Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/WB_QiMCPBSDT4gyBnSxvd5V8zUM.roa
File: WB_QiMCPBSDT4gyBnSxvd5V8zUM.roa (raw, json)
Hash identifier: cJAZyTYQPLNebUVklQlhjNS4ZQZrxkQAHjPLhRU4/YA=
Subject key identifier: 58:1F:D0:88:C0:8F:05:20:D3:E2:0C:81:9D:2C:6F:77:95:7C:CD:43
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019E831EFFFCD6EF9700AA08C3DFFBF60544
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/WB_QiMCPBSDT4gyBnSxvd5V8zUM.roa
Signing time: Mon 01 Jun 2026 12:18:27 +0000
ROA not before: Mon 01 Jun 2026 12:18:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20724
IP address blocks: 80.244.13.0/24 maxlen: 24
91.227.62.0/24 maxlen: 24
93.95.24.0/24 maxlen: 24
185.244.104.0/24 maxlen: 24
195.182.25.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jun 2026 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:83:1e:ff:fc:d6:ef:97:00:aa:08:c3:df:fb:f6:05:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jun 1 12:18:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=581fd088c08f0520d3e20c819d2c6f77957ccd43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:64:11:42:1e:de:18:78:67:1d:df:e1:6b:af:
57:8c:90:2f:84:37:78:09:a5:2e:1a:80:25:7c:ba:
36:67:43:d1:4c:e4:e8:1e:f1:1f:e1:46:d9:dc:89:
79:e9:02:46:56:b2:d5:47:80:18:9b:ce:8d:f6:b7:
c6:b4:e6:59:99:86:7c:e5:a8:76:51:5b:d1:c1:58:
c6:2d:dc:6a:48:1e:45:37:96:d2:e3:0d:c6:7b:22:
3d:6c:8f:e2:dc:c8:54:51:26:01:80:dc:98:e5:79:
ae:3d:90:c5:6f:a1:17:c9:1a:9e:56:6f:d9:e5:09:
7c:f1:8f:96:f3:76:ee:8c:92:19:f0:ae:b9:81:65:
42:f6:05:e1:70:4d:79:6c:ce:ed:e9:da:03:38:8c:
de:bf:6b:cf:4c:8b:e0:3a:47:6d:8b:75:6c:b3:dd:
23:80:6b:9b:9c:a9:67:52:02:8b:fa:51:59:31:32:
32:4c:b6:9b:1c:8c:72:a9:f6:2d:8d:83:86:b6:ab:
0a:53:fc:37:a3:e1:75:56:61:15:55:63:8e:da:d2:
d7:1a:08:d7:b3:12:84:85:c5:4d:cd:73:67:a6:60:
ee:6c:b4:02:fb:aa:79:67:01:0c:cc:a3:87:10:e3:
02:6c:87:6e:cf:e7:8e:5b:3e:46:fd:ed:d5:7f:1d:
e8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1F:D0:88:C0:8F:05:20:D3:E2:0C:81:9D:2C:6F:77:95:7C:CD:43
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/WB_QiMCPBSDT4gyBnSxvd5V8zUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.13.0/24
91.227.62.0/24
93.95.24.0/24
185.244.104.0/24
195.182.25.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
60:84:d5:dc:5b:13:ca:d3:cd:bd:0d:08:78:a6:17:43:ed:aa:
b3:45:0c:11:c9:01:5f:bf:de:6c:99:b3:4f:44:e0:77:60:2f:
56:0e:f4:c3:65:53:1b:17:dd:fa:2d:2d:7c:1a:77:0f:3c:6b:
27:98:60:7b:cb:5d:6e:e3:c2:5f:2b:18:43:5f:66:94:76:86:
16:6f:45:d9:47:bb:9a:c8:80:46:9f:c3:42:f3:11:47:fa:26:
94:6f:16:39:4c:90:74:2c:5e:08:f0:c9:98:1a:52:2e:b6:25:
33:03:a1:0b:c5:70:8b:c0:e9:9f:b7:83:63:97:86:df:65:b6:
fe:fe:0c:53:2f:be:1d:6b:1f:ad:13:58:ee:ac:e6:6e:ec:8b:
84:a4:cc:28:33:01:01:a2:35:1b:15:55:50:9e:1e:85:da:01:
47:2b:5c:8e:07:ae:77:3a:ee:61:09:41:f3:10:ba:f7:0d:3d:
4c:6c:6d:48:cd:54:5c:c2:14:c6:58:53:82:e0:5c:79:80:a9:
56:fe:02:67:7f:bb:d9:37:4a:63:70:4f:67:82:ff:e1:b3:4d:
3c:e3:3a:e1:59:7b:45:3c:e5:ad:a9:44:ff:9c:78:08:f2:63:
13:12:e3:6f:a8:2c:78:b6:c4:b3:a0:a9:9d:83:1e:7f:ab:a0:
2d:c9:3f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 1 17:14:00 2026 by rpki-client