Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/b5VOfYsngZbVCSYSWuCVZzy3P-Q.roa
File: b5VOfYsngZbVCSYSWuCVZzy3P-Q.roa (raw, json)
Hash identifier: t2BVxSRMg1PdBU4XB2zXlf0uBbFPlcL38V60oFFybJA=
Subject key identifier: 6F:95:4E:7D:8B:27:81:96:D5:09:26:12:5A:E0:95:67:3C:B7:3F:E4
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 019EF86258F661233237BF415D8787054848
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/b5VOfYsngZbVCSYSWuCVZzy3P-Q.roa
Signing time: Wed 24 Jun 2026 06:47:35 +0000
ROA not before: Wed 24 Jun 2026 06:47:35 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 8315
IP address blocks: 5.100.224.0/22 maxlen: 24
5.100.228.0/23 maxlen: 24
79.99.184.0/21 maxlen: 24
83.98.128.0/19 maxlen: 24
83.98.166.0/23 maxlen: 24
83.98.168.0/21 maxlen: 24
83.98.176.0/20 maxlen: 24
83.98.200.0/22 maxlen: 24
83.98.208.0/20 maxlen: 24
85.92.128.0/21 maxlen: 24
85.92.138.0/23 maxlen: 24
85.92.144.0/22 maxlen: 24
85.158.160.0/21 maxlen: 24
85.222.192.0/22 maxlen: 24
85.222.196.0/23 maxlen: 24
89.18.160.0/22 maxlen: 24
89.18.168.0/21 maxlen: 24
89.18.180.0/22 maxlen: 24
89.30.128.0/21 maxlen: 24
89.30.144.0/21 maxlen: 24
89.30.152.0/22 maxlen: 24
89.30.156.0/23 maxlen: 24
89.30.168.0/22 maxlen: 24
89.30.192.0/22 maxlen: 24
89.30.196.0/23 maxlen: 24
89.30.208.0/20 maxlen: 24
89.30.224.0/21 maxlen: 24
91.200.48.0/23 maxlen: 24
91.200.51.0/24 maxlen: 24
91.216.113.0/24 maxlen: 24
91.216.141.0/24 maxlen: 24
93.175.176.0/20 maxlen: 24
94.198.24.0/21 maxlen: 24
134.0.88.0/21 maxlen: 24
162.248.196.0/22 maxlen: 24
162.251.32.0/21 maxlen: 24
176.62.192.0/21 maxlen: 24
178.251.192.0/21 maxlen: 24
185.12.132.0/22 maxlen: 24
185.30.236.0/22 maxlen: 24
185.38.156.0/22 maxlen: 24
185.74.76.0/24 maxlen: 24
185.74.77.0/24 maxlen: 24
185.77.120.0/22 maxlen: 24
185.113.52.0/22 maxlen: 24
185.113.196.0/22 maxlen: 24
185.113.224.0/22 maxlen: 24
185.116.72.0/22 maxlen: 24
193.34.150.0/23 maxlen: 24
194.105.128.0/23 maxlen: 24
194.165.34.0/24 maxlen: 24
195.234.173.0/24 maxlen: 24
213.171.128.0/19 maxlen: 24
213.171.144.0/20 maxlen: 24
213.189.0.0/21 maxlen: 24
213.189.20.0/24 maxlen: 24
213.189.28.0/22 maxlen: 24
213.214.96.0/24 maxlen: 24
213.214.101.0/24 maxlen: 24
213.214.103.0/24 maxlen: 24
213.214.107.0/24 maxlen: 24
213.214.112.0/20 maxlen: 24
213.247.32.0/21 maxlen: 24
213.247.40.0/22 maxlen: 24
213.247.48.0/23 maxlen: 24
213.247.52.0/24 maxlen: 24
213.247.58.0/24 maxlen: 24
213.247.59.0/24 maxlen: 24
217.195.112.0/20 maxlen: 24
2001:16f8::/32 maxlen: 48
2a00:1bd8::/32 maxlen: 48
2a01:40e0::/32 maxlen: 48
2a02:20b0::/32 maxlen: 32
2a02:20b1::/32 maxlen: 32
2a02:2858::/29 maxlen: 48
2a02:2858:200::/40 maxlen: 40
2a02:2858:300::/40 maxlen: 40
2a02:2858:400::/40 maxlen: 40
2a02:2858:500::/40 maxlen: 40
2a03:5500::/31 maxlen: 48
2a0d:5040::/29 maxlen: 29
2a0d:5040::/32 maxlen: 32
2a0d:5041::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f8:62:58:f6:61:23:32:37:bf:41:5d:87:87:05:48:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Jun 24 06:47:35 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6f954e7d8b278196d50926125ae095673cb73fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:02:19:18:db:d3:23:c0:27:dd:89:20:b9:
79:1c:65:1b:60:6c:c1:93:ed:eb:a8:9f:61:2d:9f:
78:b2:f5:20:9e:d3:1e:5b:40:b7:02:85:1b:e0:4e:
3b:e5:9c:8a:dc:95:61:4d:d6:df:32:b5:fb:02:db:
b1:ba:6c:bf:bc:1e:e4:61:a2:47:89:a5:c3:a0:04:
fa:a0:54:d5:c9:f0:44:f1:27:76:88:90:90:fc:07:
cb:e4:f6:2e:44:93:62:12:ee:49:14:43:fc:64:ed:
cd:fb:34:a6:9e:a1:95:36:15:06:4b:d5:f4:a4:98:
76:63:fe:37:c6:f6:18:1c:82:2d:3a:38:ba:04:10:
87:29:ff:20:09:fd:e6:ca:21:d7:0c:03:4b:85:a5:
42:45:9c:f0:e2:48:c0:cb:2f:cf:7e:ef:ed:ae:fb:
e3:10:6e:67:b5:44:7c:08:c0:e8:10:df:5e:56:62:
4e:18:59:31:0c:71:b5:13:80:a4:83:1b:3e:6e:81:
01:d6:1d:cc:eb:be:1c:45:ed:cf:3c:cd:1b:58:d7:
18:cb:2c:fe:45:e3:83:5c:8d:79:e7:0a:b5:fa:49:
31:ea:7a:4b:c9:de:1e:4b:c1:10:27:99:35:eb:99:
1b:59:39:a4:ed:b6:e7:44:43:c1:7e:dc:c8:8b:88:
ad:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:95:4E:7D:8B:27:81:96:D5:09:26:12:5A:E0:95:67:3C:B7:3F:E4
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/b5VOfYsngZbVCSYSWuCVZzy3P-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.224.0-5.100.229.255
79.99.184.0/21
83.98.128.0/19
83.98.166.0-83.98.191.255
83.98.200.0/22
83.98.208.0/20
85.92.128.0/21
85.92.138.0/23
85.92.144.0/22
85.158.160.0/21
85.222.192.0-85.222.197.255
89.18.160.0/22
89.18.168.0/21
89.18.180.0/22
89.30.128.0/21
89.30.144.0-89.30.157.255
89.30.168.0/22
89.30.192.0-89.30.197.255
89.30.208.0-89.30.231.255
91.200.48.0/23
91.200.51.0/24
91.216.113.0/24
91.216.141.0/24
93.175.176.0/20
94.198.24.0/21
134.0.88.0/21
162.248.196.0/22
162.251.32.0/21
176.62.192.0/21
178.251.192.0/21
185.12.132.0/22
185.30.236.0/22
185.38.156.0/22
185.74.76.0/23
185.77.120.0/22
185.113.52.0/22
185.113.196.0/22
185.113.224.0/22
185.116.72.0/22
193.34.150.0/23
194.105.128.0/23
194.165.34.0/24
195.234.173.0/24
213.171.128.0/19
213.189.0.0/21
213.189.20.0/24
213.189.28.0/22
213.214.96.0/24
213.214.101.0/24
213.214.103.0/24
213.214.107.0/24
213.214.112.0/20
213.247.32.0-213.247.43.255
213.247.48.0/23
213.247.52.0/24
213.247.58.0/23
217.195.112.0/20
IPv6:
2001:16f8::/32
2a00:1bd8::/32
2a01:40e0::/32
2a02:20b0::/31
2a02:2858::/29
2a03:5500::/31
2a0d:5040::/29
Signature Algorithm: sha256WithRSAEncryption
a7:fb:52:6a:ff:24:36:b4:2a:26:d2:c1:4d:b4:49:0e:0f:9e:
34:1c:33:b7:8a:9b:a6:29:8d:37:f8:44:83:1e:7f:6a:4f:29:
62:35:23:c9:a4:37:ac:84:63:6f:15:36:9b:12:dc:9c:ba:44:
ca:47:05:08:9f:91:2a:3d:01:67:73:eb:4c:8f:0e:2e:07:03:
f0:e7:73:fc:92:67:76:f8:be:78:50:9d:94:73:cc:89:87:43:
a6:3e:e5:bf:47:67:a1:3a:ee:98:40:c7:c6:d9:09:9b:3d:a3:
74:98:a3:65:d2:f9:4b:1d:2c:6c:ee:89:25:77:e4:80:a6:ad:
fc:a6:47:5d:05:9b:bf:6d:8c:d1:ca:0e:f1:0c:11:cf:07:e6:
83:7d:0e:4a:5e:ca:5f:a0:bb:9d:95:c5:cf:5e:ea:c5:fd:b4:
19:bb:a8:10:1d:95:1c:1b:45:14:b9:65:75:26:6d:7a:cf:f2:
85:00:3a:bc:2c:49:66:e3:a4:ef:01:8a:53:24:a2:01:98:4d:
e2:dd:1d:08:55:a4:a3:c3:da:ef:ef:b4:0b:bd:e5:b7:14:ea:
8f:a0:d3:5d:32:50:4f:80:12:8a:ff:53:17:ad:b1:cc:76:f3:
23:43:06:af:dd:bb:cd:a4:5a:94:8b:52:bb:f2:54:27:60:ba:
c9:62:4b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 21:32:36 2026 by rpki-client