Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eplOWOQwvNEaoI5I8qOeWBSUHpU.roa
File: eplOWOQwvNEaoI5I8qOeWBSUHpU.roa (raw, json)
Hash identifier: ehBrVW8h7gPbzsis6Fm9zQAKrnYOBCA36iJ4+Vj5VY4=
Subject key identifier: 7A:99:4E:58:E4:30:BC:D1:1A:A0:8E:48:F2:A3:9E:58:14:94:1E:95
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019E355DC21467C493E4B2A8F41ED8BA29EB
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eplOWOQwvNEaoI5I8qOeWBSUHpU.roa
Signing time: Sun 17 May 2026 09:56:37 +0000
ROA not before: Sun 17 May 2026 09:56:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201749
IP address blocks: 5.175.145.0/24 maxlen: 24
5.175.158.0/24 maxlen: 24
5.175.159.0/24 maxlen: 24
94.249.248.0/24 maxlen: 24
94.249.249.0/24 maxlen: 24
94.249.250.0/24 maxlen: 24
94.249.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 05:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:35:5d:c2:14:67:c4:93:e4:b2:a8:f4:1e:d8:ba:29:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 17 09:56:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7a994e58e430bcd11aa08e48f2a39e5814941e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:6d:04:ed:a3:34:13:c5:22:13:fa:60:bf:
95:ff:af:8f:a8:b6:3e:cb:57:08:5e:23:9e:a4:ab:
e2:5b:60:9f:3a:09:1a:05:94:b7:ef:ca:30:57:4e:
a2:e5:bc:3c:be:d6:c5:f8:9b:ff:b8:1a:1b:bc:de:
14:52:b0:3d:92:2e:94:41:c5:57:ce:80:50:80:6c:
b6:e9:19:ed:08:e6:39:ab:59:d4:ce:f2:45:02:4c:
e3:48:4c:78:a8:e6:01:4b:df:a4:59:44:70:a2:3d:
e2:92:55:4a:cf:35:42:eb:5b:2f:14:94:98:9b:af:
b3:61:04:79:c0:b9:63:06:41:30:40:aa:c4:7f:f6:
97:2f:02:0d:10:28:b1:24:92:ce:d5:0b:bd:2c:be:
03:b2:25:59:d6:f7:7a:3d:59:6d:50:70:19:1b:8f:
a7:4c:e7:3e:1c:da:d7:0c:f9:af:0f:2d:1c:73:9e:
4f:aa:43:c3:48:4b:fc:35:36:e0:76:0c:01:fa:e0:
bd:50:92:3e:a9:69:87:0c:01:c3:a9:b8:e2:5e:98:
f6:60:eb:0c:1a:a6:47:09:62:47:f0:74:28:b9:97:
a6:99:e6:39:ca:3c:ed:a1:fd:03:c7:7e:59:8f:97:
12:77:4a:87:20:83:99:7b:6b:38:f7:92:ae:a1:75:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:99:4E:58:E4:30:BC:D1:1A:A0:8E:48:F2:A3:9E:58:14:94:1E:95
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eplOWOQwvNEaoI5I8qOeWBSUHpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.145.0/24
5.175.158.0/23
94.249.248.0/22
Signature Algorithm: sha256WithRSAEncryption
42:d1:74:46:97:b7:45:03:ef:2f:3f:0d:ae:fc:39:f1:8b:7b:
f3:55:73:7d:68:19:98:e5:b5:b7:1f:28:03:5d:8a:c1:ed:2e:
75:3f:45:e1:b5:e9:bc:be:a9:4d:87:fa:56:e3:5d:d8:d8:8a:
ca:e0:21:91:65:93:5e:8c:50:16:fc:01:58:9f:91:f8:9b:81:
b4:f7:6c:ab:6e:72:2e:c7:88:a1:65:aa:25:81:98:9d:1d:7f:
4a:bc:72:93:19:e6:b8:32:90:be:33:25:b1:e4:c4:32:44:cf:
68:97:39:68:c0:84:d7:25:44:16:ce:f5:55:0f:5a:90:69:dc:
d2:46:e5:9c:b1:4c:8c:25:74:0a:4b:3d:29:67:04:2a:0f:32:
eb:7c:a8:dc:14:d0:c9:47:e6:60:0b:52:1b:77:e9:77:92:c1:
5d:a6:c2:48:ef:b8:06:6d:45:8e:c2:47:e3:5e:97:6d:cf:fd:
1a:04:fb:32:25:0e:7a:d1:e0:e6:a2:e9:13:91:48:d5:77:21:
22:d9:b9:d6:f4:43:09:f3:67:1f:e2:c8:28:f6:4a:fa:ff:19:
6b:cb:c3:c1:b2:5c:6e:23:ff:94:58:0a:2c:7d:ad:1c:8e:55:
dc:e0:93:5d:12:ff:e2:78:58:e1:96:37:6f:85:4a:d4:23:98:
ad:97:fe:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 09:01:21 2026 by rpki-client