Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/WCuXL5bdayCD-yg2u5cxoFH2Qss.roa
File: WCuXL5bdayCD-yg2u5cxoFH2Qss.roa (raw, json)
Hash identifier: fzizFDGzIYB7cPC/5AvExyYCWu5OSdpEHrHOTtkH4kY=
Subject key identifier: 58:2B:97:2F:96:DD:6B:20:83:FB:28:36:BB:97:31:A0:51:F6:42:CB
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 019E44887F73C4F47E5F04B05DA87E71564C
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/WCuXL5bdayCD-yg2u5cxoFH2Qss.roa
Signing time: Wed 20 May 2026 08:37:36 +0000
ROA not before: Wed 20 May 2026 08:37:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58067
IP address blocks: 80.90.64.0/24 maxlen: 24
176.114.16.0/20 maxlen: 20
176.114.16.0/24 maxlen: 24
176.114.17.0/24 maxlen: 24
176.114.18.0/24 maxlen: 24
176.114.19.0/24 maxlen: 24
176.114.20.0/24 maxlen: 24
176.114.21.0/24 maxlen: 24
176.114.22.0/24 maxlen: 24
176.114.23.0/24 maxlen: 24
176.114.24.0/24 maxlen: 24
176.114.25.0/24 maxlen: 24
176.114.26.0/24 maxlen: 24
176.114.27.0/24 maxlen: 24
176.114.28.0/24 maxlen: 24
176.114.29.0/24 maxlen: 24
176.114.30.0/24 maxlen: 24
176.114.31.0/24 maxlen: 24
2a0b:97c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:44:88:7f:73:c4:f4:7e:5f:04:b0:5d:a8:7e:71:56:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: May 20 08:37:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=582b972f96dd6b2083fb2836bb9731a051f642cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:e4:25:6c:0a:2a:c5:b3:00:d3:8e:0b:c2:a5:
87:50:da:66:67:85:2a:2d:0d:b0:f1:6f:12:01:12:
e9:81:01:e5:56:98:15:e4:94:0d:04:6b:a5:6f:0a:
a1:8b:a7:10:92:5c:3b:8f:2c:97:a1:9a:cb:5f:0a:
94:11:36:3d:08:2b:23:2d:bd:0b:e0:0a:34:3f:ef:
52:ba:29:8c:16:13:71:91:ff:8d:5e:41:e0:94:0f:
7a:24:03:f5:62:ee:46:e6:9f:c0:a8:87:84:6a:77:
c7:bc:93:bd:81:4d:32:80:44:f6:62:bf:13:29:8b:
f5:ee:d2:0c:d7:04:ff:fe:19:de:56:52:6d:07:4e:
59:9a:0a:9b:3c:62:e8:89:c3:ec:86:0b:24:30:ad:
e1:af:d8:96:db:c6:8c:96:24:11:4e:23:1b:7f:98:
6e:55:29:b1:e7:49:e1:61:c7:62:d2:6b:84:74:4c:
2f:40:94:c9:4d:99:74:42:ad:89:d9:d0:d9:5a:12:
64:c4:72:ea:78:5e:23:0b:68:65:9b:c6:fa:11:c4:
30:e1:59:58:65:d8:cf:5c:e8:46:a8:47:57:8f:75:
7c:b7:9a:ca:7d:33:09:85:dd:ea:6e:c2:09:97:a6:
fe:ce:aa:68:59:7f:7b:0c:fd:8d:90:5b:a7:25:b3:
f5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2B:97:2F:96:DD:6B:20:83:FB:28:36:BB:97:31:A0:51:F6:42:CB
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/WCuXL5bdayCD-yg2u5cxoFH2Qss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/24
176.114.16.0/20
IPv6:
2a0b:97c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:e0:9a:57:fe:9d:02:42:16:74:f0:9c:43:a5:78:9b:e2:75:
98:f4:6a:7b:4f:25:80:08:6b:5b:a9:be:cc:bc:ae:0d:c2:04:
30:7b:71:96:4b:c5:c0:25:ca:f1:9c:92:e9:58:c5:26:fa:9e:
61:26:94:ca:00:8a:ca:5d:ec:a1:88:60:0b:d3:85:1a:7e:d5:
53:93:fd:f8:1b:8c:11:ed:bd:b4:5d:5d:8e:9c:8a:2a:5e:b5:
3d:6d:72:d1:cd:b1:47:70:aa:e6:20:db:44:02:e5:ea:ee:8a:
9f:67:4d:c2:cf:62:37:62:be:35:10:16:38:d8:e1:a4:bc:c3:
41:2c:6d:50:c4:ff:07:35:ef:78:23:b1:3f:50:f4:4e:b1:77:
24:d8:f1:de:54:60:a7:46:99:ac:6e:14:91:89:70:98:28:17:
50:5b:84:05:de:f4:21:77:32:6c:d5:5c:e1:30:a9:46:ef:02:
45:bc:20:be:b5:1a:2f:d1:65:47:09:60:c1:ef:56:c6:b6:bb:
2e:ad:0b:1f:80:e2:d9:7b:cb:4b:ab:99:e1:68:e6:08:c9:0c:
d5:f7:da:3d:4d:66:9a:35:5e:0b:95:78:5e:d5:ea:74:64:1d:
ee:a8:97:16:c0:ff:21:1a:24:c3:66:5c:bc:00:b3:03:5e:87:
16:0e:68:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 22:34:38 2026 by rpki-client