Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/ewpu37-_zVa2ciUPDCprYExVMeE.roa
File: ewpu37-_zVa2ciUPDCprYExVMeE.roa (raw, json)
Hash identifier: J4xvO1VX5LQIo6ESckSvrBALshEalA/u4gMAKH5WVJQ=
Subject key identifier: 7B:0A:6E:DF:BF:BF:CD:56:B6:72:25:0F:0C:2A:6B:60:4C:55:31:E1
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 019E27326D588D160841BF6B1A6114A2B782
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/ewpu37-_zVa2ciUPDCprYExVMeE.roa
Signing time: Thu 14 May 2026 15:54:36 +0000
ROA not before: Thu 14 May 2026 15:54:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 57910
IP address blocks: 31.214.176.0/20 maxlen: 24
37.10.72.0/21 maxlen: 24
37.152.88.0/21 maxlen: 24
45.149.228.0/22 maxlen: 24
46.18.72.0/21 maxlen: 24
82.198.48.0/20 maxlen: 20
87.117.96.0/20 maxlen: 24
91.132.116.0/22 maxlen: 24
95.214.0.0/22 maxlen: 24
109.69.48.0/21 maxlen: 24
185.11.236.0/22 maxlen: 24
185.161.12.0/22 maxlen: 24
185.226.236.0/22 maxlen: 24
193.57.36.0/22 maxlen: 24
194.56.236.0/22 maxlen: 24
194.127.158.0/23 maxlen: 24
194.127.162.0/23 maxlen: 24
2a00:b5c0::/32 maxlen: 48
2a02:2110::/32 maxlen: 48
2a0c:7a00::/29 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:27:32:6d:58:8d:16:08:41:bf:6b:1a:61:14:a2:b7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: May 14 15:54:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7b0a6edfbfbfcd56b672250f0c2a6b604c5531e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:04:86:cb:45:d6:bd:88:35:3c:00:9f:32:4f:
39:d0:bb:d6:03:a8:08:fd:80:7e:b1:e6:5b:b8:37:
ea:18:e7:c0:37:5b:38:bc:19:e8:02:61:b5:26:61:
c0:0a:1a:73:c4:8b:c6:32:7a:53:01:21:93:af:ba:
84:77:96:be:ab:67:86:2d:5a:ce:cd:cd:f0:e2:a5:
61:99:76:53:2f:4e:bf:a5:9a:4f:ba:7e:d5:6e:66:
0c:8d:6d:23:35:81:58:ea:b3:8d:0d:99:54:dd:54:
74:56:ec:5c:72:db:34:89:3f:1f:ca:ba:a4:7f:0c:
42:dc:d8:0c:79:ca:87:a9:d6:c6:2a:26:12:b8:11:
5c:22:3a:48:f1:c7:12:2a:16:a5:31:a5:23:2f:b6:
ff:15:be:a2:a0:9c:92:86:8c:ed:1b:4f:f6:5d:b6:
4c:2a:67:d7:ee:83:83:03:de:d9:cc:0f:bc:26:0f:
30:0b:b7:11:c8:76:5a:f2:0e:4c:e8:4a:76:5a:89:
66:94:51:c7:c2:bc:c7:9f:5d:4d:f0:7d:18:53:ba:
f3:ca:2c:08:45:0b:16:8a:11:8c:96:a3:32:c6:20:
bf:3f:d0:56:5b:e7:9b:e1:0c:46:1c:1f:6a:6b:f2:
24:22:a0:1e:fc:94:06:c3:48:1f:f8:81:6a:83:07:
27:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0A:6E:DF:BF:BF:CD:56:B6:72:25:0F:0C:2A:6B:60:4C:55:31:E1
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/ewpu37-_zVa2ciUPDCprYExVMeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.176.0/20
37.10.72.0/21
37.152.88.0/21
45.149.228.0/22
46.18.72.0/21
82.198.48.0/20
87.117.96.0/20
91.132.116.0/22
95.214.0.0/22
109.69.48.0/21
185.11.236.0/22
185.161.12.0/22
185.226.236.0/22
193.57.36.0/22
194.56.236.0/22
194.127.158.0/23
194.127.162.0/23
IPv6:
2a00:b5c0::/32
2a02:2110::/32
2a0c:7a00::/29
Signature Algorithm: sha256WithRSAEncryption
46:7a:9f:7f:b8:a9:08:bd:26:f0:5a:28:e3:17:ab:45:95:8a:
d3:d6:e8:79:94:74:06:85:cf:0f:59:ea:eb:1b:e4:e0:f1:69:
62:ff:d3:1c:cb:3d:c2:0c:8e:13:a6:6c:7b:c1:5c:fb:8e:79:
61:d5:05:57:b4:19:fc:76:18:21:ba:c5:f8:ae:87:bb:23:0c:
66:5d:1e:3e:d1:dd:a9:89:6f:60:60:bb:40:4d:be:e4:a2:ab:
49:f7:ef:d5:b1:b6:b4:dc:55:93:3c:f0:0c:f8:57:36:4d:44:
d1:36:eb:04:b4:77:a5:49:1a:f9:25:a2:37:b9:75:9f:b7:ad:
c3:90:90:12:58:20:fe:ba:b7:2b:91:25:de:f1:b6:d3:4a:55:
2c:ec:e9:cd:39:35:a7:53:69:5a:43:47:f5:a4:b2:db:51:12:
f1:c2:79:20:d5:34:82:61:5e:29:29:79:49:d4:e3:d9:f5:39:
60:72:72:43:e1:de:12:04:68:2d:be:b1:51:ee:d4:a7:c5:fc:
f4:10:fd:0f:07:47:4b:4b:9c:e5:eb:e6:85:4a:c3:87:34:a8:
5e:2d:b8:c6:2a:79:aa:a8:6b:de:d9:3c:8d:ea:a0:7e:d8:8e:
3e:5a:b2:96:8d:8f:cb:ed:79:14:6c:e0:e2:42:56:71:2b:ae:
4b:30:3c:66
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgISAZ4nMm1YjRYIQb9rGmEUoreCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNWFhZjNkMDY4M2RjOGEwZDU4YzY0MzgyNmUxNjZkM2My
OGNjYTkwHhcNMjYwNTE0MTU1NDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjBhNmVkZmJmYmZjZDU2YjY3MjI1MGYwYzJhNmI2MDRjNTUzMWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArASGy0XWvYg1PACfMk850LvWA6gI
/YB+seZbuDfqGOfAN1s4vBnoAmG1JmHAChpzxIvGMnpTASGTr7qEd5a+q2eGLVrO
zc3w4qVhmXZTL06/pZpPun7VbmYMjW0jNYFY6rONDZlU3VR0Vuxccts0iT8fyrqk
fwxC3NgMecqHqdbGKiYSuBFcIjpI8ccSKhalMaUjL7b/Fb6ioJyShoztG0/2XbZM
KmfX7oODA97ZzA+8Jg8wC7cRyHZa8g5M6Ep2WolmlFHHwrzHn11N8H0YU7rzyiwI
RQsWihGMlqMyxiC/P9BWW+eb4QxGHB9qa/IkIqAe/JQGw0gf+IFqgwcn4wIDAQAB
o4ICiTCCAoUwHQYDVR0OBBYEFHsKbt+/v81WtnIlDwwqa2BMVTHhMB8GA1UdIwQY
MBaAFB5arz0Gg9yKDVjGQ4JuFm08KMypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMt
NGNkMzhiNzU4ZDVjLzEvZXdwdTM3LV96VmEyY2lVUERDcHJZRXhWTWVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMtNGNkMzhiNzU4ZDVj
LzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGeBggrBgEFBQcBBwEB/wSBjjCBizBsBAIAATBmAwQEH9aw
AwQDJQpIAwQDJZhYAwQCLZXkAwQDLhJIAwQEUsYwAwQEV3VgAwQCW4R0AwQCX9YA
AwQDbUUwAwQCuQvsAwQCuaEMAwQCueLsAwQCwTkkAwQCwjjsAwQBwn+eAwQBwn+i
MBsEAgACMBUDBQAqALXAAwUAKgIhEAMFAyoMegAwDQYJKoZIhvcNAQELBQADggEB
AEZ6n3+4qQi9JvBaKOMXq0WVitPW6HmUdAaFzw9Z6usb5ODxaWL/0xzLPcIMjhOm
bHvBXPuOeWHVBVe0Gfx2GCG6xfiuh7sjDGZdHj7R3amJb2Bgu0BNvuSiq0n379Wx
trTcVZM88Az4VzZNRNE26wS0d6VJGvkloje5dZ+3rcOQkBJYIP66tyuRJd7xttNK
VSzs6c05NadTaVpDR/WksttREvHCeSDVNIJhXikpeUnU49n1OWByckPh3hIEaC2+
sVHu1KfF/PQQ/Q8HR0tLnOXr5oVKw4c0qF4tuMYqeaqoa97ZPI3qoH7Yjj5aspaN
j8vteRRs4OJCVnErrkswPGY=
-----END CERTIFICATE-----
Generated at Thu Jun 11 16:26:06 2026 by rpki-client