Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5g4tT4IWbs0EvA4pUhUKX9riGcs.roa
File: 5g4tT4IWbs0EvA4pUhUKX9riGcs.roa (raw, json)
Hash identifier: eO1MCdlWh5+9wVB2wFnL2OWsNGnJDNRO6iyD2L4A63s=
Subject key identifier: E6:0E:2D:4F:82:16:6E:CD:04:BC:0E:29:52:15:0A:5F:DA:E2:19:CB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019EDE505CF2A07F4328BCD5EBB6CD867FED
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5g4tT4IWbs0EvA4pUhUKX9riGcs.roa
Signing time: Fri 19 Jun 2026 05:17:49 +0000
ROA not before: Fri 19 Jun 2026 05:17:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 400909
IP address blocks: 185.252.162.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:de:50:5c:f2:a0:7f:43:28:bc:d5:eb:b6:cd:86:7f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 19 05:17:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e60e2d4f82166ecd04bc0e2952150a5fdae219cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:dd:b7:59:33:0d:fe:e9:32:3f:3d:df:34:16:
61:c5:7e:4e:9f:89:66:d2:16:d8:28:eb:de:55:0d:
c0:0c:62:c3:46:1c:5c:35:89:fa:c8:25:6c:db:a9:
0e:40:6f:f2:97:d6:df:5f:ae:6d:07:1d:a0:9c:c2:
14:5f:13:f7:85:bf:fe:e2:b1:0e:26:09:62:5a:10:
c0:85:82:ad:4f:9e:7c:c5:98:9a:92:32:ba:b8:0d:
15:a3:47:3b:c3:86:59:d1:46:a6:0d:d3:77:a6:a3:
2f:95:c0:89:1b:0d:ef:c6:8e:e6:58:8b:a8:7e:03:
bb:61:0a:4f:58:dd:40:33:e3:43:87:0a:f4:39:73:
b7:f1:82:37:1c:3b:4f:26:b1:eb:20:d3:b1:be:2b:
43:21:e8:77:d1:a9:e9:d5:0b:21:18:34:09:6e:e0:
35:01:87:0c:18:5d:3f:13:46:12:01:c4:0a:1c:0a:
a2:d4:0b:29:35:15:ed:82:c0:08:80:77:e8:7d:c9:
69:c3:7d:ef:a0:b7:da:4b:63:e0:fe:88:ef:f2:84:
08:24:52:8c:e9:1d:2e:dd:92:ad:1d:8c:10:0c:39:
a7:59:c5:f3:23:73:3f:8b:8e:c9:b9:e2:a3:28:fc:
57:72:89:91:62:c4:2a:6c:4d:ef:49:a2:72:d2:11:
3d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0E:2D:4F:82:16:6E:CD:04:BC:0E:29:52:15:0A:5F:DA:E2:19:CB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5g4tT4IWbs0EvA4pUhUKX9riGcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.162.0/23
Signature Algorithm: sha256WithRSAEncryption
18:de:81:ad:88:ab:82:ea:d4:24:77:46:fe:e5:56:3f:44:49:
0a:a3:a3:f3:22:cc:ea:f0:92:74:98:4e:ed:c7:0f:c6:cc:76:
53:53:cd:31:dc:d3:e7:dc:46:4e:a7:e4:45:84:23:02:54:9f:
9b:0c:b8:0d:f6:ee:3f:68:a9:a9:72:d5:a9:86:65:c9:58:ef:
88:b8:b0:5a:6b:f5:24:ad:93:3c:66:fd:8e:7c:1f:43:b5:38:
85:63:21:ff:ee:e0:ac:ac:43:e8:64:6c:e6:82:9f:65:c2:14:
21:e8:f3:74:e1:45:52:09:02:8c:cc:f8:72:cd:01:51:43:4a:
8f:20:01:e5:3f:bc:b4:38:de:f2:44:ff:58:4a:58:07:a8:45:
14:9a:f1:a3:58:7b:c1:b5:1f:9b:df:20:13:13:7f:cd:3b:a7:
2d:16:72:ee:1e:29:de:29:ea:b9:f5:df:8c:e7:83:5b:fe:42:
fa:1a:90:b8:2d:f4:a5:f7:c4:fe:73:5a:e7:40:af:fb:be:97:
ac:a2:d7:f6:f2:31:c3:de:45:3d:4f:03:d5:62:ac:a1:2b:da:
30:3a:82:94:b4:ad:1c:fe:41:8f:9b:4c:61:6f:49:df:d5:22:
61:cd:f8:04:e8:c9:99:28:97:2b:69:a2:e1:22:7d:8e:91:b1:
7c:71:23:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 08:21:30 2026 by rpki-client