Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gvoKAKAQHdBTo6mwPWN5Eockezo.roa
File: gvoKAKAQHdBTo6mwPWN5Eockezo.roa (raw, json)
Hash identifier: XN7k/ckPwNLOgERuBUSK1w1oQld8QUjgkQEh0EoIiwE=
Subject key identifier: 82:FA:0A:00:A0:10:1D:D0:53:A3:A9:B0:3D:63:79:12:87:24:7B:3A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019E1B8D7A84436E01BDC019B6F1BC0A9DAF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gvoKAKAQHdBTo6mwPWN5Eockezo.roa
Signing time: Tue 12 May 2026 09:38:37 +0000
ROA not before: Tue 12 May 2026 09:38:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 61317
IP address blocks: 185.206.248.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.209.36.0/23 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.218.102.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.251.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:8d:7a:84:43:6e:01:bd:c0:19:b6:f1:bc:0a:9d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 12 09:38:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=82fa0a00a0101dd053a3a9b03d63791287247b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:1a:27:58:bb:11:13:ff:8a:37:dc:49:53:
06:8c:d9:7d:54:6a:ab:53:13:74:ad:cf:ab:9e:52:
bb:79:9c:e2:49:17:9f:23:fc:c2:3a:d0:d1:e3:4d:
79:e5:76:7c:81:a3:2f:28:69:36:02:59:f7:ee:58:
33:e7:15:aa:ca:a2:7c:85:0d:3a:65:35:7a:32:ba:
09:51:5a:52:6a:f3:45:c7:e3:4c:e3:74:f8:2e:73:
58:7a:62:94:6a:0b:23:f4:93:61:2c:ee:a2:6c:65:
2c:45:6e:9e:c1:3e:b9:a9:3d:ca:50:15:72:ca:e4:
9f:cb:9b:19:7c:c5:8d:17:1c:26:f7:3a:bb:f7:9d:
33:6c:fe:a5:85:f6:0b:54:66:ef:57:aa:a0:b4:c5:
89:2b:1a:ca:c4:72:a6:b9:73:41:6d:ce:a4:5f:7d:
4a:e0:31:4b:60:01:3e:4e:21:54:47:c2:de:4a:f6:
27:0c:64:cb:ad:91:e1:ac:21:84:3d:5b:5b:0f:bc:
8a:fc:4a:c5:34:b4:2b:bd:b1:cb:15:b8:b7:99:b5:
4c:31:b4:5c:43:df:5b:68:55:0d:5a:b5:ce:24:f8:
dd:c1:f8:23:b8:f0:9d:5c:75:7a:c9:f4:39:14:ec:
50:da:9d:b8:ff:a0:bc:d8:94:2b:07:18:de:be:2a:
87:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:0A:00:A0:10:1D:D0:53:A3:A9:B0:3D:63:79:12:87:24:7B:3A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gvoKAKAQHdBTo6mwPWN5Eockezo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
185.206.251.0/24
185.209.36.0/23
185.210.152.0/23
185.210.155.0/24
185.218.102.0/24
185.223.76.0/24
185.225.2.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c3:4b:e7:36:20:25:0f:30:37:54:39:a8:32:77:d5:18:15:
cb:48:bc:2d:04:f3:35:45:a5:d6:5f:ad:65:96:73:28:c8:ed:
6c:ac:d4:d0:7f:de:78:ef:09:64:8e:42:d1:cc:27:a2:57:1b:
c0:05:e5:10:a3:74:da:48:a2:43:17:63:8d:61:85:0e:bd:9b:
fb:18:d6:cb:a4:4c:ef:6a:c7:e9:b4:07:dc:c1:c7:3e:a4:aa:
cb:ba:01:36:9c:9d:05:f0:d3:08:35:e7:f8:57:1d:b3:5f:0a:
f0:68:69:09:12:e5:20:8b:df:62:0a:32:3b:30:14:c3:a3:c8:
41:60:aa:af:fc:31:f6:42:e0:a8:30:10:91:34:e7:5f:c3:a7:
a6:c6:44:54:5b:d2:21:bc:74:27:62:e7:0b:d7:ec:26:29:65:
96:b0:fa:e1:58:3b:b5:4b:86:a0:6b:76:e6:a1:d2:d7:b6:ef:
df:46:2a:81:20:35:55:c9:6b:b6:08:76:16:95:9e:e0:81:21:
fd:a4:e1:a6:62:b9:ef:29:11:74:c0:aa:f3:ae:9b:c3:e4:66:
c8:d6:90:6e:ab:0c:55:c9:67:5c:b9:a8:69:55:d4:f4:a1:34:
37:16:5f:fe:38:4b:be:9b:6d:1f:ce:a8:ba:18:9b:f6:e7:de:
89:b3:2c:2a
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAZ4bjXqEQ24BvcAZtvG8Cp2vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjYwNTEyMDkzODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmZhMGEwMGEwMTAxZGQwNTNhM2E5YjAzZDYzNzkxMjg3MjQ3YjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKQaJ1i7ERP/ijfcSVMGjNl9VGqr
UxN0rc+rnlK7eZziSRefI/zCOtDR40155XZ8gaMvKGk2Aln37lgz5xWqyqJ8hQ06
ZTV6MroJUVpSavNFx+NM43T4LnNYemKUagsj9JNhLO6ibGUsRW6ewT65qT3KUBVy
yuSfy5sZfMWNFxwm9zq7950zbP6lhfYLVGbvV6qgtMWJKxrKxHKmuXNBbc6kX31K
4DFLYAE+TiFUR8LeSvYnDGTLrZHhrCGEPVtbD7yK/ErFNLQrvbHLFbi3mbVMMbRc
Q99baFUNWrXOJPjdwfgjuPCdXHV6yfQ5FOxQ2p24/6C82JQrBxjeviqHkwIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFIL6CgCgEB3QU6OpsD1jeRKHJHs6MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvZ3ZvS0FLQVFIZEJUbzZtd1BXTjVFb2NrZXpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAuc74AwQA
uc77AwQBudEkAwQBudKYAwQAudKbAwQAudpmAwQAud9MAwQAueECAwQAueORAwQC
ueoUAwQCue7kAwQAufvnMA0GCSqGSIb3DQEBCwUAA4IBAQCsw0vnNiAlDzA3VDmo
MnfVGBXLSLwtBPM1RaXWX61llnMoyO1srNTQf9547wlkjkLRzCeiVxvABeUQo3Ta
SKJDF2ONYYUOvZv7GNbLpEzvasfptAfcwcc+pKrLugE2nJ0F8NMINef4Vx2zXwrw
aGkJEuUgi99iCjI7MBTDo8hBYKqv/DH2QuCoMBCRNOdfw6emxkRUW9IhvHQnYucL
1+wmKWWWsPrhWDu1S4aga3bmodLXtu/fRiqBIDVVyWu2CHYWlZ7ggSH9pOGmYrnv
KRF0wKrzrpvD5GbI1pBuqwxVyWdcuahpVdT0oTQ3Fl/+OEu+m20fzqi6GJv2596J
sywq
-----END CERTIFICATE-----
Generated at Tue May 12 22:32:57 2026 by rpki-client