c2:06:18:40:25:d7:46:50:
6a:b6:d2:67:1e:72:95:72:dd:9b:4f:5f:74:f7:03:
35:88:e3:76:fb:ec:ad:8d:ae:df:cf:a2:b4:e3:7e:
1e:cd:84:c9:ad:03:6a:79:50:e8:8e:91:6a:ed:62:
fd:5c:75:4a:39:1b:8d:3b:f5:cf:9a:bc:37:e5:7c:
49:b7:8d:d5:82:99:3c:2a:07:db:f6:92:dd:c4:98:
d1:79:0a:6d:73:fd:4b:37:aa:f3:c4:93:35:53:e0:
af:99:83:8d:03:d8:30:9a:91:06:09:1b:b1:16:d6:
53:56:46:d4:2b:b9:e2:f7:4b:23:97:45:a7:e6:6a:
eb:73:dc:31:5a:3c:a6:39:74:50:20:df:ec:23:c9:
94:37:63:a0:b5:43:b6:74:fa:a6:ba:fb:35:93:15:
6a:55:3f:01:6f:b3:90:55:05:25:a1:a4:c5:f7:6e:
08:b0:ab:25:d8:89:59:d9:63:aa:42:cf:8e:26:eb:
d3:d2:7a:62:58:76:76:49:c5:b3:29:24:9b:16:f2:
42:72:65:51:88:a3:e0:b4:65:f3:c2:61:ef:f7:83:
e5:2e:81:b9:34:0d:c8:67:e3:97:2a:c9:5f:96:9c:
a2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B4:71:EA:82:B7:C3:35:66:49:69:96:FE:C4:C5:2B:93:A8:D5:80
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/drRx6oK3wzVmSWmW_sTFK5Oo1YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.124.0/24
192.166.153.0/24
IPv6:
2a04:9f40::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a09:7b00::/29
2a0a:2d06:102::/48
2a0a:7d00::/29
2a0c:4880::/29
2a0c:7886:99::/48
2a0e:15c7:99::/48
2a0f:17c0::/29
2a0f:2500::/29
2a0f:d200::/29
2a0f:db40::/29
2a11:8880::/29
2a12:ac43:1312::/48
2a12:ecc6:1312::/48
2a13:1380::/29
2a13:18c6:66::/48
2a13:18c6:88::/48
2a13:2cc0::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2e40::/29
2a13:3380::/29
2a13:4900::/29
2a13:5b80::/29
2a13:7900::/29
2a13:7d80::/29
2a13:8200::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:f900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
56:a8:a2:ce:53:51:02:b1:2a:51:b4:db:40:1b:d9:a5:51:73:
50:f9:f7:c5:1e:5f:1b:02:ab:31:c1:ac:dd:32:1d:c0:55:37:
3d:86:4c:4f:18:47:b1:89:a0:0f:18:23:f0:0a:63:b3:87:fe:
01:3d:70:8e:0e:29:fd:da:93:09:44:cd:1f:b5:4a:eb:0a:b5:
80:0a:59:a1:8a:18:b1:1b:44:d6:f7:ee:3d:a3:b0:b7:7c:03:
3c:75:e2:d2:8c:a4:c9:4b:c0:b6:b8:d3:c2:e0:02:32:0b:5f:
24:c8:10:05:de:1a:67:f7:a6:67:cd:08:97:41:71:36:58:ce:
38:2a:7a:e0:0e:8a:fb:83:31:da:d9:fd:41:19:cb:f6:f3:92:
ed:59:83:60:e6:7a:e7:09:9c:53:70:f0:63:61:51:f2:c8:1d:
e7:87:b8:ac:34:35:46:5c:77:0d:4a:ae:2c:f7:34:cd:63:86:
a4:53:7c:9b:73:59:4c:89:9f:a0:08:35:35:1b:49:ef:7a:1e:
e5:ad:60:3f:35:50:e1:e5:3f:b9:ed:aa:ca:45:48:47:2a:6d:
ef:07:dc:53:41:6b:49:7b:2c:3b:67:86:6c:25:c2:70:c7:15:
ca:c7:36:7d:81:3c:25:c4:64:1c:6d:34:17:d8:cf:5e:5b:81:
fd:d0:ef:0f
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgISAZ0KzNhMqWoBsz6gxE0z17iuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjYwMzIwMTAzMTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmI0NzFlYTgyYjdjMzM1NjY0OTY5OTZmZWM0YzUyYjkzYThkNTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTgV6Em8PWSSl0N6khsfvvvOF9hp
wgYYQCXXRlBqttJnHnKVct2bT1909wM1iON2++ytja7fz6K0434ezYTJrQNqeVDo
jpFq7WL9XHVKORuNO/XPmrw35XxJt43Vgpk8Kgfb9pLdxJjReQptc/1LN6rzxJM1
U+CvmYONA9gwmpEGCRuxFtZTVkbUK7ni90sjl0Wn5mrrc9wxWjymOXRQIN/sI8mU
N2OgtUO2dPqmuvs1kxVqVT8Bb7OQVQUloaTF924IsKsl2IlZ2WOqQs+OJuvT0npi
WHZ2ScWzKSSbFvJCcmVRiKPgtGXzwmHv94PlLoG5NA3IZ+OXKslflpyiYQIDAQAB
o4IDJjCCAyIwHQYDVR0OBBYEFHa0ceqCt8M1Zklplv7ExSuTqNWAMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZHJSeDZvSzN3elZtU1dtV19zVEZLNU9vMVlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBOgYIKwYBBQUHAQcBAf8EggEpMIIBJTASBAIAATAMAwQA
LYJ8AwQAwKaZMIIBDQQCAAIwggEFAwUDKgSfQAMHACoGEYQBAQMFAyoGO8ADBQMq
B4pAAwUDKgl7AAMHACoKLQYBAgMFAyoKfQADBQMqDEiAAwcAKgx4hgCZAwcAKg4V
xwCZAwUDKg8XwAMFAyoPJQADBQMqD9IAAwUDKg/bQAMFAyoRiIADBwAqEqxDExID
BwAqEuzGExIDBQMqExOAAwcAKhMYxgBmAwcAKhMYxgCIAwUDKhMswAMFAyoTLUAD
BQMqEy3AAwUDKhMuQAMFAyoTM4ADBQMqE0kAAwUDKhNbgAMFAyoTeQADBQMqE32A
AwUDKhOCAAMFAyoT0QADBQMqE9cAAwUDKhPZAAMFAyoT+QADBQMqE/sAMA0GCSqG
SIb3DQEBCwUAA4IBAQBWqKLOU1ECsSpRtNtAG9mlUXNQ+ffFHl8bAqsxwazdMh3A
VTc9hkxPGEexiaAPGCPwCmOzh/4BPXCODin92pMJRM0ftUrrCrWAClmhihixG0TW
9+49o7C3fAM8deLSjKTJS8C2uNPC4AIyC18kyBAF3hpn96ZnzQiXQXE2WM44Knrg
Dor7gzHa2f1BGcv285LtWYNg5nrnCZxTcPBjYVHyyB3nh7isNDVGXHcNSq4s9zTN
Y4akU3ybc1lMiZ+gCDU1G0nveh7lrWA/NVDh5T+57arKRUhHKm3vB9xTQWtJeyw7
Z4ZsJcJwxxXKxzZ9gTwlxGQcbTQX2M9eW4H90O8P
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:48:13 2026 by rpki-client