Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/l8fv1lWzJ96YIAiccDY-Ru_YiDk.roa
File: l8fv1lWzJ96YIAiccDY-Ru_YiDk.roa (raw, json)
Hash identifier: OCSa4wjJgX04FeTqlHLX7vkmmY81j9E4gAqpW6Sh6G4=
Subject key identifier: 97:C7:EF:D6:55:B3:27:DE:98:20:08:9C:70:36:3E:46:EF:D8:88:39
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 019E06D1E575AAC3F4ADEBC73CCBEB292B72
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/l8fv1lWzJ96YIAiccDY-Ru_YiDk.roa
Signing time: Fri 08 May 2026 09:01:19 +0000
ROA not before: Fri 08 May 2026 09:01:19 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 193.37.199.0/24 maxlen: 24
2a06:fe40::/32 maxlen: 32
2a06:fe41::/32 maxlen: 32
2a06:fe42::/32 maxlen: 32
2a06:fe43::/32 maxlen: 32
2a06:fe44::/32 maxlen: 32
2a06:fe45::/32 maxlen: 32
2a06:fe46::/32 maxlen: 32
2a06:fe47::/32 maxlen: 32
2a09:1d80::/29 maxlen: 29
2a09:1d80::/32 maxlen: 32
2a09:1d81::/32 maxlen: 32
2a09:1d82::/32 maxlen: 32
2a09:1d83::/32 maxlen: 32
2a09:1d84::/32 maxlen: 32
2a09:1d85::/32 maxlen: 32
2a09:1d86::/32 maxlen: 32
2a09:1d87::/32 maxlen: 32
2a0e:2c00::/29 maxlen: 29
2a0e:2c00::/32 maxlen: 32
2a0e:2c01::/32 maxlen: 32
2a0e:2c02::/32 maxlen: 32
2a0e:2c03::/32 maxlen: 32
2a0e:2c04::/32 maxlen: 32
2a0e:2c05::/32 maxlen: 32
2a0e:2c06::/32 maxlen: 32
2a0e:2c07::/32 maxlen: 32
2a0e:6c00::/29 maxlen: 29
2a0e:6c00::/32 maxlen: 32
2a0e:6c01::/32 maxlen: 32
2a0e:6c02::/32 maxlen: 32
2a0e:6c03::/32 maxlen: 32
2a0e:6c04::/32 maxlen: 32
2a0e:6c05::/32 maxlen: 32
2a0e:6c06::/32 maxlen: 32
2a0e:6c07::/32 maxlen: 32
2a0e:8400::/29 maxlen: 29
2a11:ed80::/29 maxlen: 29
2a11:ed80::/32 maxlen: 32
2a11:ed81::/32 maxlen: 32
2a11:ed82::/32 maxlen: 32
2a11:ed83::/32 maxlen: 32
2a11:ed84::/32 maxlen: 32
2a11:ed85::/32 maxlen: 32
2a11:ed86::/32 maxlen: 32
2a11:ed87::/32 maxlen: 32
2a12:f80::/29 maxlen: 29
2a12:f80::/32 maxlen: 32
2a12:f81::/32 maxlen: 32
2a12:f82::/32 maxlen: 32
2a12:f83::/32 maxlen: 32
2a12:f84::/32 maxlen: 32
2a12:f85::/32 maxlen: 32
2a12:f86::/32 maxlen: 32
2a12:f87::/32 maxlen: 32
2a12:2f00::/29 maxlen: 32
2a12:3a80::/32 maxlen: 32
2a12:3a81::/32 maxlen: 32
2a12:3a82::/32 maxlen: 32
2a12:3a83::/32 maxlen: 32
2a12:3a84::/32 maxlen: 32
2a12:3a85::/32 maxlen: 32
2a12:3a86::/32 maxlen: 32
2a12:3a87::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:06:d1:e5:75:aa:c3:f4:ad:eb:c7:3c:cb:eb:29:2b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: May 8 09:01:19 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=97c7efd655b327de9820089c70363e46efd88839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:e0:7d:04:f8:a0:cc:18:99:3c:4b:ae:21:
6d:c3:c2:40:da:c0:df:a5:87:79:61:16:1a:3d:da:
f2:54:b0:55:8f:d8:84:0b:c8:34:c9:bc:af:48:c2:
df:42:ca:40:ce:28:e9:cc:31:78:63:73:a0:98:6f:
06:d2:56:58:c2:e7:19:74:e6:40:a0:0d:58:26:ec:
19:e6:2e:b1:6a:d2:f0:5a:bb:c7:1a:4c:61:71:33:
d6:fb:86:03:29:a3:9b:58:95:1a:32:f5:8c:7f:d9:
f8:f5:47:71:84:d5:8c:e2:f7:10:fc:33:3b:16:21:
de:63:5c:7c:bb:72:55:e1:e1:59:09:b8:fa:81:6d:
07:f2:02:f9:26:16:93:20:73:83:65:86:0d:88:eb:
57:e8:f7:8c:cb:02:00:83:f3:02:22:50:56:85:2d:
82:db:13:72:c8:ec:d1:09:37:64:f3:cf:ea:7e:61:
81:5b:0b:1a:43:cc:c5:20:6a:a8:16:9b:51:ec:39:
3c:9b:cb:db:a2:57:d0:eb:d7:27:9f:9f:bc:78:6c:
8c:d8:b6:a9:99:7c:8e:aa:ae:d5:12:b0:d4:fc:03:
45:d0:35:b0:78:ce:f4:7d:4b:14:05:35:52:8c:af:
0c:12:64:a8:d1:6b:99:77:7a:2f:e4:18:f4:16:c1:
b4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C7:EF:D6:55:B3:27:DE:98:20:08:9C:70:36:3E:46:EF:D8:88:39
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/l8fv1lWzJ96YIAiccDY-Ru_YiDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.199.0/24
IPv6:
2a06:fe40::/29
2a09:1d80::/29
2a0e:2c00::/29
2a0e:6c00::/29
2a0e:8400::/29
2a11:ed80::/29
2a12:f80::/29
2a12:2f00::/29
2a12:3a80::/29
Signature Algorithm: sha256WithRSAEncryption
2f:7d:b9:7f:29:5e:ff:93:9d:73:d5:e4:51:9e:06:82:9d:47:
d2:3e:90:d5:8b:34:e7:0d:58:ae:23:a8:a3:86:75:a5:22:c0:
dd:58:54:28:a0:07:16:9e:28:da:14:74:cb:9d:7e:be:26:d0:
9f:d6:8e:b8:f3:c7:77:75:9e:56:ad:6b:f9:58:f7:21:23:fd:
15:59:35:d5:2d:6e:b1:cd:20:30:f7:bf:13:c4:30:fe:af:94:
dc:13:ef:97:23:59:05:46:63:bb:b8:f5:4a:77:85:19:e5:56:
7f:7e:c9:7e:4e:b1:26:3a:ec:92:8a:6e:33:6a:15:af:81:66:
6a:9b:65:a2:68:3a:c7:4b:b6:07:aa:36:d8:b6:87:0b:e0:f9:
58:09:68:7a:7e:91:d1:e3:02:25:9e:15:cc:07:2a:ef:03:36:
09:c9:0a:99:b4:5c:99:a1:a8:f8:f9:f5:3f:13:0a:c7:6b:9e:
5c:5f:ee:4c:b5:78:57:b0:d4:18:be:b5:dd:1f:b1:be:ab:b9:
2d:21:21:d2:0a:ad:9e:38:6e:43:52:53:e4:f4:ee:07:1b:44:
c6:cd:16:81:8e:b2:f4:ef:5a:2f:ce:de:84:83:32:5a:3e:64:
d5:7b:8b:fc:ba:64:7a:4b:66:3c:b0:19:c4:78:9f:e4:15:e4:
f9:bd:47:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:24:52 2026 by rpki-client