Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eeOy_76qXquHtVtR0AfUN8fQnTY.roa
File: eeOy_76qXquHtVtR0AfUN8fQnTY.roa (raw, json)
Hash identifier: ENNQXioI6YGnDAsjm4kiloyix4Lgv3c1g6iiCMbsCUc=
Subject key identifier: 79:E3:B2:FF:BE:AA:5E:AB:87:B5:5B:51:D0:07:D4:37:C7:D0:9D:36
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019DA7A8A7C041050DB016837AD60D3F846E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eeOy_76qXquHtVtR0AfUN8fQnTY.roa
Signing time: Sun 19 Apr 2026 21:32:21 +0000
ROA not before: Sun 19 Apr 2026 21:32:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 16276
IP address blocks: 163.5.62.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a7:a8:a7:c0:41:05:0d:b0:16:83:7a:d6:0d:3f:84:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 19 21:32:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=79e3b2ffbeaa5eab87b55b51d007d437c7d09d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c9:5e:57:1e:95:ef:b2:42:a3:d3:66:4a:76:
87:5e:1f:f2:bc:0d:35:12:f7:3f:3a:63:d4:45:e1:
23:b0:a9:6f:e3:7a:ea:f5:3d:8d:27:a2:8f:b4:95:
e5:5f:1b:9a:4c:ea:3b:a9:9f:e2:f6:b5:d9:19:5a:
b1:c8:b2:a8:0a:bf:93:f9:e2:dd:94:5c:af:2d:ad:
e1:98:2c:a4:bf:64:c7:82:a3:db:49:6f:df:d9:20:
2f:c7:c2:c5:9a:ae:a1:bb:1b:0f:ca:d9:af:70:30:
5c:47:69:b5:be:e7:5e:19:77:45:92:1b:47:e8:92:
e5:5a:a4:6f:d6:c7:d8:37:44:b6:14:c7:82:aa:02:
80:76:95:b0:d6:e2:d9:73:47:f1:c3:04:c8:3c:d8:
fa:5e:00:7a:7d:6f:8c:22:dc:f9:47:39:08:ea:e0:
1a:82:dd:b8:f1:55:7e:57:dc:44:ca:c4:e3:03:f7:
1d:6c:74:f8:60:97:38:ab:0d:9c:b4:2a:a3:c5:c0:
26:18:5c:54:84:23:42:25:0c:87:2b:73:3c:5e:40:
00:31:75:03:c5:ef:5b:18:f0:7b:b5:79:81:99:1e:
ee:4b:98:a3:09:1d:e7:0d:ac:be:72:86:d7:dc:a4:
b5:b6:2c:1c:60:79:c7:8a:4b:53:25:35:fd:44:08:
74:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E3:B2:FF:BE:AA:5E:AB:87:B5:5B:51:D0:07:D4:37:C7:D0:9D:36
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/eeOy_76qXquHtVtR0AfUN8fQnTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.62.0/24
163.5.131.0/24
163.5.149.0/24
163.5.187.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:ec:ec:51:bd:51:6f:6b:33:c0:93:ce:e1:3b:17:33:e2:88:
f7:85:db:91:e9:40:89:83:ec:e2:67:2f:0b:67:6d:61:a8:53:
2b:87:39:18:d8:3b:74:93:e8:c4:6b:2a:31:8e:2a:23:40:78:
eb:90:d9:aa:e3:8e:21:6a:c2:0c:d2:ad:22:49:46:64:ad:d0:
21:19:72:b8:cc:0a:72:f8:38:bf:b1:a3:97:6a:5b:24:ba:75:
50:e9:05:41:a1:62:8d:71:7a:29:87:8c:ff:ee:c2:af:1f:b5:
3c:0e:73:ed:d9:6e:18:4e:4d:73:c9:e9:24:28:65:bc:a7:ae:
05:ce:61:df:44:96:9d:d3:2a:4d:a7:3a:22:44:74:27:42:17:
07:0c:c8:66:bf:ff:df:6b:21:ef:71:02:6f:da:bb:34:d4:ac:
cc:b5:c1:69:9a:d7:86:01:11:4e:2a:dc:8e:14:70:83:5c:08:
f8:ec:07:03:08:94:4f:32:69:5c:3a:79:98:20:d4:4f:6e:a2:
c5:6f:46:2c:ca:d8:b1:da:e7:88:1d:81:e1:c1:10:8e:65:f9:
1b:18:61:d7:ad:58:95:2e:cc:65:70:ab:fb:b2:52:c4:2e:72:
73:6a:5f:f6:a8:4e:33:59:0c:f4:14:ad:e5:cd:e6:6c:7d:a6:
1f:b0:f1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 04:58:41 2026 by rpki-client