Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ggLhtV0AaDSk5JJTvjygPfd_8Ac.roa
File: ggLhtV0AaDSk5JJTvjygPfd_8Ac.roa (raw, json)
Hash identifier: mujNqmE4hB6l4dNClrMjLkjdj3Mm4+zESfXslKnwHSg=
Subject key identifier: 82:02:E1:B5:5D:00:68:34:A4:E4:92:53:BE:3C:A0:3D:F7:7F:F0:07
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019E463FF90091FD09E3C5FC17A5DD938905
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ggLhtV0AaDSk5JJTvjygPfd_8Ac.roa
Signing time: Wed 20 May 2026 16:37:38 +0000
ROA not before: Wed 20 May 2026 16:37:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 0
IP address blocks: 31.13.224.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.66.231.0/24 maxlen: 24
45.89.247.0/24 maxlen: 24
45.91.194.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.143.113.0/24 maxlen: 24
84.54.51.0/24 maxlen: 24
85.217.130.0/23 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.126.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.120.191.0/24 maxlen: 24
92.249.50.0/24 maxlen: 24
93.123.100.0/23 maxlen: 24
93.123.109.0/24 maxlen: 24
147.78.101.0/24 maxlen: 24
185.218.84.0/22 maxlen: 24
185.222.160.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 May 2026 14:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:46:3f:f9:00:91:fd:09:e3:c5:fc:17:a5:dd:93:89:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 20 16:37:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8202e1b55d006834a4e49253be3ca03df77ff007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:40:af:ec:33:15:d4:1f:ca:4c:a0:3f:71:1e:
31:fa:ab:9a:d2:b2:57:f9:ef:59:15:f6:24:cc:f5:
2a:54:df:8b:a9:97:cb:7c:54:dd:39:89:0d:fc:68:
a7:26:d6:3d:e9:16:db:2d:d1:a7:7f:11:99:45:23:
41:be:8f:5d:35:b2:4e:eb:18:6b:e7:f9:11:68:11:
1c:5b:9e:a3:86:41:8f:be:9a:f2:5b:8c:ee:ed:fc:
ea:df:23:f7:5a:0d:a0:ce:68:c4:e8:e3:09:e2:55:
47:49:dd:bf:37:d8:d7:8b:8b:fb:ca:42:8b:2b:ed:
fe:79:4e:e3:51:c8:33:5a:73:3b:d2:99:8d:85:c1:
60:de:fe:4b:43:9a:7f:7a:75:4d:f3:7c:99:1a:2c:
6c:19:34:4d:6d:c6:87:df:32:6c:fc:ef:60:92:7e:
cb:de:69:d5:97:30:bb:85:1c:9b:67:21:4c:2f:dc:
87:7d:1b:b7:96:e5:e9:63:09:8c:eb:0c:88:8e:c5:
c6:f0:6f:7b:53:36:51:a1:51:4a:ec:47:3d:5b:c7:
4c:cd:f2:e6:fc:dc:d1:e6:94:e4:9e:ee:a5:66:9d:
ff:a5:80:4d:29:37:88:83:98:59:9c:34:2f:5e:5d:
cf:59:0f:e4:da:7e:6b:79:b5:45:f0:b6:29:97:e3:
39:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:02:E1:B5:5D:00:68:34:A4:E4:92:53:BE:3C:A0:3D:F7:7F:F0:07
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ggLhtV0AaDSk5JJTvjygPfd_8Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.224.0/24
45.66.228.0/24
45.66.231.0/24
45.89.247.0/24
45.91.194.0/24
45.141.158.0/24
81.161.238.0/24
83.143.113.0/24
84.54.51.0/24
85.217.130.0/23
87.120.87.0/24
87.120.126.0/24
87.120.166.0/24
87.120.191.0/24
92.249.50.0/24
93.123.100.0/23
93.123.109.0/24
147.78.101.0/24
185.218.84.0/22
185.222.160.0/24
194.55.186.0/24
194.169.175.0/24
Signature Algorithm: sha256WithRSAEncryption
03:53:27:51:99:4b:0b:2b:60:be:b4:88:5f:b6:79:b0:7b:43:
37:e5:f2:21:3d:fd:7e:cf:25:12:01:aa:03:46:1b:9a:e0:f0:
47:6c:71:62:25:8f:72:bf:e4:fd:d4:78:07:fa:35:ec:3e:58:
b2:a0:9e:31:5b:41:9d:74:1c:58:ee:a9:17:8f:29:ac:85:a9:
fb:c2:ca:16:a7:3c:65:95:2c:04:aa:1b:52:47:4f:3c:1d:f9:
6f:16:ee:4f:8e:4b:fc:cb:28:c0:d0:88:85:7a:04:06:d5:4f:
d5:de:64:6f:ef:39:e7:63:c9:e8:ef:4c:24:c3:85:ec:43:45:
12:b5:60:2e:70:94:56:10:1b:7b:d0:be:9d:ca:3f:14:a5:9b:
4c:8f:60:b7:70:e5:0e:ec:19:cc:73:f1:b1:a7:a2:bb:a7:f6:
cb:60:d0:ea:65:25:ef:1b:93:ce:1c:72:3b:2a:00:1c:cc:15:
42:c6:ae:16:c7:b2:53:ca:7b:2e:ed:86:3f:07:e0:6d:fc:d6:
95:e6:53:9d:04:50:16:1f:15:9b:24:b5:e4:94:43:99:32:dd:
60:5c:e3:cb:24:ba:e4:ab:36:97:63:a2:55:4c:01:ab:36:96:
e5:cc:31:5a:a6:0d:64:76:3d:92:dd:69:c9:96:d6:61:a4:cf:
95:d3:e0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 21:50:16 2026 by rpki-client