Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/fD-1kHGec0fh4VngAeGlANb97TI.roa
File: fD-1kHGec0fh4VngAeGlANb97TI.roa (raw, json)
Hash identifier: vl6EBrtprZXs4HO+R2jQjCt7ulBL2XjUNdwx1uZUYaA=
Subject key identifier: 7C:3F:B5:90:71:9E:73:47:E1:E1:59:E0:01:E1:A5:00:D6:FD:ED:32
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 019E11AB1358279115C3A4A54A08FCC3E7A2
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/fD-1kHGec0fh4VngAeGlANb97TI.roa
Signing time: Sun 10 May 2026 11:34:44 +0000
ROA not before: Sun 10 May 2026 11:34:44 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203
IP address blocks: 45.94.14.0/24 maxlen: 24
45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.26.0/23 maxlen: 24
212.26.28.0/23 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 25
212.26.37.0/24 maxlen: 25
212.26.38.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.72.0/24 maxlen: 25
212.26.76.0/24 maxlen: 24
212.26.78.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/23 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 24
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.132.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.147.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 25
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 24
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 24
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.192.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.210.0/24 maxlen: 24
212.138.210.0/28 maxlen: 28
212.138.250.0/24 maxlen: 24
212.138.251.0/24 maxlen: 24
212.138.252.0/24 maxlen: 24
212.138.253.0/24 maxlen: 24
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:100::/48 maxlen: 48
2001:1490:101::/48 maxlen: 48
2001:1490:102::/48 maxlen: 48
2001:1490:103::/48 maxlen: 49
2001:1490:106::/48 maxlen: 48
2001:1490:108::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:112::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
2001:1490:114::/48 maxlen: 48
2001:1490:115::/48 maxlen: 50
2001:1490:116::/48 maxlen: 48
2001:1497:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:11:ab:13:58:27:91:15:c3:a4:a5:4a:08:fc:c3:e7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: May 10 11:34:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7c3fb590719e7347e1e159e001e1a500d6fded32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:71:2a:44:3f:b2:5f:80:23:7e:86:2a:c2:cb:
f0:ae:7b:0e:54:5d:4c:e2:fe:a6:20:ee:7a:2d:21:
9a:be:3b:90:80:fa:58:79:ab:cb:66:91:a5:9c:64:
61:13:21:7d:b4:59:1a:fa:06:02:c3:98:27:dd:86:
a2:8d:01:06:0f:a0:be:b5:7a:6b:59:77:65:c3:79:
5d:d0:0b:27:78:d9:6d:2b:5b:e9:f2:71:59:46:ba:
36:ec:a4:15:6a:89:7f:7a:59:ed:05:02:7c:c9:76:
36:a5:0b:a3:90:17:f2:ff:86:90:00:e9:6f:29:71:
3e:ed:78:e5:4b:7e:c5:76:fe:af:10:1c:f7:f7:28:
a6:12:13:7e:24:b4:9f:8d:55:e3:8a:18:4c:f2:63:
19:38:0e:fe:7c:63:8e:6d:ce:0b:cf:69:74:3f:f7:
70:92:56:d2:bb:0e:f3:42:fe:5d:55:de:54:4a:cc:
52:c8:1d:f7:b5:91:7f:64:2c:90:9a:20:8a:a9:b3:
d7:2b:18:66:c1:89:9a:88:ad:57:ad:59:7b:98:11:
15:47:cc:f9:b7:c2:3a:98:82:4a:5b:c3:bc:a5:e1:
61:de:34:ba:d1:6e:98:95:78:b8:0f:5c:fd:a2:75:
a2:b3:65:ea:43:85:70:54:36:8b:c9:f1:d5:5e:0e:
c9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3F:B5:90:71:9E:73:47:E1:E1:59:E0:01:E1:A5:00:D6:FD:ED:32
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/fD-1kHGec0fh4VngAeGlANb97TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/47
2001:1490:100::/46
2001:1490:106::/48
2001:1490:108::/48
2001:1490:110::-2001:1490:116:ffff:ffff:ffff:ffff:ffff
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
1f:f7:cc:cb:a9:e1:eb:c3:b2:e7:60:1b:ed:e0:62:cb:df:25:
09:ad:8d:32:46:a5:f3:d6:d8:a4:ae:16:1a:bc:0e:23:96:ed:
8c:b8:92:fe:ea:b4:fa:7a:78:f8:c8:9e:4f:6c:db:1d:75:18:
79:2a:2e:0c:f4:3a:a7:0c:1c:3f:4f:53:0d:aa:ed:15:9e:ca:
c5:eb:8b:7d:7e:ea:30:17:d5:85:66:e7:61:32:ab:d7:37:2d:
46:6e:df:e1:41:44:80:a5:70:09:34:84:bb:90:9c:9b:ab:02:
c7:f8:97:14:dd:4a:4c:a7:72:32:a3:75:9b:aa:d7:85:14:3d:
eb:70:47:d4:1b:c9:a8:c6:06:8b:15:1e:d6:cb:d7:1d:cd:3a:
ce:72:3d:84:ae:ea:2a:e7:b3:c9:02:fb:e4:aa:95:04:d5:87:
e6:65:72:ee:3e:76:6e:ff:00:99:d8:23:65:57:42:3e:0a:aa:
de:46:df:ab:73:4b:d1:bb:37:89:8a:08:f7:bd:10:8f:4e:93:
4c:bd:f8:70:6f:d2:30:40:97:3d:c6:6e:43:f3:a0:ec:76:68:
dc:5e:9e:ac:dc:60:27:a9:dc:dd:9a:4d:c4:6e:c7:c7:9b:e9:
28:d2:cc:06:70:6f:f4:bb:5e:69:c7:33:da:bd:f4:b9:5b:4b:
f4:27:33:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:51:09 2026 by rpki-client