Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKhlWy9hHBQPp8Gjz33xLWQ6Nq8.roa
File: wKhlWy9hHBQPp8Gjz33xLWQ6Nq8.roa (raw, json)
Hash identifier: cAVUtefcvZeyE3aGGrTlq0rYqeU96eRxeyzEiA+Rnoo=
Subject key identifier: C0:A8:65:5B:2F:61:1C:14:0F:A7:C1:A3:CF:7D:F1:2D:64:3A:36:AF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019E9B6D95379CFEB60A61AD8B5015EB7E31
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKhlWy9hHBQPp8Gjz33xLWQ6Nq8.roa
Signing time: Sat 06 Jun 2026 05:35:10 +0000
ROA not before: Sat 06 Jun 2026 05:35:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44559
IP address blocks: 192.124.183.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:6d:95:37:9c:fe:b6:0a:61:ad:8b:50:15:eb:7e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 6 05:35:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c0a8655b2f611c140fa7c1a3cf7df12d643a36af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:77:0b:82:d4:2b:60:96:52:70:5b:32:da:
84:a0:17:ad:f2:5a:5b:ca:32:ea:61:95:74:4b:51:
26:7a:4a:31:0d:89:6b:50:e0:dc:01:04:bf:04:b2:
d1:69:a7:05:8b:cd:4f:aa:0e:59:70:f5:ac:cd:ee:
b9:01:8e:19:78:2f:fc:0d:f9:34:1d:0f:f1:d9:ad:
1a:e9:93:30:9d:55:c1:c5:5b:a1:84:00:69:b3:ed:
81:17:eb:b3:0d:c9:47:2b:22:3a:41:da:e8:ce:b5:
16:fe:be:00:89:03:ac:59:ee:90:8d:5b:ce:d6:52:
35:19:d8:ef:d6:43:4c:0b:a0:9a:b1:11:cf:2a:bb:
99:f0:ba:f1:f0:46:f1:3e:3d:a0:a2:fe:90:a2:b6:
f1:6f:52:ac:44:1d:d9:ca:58:e7:7f:fe:3f:51:2d:
c5:09:3d:56:7f:b2:97:ac:03:ad:7b:81:8d:28:fe:
02:55:38:29:c4:ef:ad:46:db:69:5b:0d:9c:d9:ed:
2b:d8:03:29:b2:99:08:49:4e:8b:63:23:55:26:10:
7f:2f:5a:80:ba:f9:01:2a:aa:2d:6d:9e:ff:6c:29:
8c:83:0c:99:2a:73:f5:4d:e4:d5:44:82:80:d8:2a:
99:40:fa:ce:db:eb:68:24:e9:0f:61:b4:7f:53:1b:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A8:65:5B:2F:61:1C:14:0F:A7:C1:A3:CF:7D:F1:2D:64:3A:36:AF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKhlWy9hHBQPp8Gjz33xLWQ6Nq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.183.0/24
192.124.188.0/24
193.124.8.0/24
193.124.94.0/24
194.58.43.0/24
194.87.3.0/24
194.87.6.0/23
194.87.34.0/24
194.87.36.0/24
194.87.42.0/24
194.87.63.0/24
194.87.116.0/23
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.177.0/24
194.87.180.0-194.87.182.255
195.58.56.0/24
195.58.59.0/24
195.58.62.0/24
195.133.56.0/24
195.133.60.0/23
195.133.80.0/24
195.133.82.0/24
212.193.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ff:6b:83:96:29:59:4e:b9:49:a7:ef:01:ef:c5:83:dc:93:
21:39:8d:06:7f:0a:82:33:95:89:c5:d5:d5:bd:81:2c:5b:e6:
7e:46:ce:30:27:7f:0b:b6:a0:0f:5e:8a:06:b2:42:9f:d4:9d:
b1:2c:2a:b6:44:08:c3:94:ca:de:d8:a0:a5:2f:84:b3:82:c0:
1c:6a:95:b4:7b:c9:61:eb:17:19:b4:70:1b:db:58:14:73:9b:
a1:fa:ce:3a:78:a6:84:21:39:4b:36:7f:d1:9b:e3:ba:0c:1d:
de:9d:b8:a1:fa:94:c3:0e:19:78:4e:39:26:1c:28:1d:0c:1a:
62:69:5c:b6:99:37:23:a2:da:a0:75:20:79:f0:25:42:68:85:
ad:62:cf:da:61:4d:27:d6:9c:be:8a:a6:1b:a6:c4:db:96:73:
4d:a0:a9:fe:f7:09:28:71:89:e2:5b:92:99:ee:8d:b5:63:79:
0c:0e:72:fa:1a:28:b6:a6:ff:cf:94:cc:9c:ca:0c:0b:85:ae:
38:29:12:c4:d1:ed:68:94:98:a7:96:9f:9c:03:7a:84:29:85:
a1:1c:bd:5d:1b:f7:18:22:e1:9d:9f:e2:70:c7:81:34:0b:9b:
42:78:eb:76:5d:0c:fd:21:14:a9:3a:4c:e4:c5:09:46:8f:00:
70:d2:82:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 10:34:27 2026 by rpki-client