Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SLzD7OgIvNadnQTmpRzahMqHBe4.roa
File: SLzD7OgIvNadnQTmpRzahMqHBe4.roa (raw, json)
Hash identifier: kN0izNwLCIPDCWi9nFZkNf5+Rqze+wZI3m3pDCuZoDs=
Subject key identifier: 48:BC:C3:EC:E8:08:BC:D6:9D:9D:04:E6:A5:1C:DA:84:CA:87:05:EE
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 019DF1BB7BC032B74D237E62072E3B10C15F
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SLzD7OgIvNadnQTmpRzahMqHBe4.roa
Signing time: Mon 04 May 2026 06:44:49 +0000
ROA not before: Mon 04 May 2026 06:44:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 5.172.36.0/24 maxlen: 24
89.23.91.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
185.157.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 May 2026 14:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f1:bb:7b:c0:32:b7:4d:23:7e:62:07:2e:3b:10:c1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: May 4 06:44:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=48bcc3ece808bcd69d9d04e6a51cda84ca8705ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c6:cf:81:06:81:b7:cc:71:4a:a5:64:3d:95:
29:e9:ff:1e:12:ad:a6:68:38:b9:bb:74:c9:04:1f:
bf:6d:0f:20:0b:32:15:4f:45:69:22:c6:5c:52:e4:
cb:bf:4d:d8:71:a2:52:f9:58:38:d7:56:19:ad:a5:
9a:c2:ad:67:f4:8d:f1:70:ec:be:bf:50:39:ca:cc:
06:64:bb:29:9a:54:42:ce:ee:e8:05:69:bb:93:96:
08:e9:32:6b:43:50:9e:32:c3:cd:7c:65:35:21:3d:
31:75:62:16:8c:cd:21:14:bf:01:b3:08:6d:48:fd:
60:09:f3:20:d6:2d:d4:88:18:3d:de:90:c9:d3:6c:
64:38:46:23:2e:68:35:7e:9a:99:05:96:80:ad:70:
d0:1f:77:b2:32:0c:54:b1:a0:1c:fe:d5:a6:31:bb:
fa:b3:9c:25:1c:4d:1f:a9:43:ce:70:0f:8f:20:87:
2f:27:b9:00:f3:b5:b8:9d:8a:72:2b:36:d1:ba:d0:
a1:74:93:28:fc:da:a2:2d:5f:d8:6c:56:40:be:c0:
84:16:96:c3:8e:46:35:a1:17:bf:d1:1a:c6:7e:93:
3f:1f:65:81:15:6c:68:32:52:76:42:86:a0:2f:fe:
4c:6c:9c:aa:4d:a6:53:0d:3c:5f:ba:0b:25:0e:a0:
12:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:BC:C3:EC:E8:08:BC:D6:9D:9D:04:E6:A5:1C:DA:84:CA:87:05:EE
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SLzD7OgIvNadnQTmpRzahMqHBe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.36.0/24
89.23.91.0/24
178.254.177.0/24
185.157.46.0/24
Signature Algorithm: sha256WithRSAEncryption
19:63:c6:9a:9a:fd:1b:f0:16:c4:61:15:42:a6:4d:1c:4e:20:
e5:df:5b:6f:2c:23:8c:39:fc:62:7f:3a:38:29:ad:89:8d:7b:
16:ca:60:b7:6e:59:50:96:e7:63:79:a8:e5:29:4c:43:94:ba:
7f:06:ec:60:f0:20:2c:ff:41:f4:de:69:21:a8:e2:59:72:96:
c2:29:bf:5f:e2:c9:7c:4d:9b:4a:26:90:60:7f:ab:56:68:3c:
83:08:31:31:a8:f5:ca:cf:2c:d5:89:fa:c1:f0:d4:4a:85:7a:
b3:bf:d3:80:0d:e4:bc:0b:1d:14:9f:2f:b2:d6:e7:23:e7:97:
85:4e:84:16:cc:75:82:fb:27:e6:84:b4:ec:82:98:e6:8f:61:
ba:5c:99:39:09:23:80:4e:9b:08:92:6a:bf:96:72:97:64:98:
bd:a8:d9:02:11:3b:44:ea:5c:d7:0b:a0:7f:27:06:c3:5f:3f:
67:63:f4:0f:0f:6c:ad:71:85:67:cf:2e:32:0b:72:bf:d5:a7:
96:78:d8:56:a5:eb:d8:72:56:5e:ab:fa:2b:7e:fb:97:9e:3b:
a3:86:17:39:e8:72:d3:b9:c2:f2:8a:6f:ef:95:0f:62:2d:89:
0d:79:c7:d4:36:93:d6:fb:cb:16:a3:cf:9b:0c:6c:57:18:1e:
e9:68:71:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 4 19:41:11 2026 by rpki-client