Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-Sk97_-h4y8HO6sAydTcUcRdfaE.roa
File: 1-Sk97_-h4y8HO6sAydTcUcRdfaE.roa (raw, json)
Hash identifier: ZVU9Y4Pc/KXlUXnGheAjlbeXzLPTNxhvhF3IoLisSmk=
Subject key identifier: F9:29:3D:EF:FF:A1:E3:2F:07:3B:AB:00:C9:D4:DC:51:C4:5D:7D:A1
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019C765AE2C3C29A17D2079AF9F334FB0836
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-Sk97_-h4y8HO6sAydTcUcRdfaE.roa
Signing time: Thu 19 Feb 2026 14:43:13 +0000
ROA not before: Thu 19 Feb 2026 14:43:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212815
IP address blocks: 163.5.99.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.193.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
185.253.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Feb 2026 14:44:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:76:5a:e2:c3:c2:9a:17:d2:07:9a:f9:f3:34:fb:08:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Feb 19 14:43:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f9293defffa1e32f073bab00c9d4dc51c45d7da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:fc:9a:e0:ff:37:11:ce:7b:73:d9:67:ae:
00:96:de:86:b5:78:8c:4c:f7:2d:9a:05:8a:e4:24:
17:8a:35:08:a6:76:cb:6e:eb:df:ea:7f:12:85:c0:
cc:4b:34:b2:cc:e7:95:a5:f9:75:92:91:56:97:e2:
b4:b9:d6:1d:64:e5:88:7c:f0:79:c9:4b:8a:25:54:
e4:ba:c2:6c:fe:5e:ec:94:70:ba:76:64:95:e9:b1:
d0:ed:7d:2c:d8:27:1f:7a:af:bb:c5:d8:b3:63:9c:
d9:0a:70:82:b5:ef:23:7b:eb:0c:a5:af:c7:64:fa:
bf:1c:37:1b:64:50:ea:b3:57:56:01:47:92:85:b8:
e3:68:5e:df:f9:02:18:ae:e5:7a:f8:0a:71:3a:70:
03:8b:63:04:d4:05:e1:81:48:cb:1c:95:23:7c:8c:
75:6d:0f:87:4f:2d:f9:8a:41:32:52:fc:30:ec:1d:
ee:fe:eb:9c:3b:f4:89:10:68:d1:60:86:65:3a:fe:
3a:09:b1:19:bc:4b:2b:60:bf:74:bd:27:af:44:35:
9f:44:e9:c0:d9:77:12:e4:29:b1:56:06:95:b0:58:
f6:66:ed:ca:ff:37:45:e5:8d:e1:b7:bb:96:70:7f:
fe:da:12:1a:7a:41:24:4a:2f:89:92:d6:a6:15:d6:
f9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:3D:EF:FF:A1:E3:2F:07:3B:AB:00:C9:D4:DC:51:C4:5D:7D:A1
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-Sk97_-h4y8HO6sAydTcUcRdfaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.99.0/24
163.5.143.0/24
163.5.193.0/24
163.5.213.0/24
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
29:8e:cf:de:ab:fc:4f:4f:ae:bf:92:a9:b9:e6:05:01:09:17:
33:8c:a9:76:18:77:62:ac:f6:2d:8f:5a:ee:d2:02:86:d4:f6:
df:ab:7e:d7:1d:b8:ee:4b:8b:81:f3:1d:49:c6:4f:0f:8c:d6:
bb:53:6b:37:4c:64:7e:f9:5d:15:6d:83:26:ec:dd:0c:c2:e2:
15:ef:52:68:4d:bc:cc:83:f9:0e:f1:46:2f:27:60:65:d7:84:
5c:d7:5a:60:7c:34:e3:26:61:6c:84:ac:57:89:9c:28:70:73:
e9:17:b3:f4:29:e3:0f:30:b2:f5:30:80:eb:47:15:3a:34:75:
f2:c5:a8:78:df:f0:6b:10:a5:f1:05:ee:ac:f3:1f:37:b2:70:
ba:b1:2e:8c:a3:b1:cf:17:2c:c2:b1:4d:53:ba:12:fd:b6:fb:
91:fe:17:d1:e9:51:44:c7:ab:78:55:92:17:55:ac:b5:4b:69:
69:44:13:ab:70:ad:a3:a4:02:7a:bb:6f:12:0f:b7:74:49:60:
62:d9:6d:06:c3:af:ec:01:8c:c6:88:f9:83:f6:fe:95:70:98:
a1:52:40:91:30:31:8a:ab:2e:b0:ae:12:c1:dd:1a:99:11:44:
05:98:d5:0b:e5:59:53:e0:39:3b:8b:87:70:13:0e:15:59:f3:
ef:18:ae:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 00:09:15 2026 by rpki-client