Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/aatid15nJg_ZHnTqc9bbhStxui8.roa
File: aatid15nJg_ZHnTqc9bbhStxui8.roa (raw, json)
Hash identifier: uyHxYZyZlMGakqXvepDoIH+z7/maRvFeBVXUuB8kJyE=
Subject key identifier: 69:AB:62:77:5E:67:26:0F:D9:1E:74:EA:73:D6:DB:85:2B:71:BA:2F
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 019E8F9BC1D27BF9489C545A3F65983CE562
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/aatid15nJg_ZHnTqc9bbhStxui8.roa
Signing time: Wed 03 Jun 2026 22:30:10 +0000
ROA not before: Wed 03 Jun 2026 22:30:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 55933
IP address blocks: 93.177.76.0/24 maxlen: 24
93.177.77.0/24 maxlen: 24
93.187.128.0/22 maxlen: 24
109.206.244.0/22 maxlen: 22
109.206.244.0/23 maxlen: 23
109.206.246.0/23 maxlen: 23
185.239.84.0/22 maxlen: 24
185.239.84.0/23 maxlen: 23
185.239.86.0/23 maxlen: 23
185.239.87.0/24 maxlen: 24
185.242.232.0/22 maxlen: 24
185.242.232.0/23 maxlen: 23
185.242.234.0/23 maxlen: 23
185.245.40.0/22 maxlen: 24
185.245.40.0/23 maxlen: 23
185.245.41.0/24 maxlen: 24
2a0c:f480::/29 maxlen: 29
2a0d:2480::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8f:9b:c1:d2:7b:f9:48:9c:54:5a:3f:65:98:3c:e5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Jun 3 22:30:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69ab62775e67260fd91e74ea73d6db852b71ba2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:53:0c:dd:43:15:f6:15:f8:38:5d:e0:42:07:
3c:8d:b1:7e:44:1c:f4:ee:0d:42:10:ec:1a:0f:9a:
c6:6e:40:08:5d:d1:13:93:e1:c4:e1:a9:a3:1c:34:
32:4d:68:0c:a9:51:72:79:42:eb:b9:91:ed:87:fd:
07:ed:1b:cc:4c:c2:0c:f5:80:39:2b:ea:6d:7d:c5:
c8:32:4f:50:60:b0:f0:2a:63:af:1a:8c:3d:16:c1:
bc:70:e5:89:0a:fe:6c:72:3f:60:20:3a:82:73:11:
d2:4f:8f:d1:12:4f:fe:6a:c8:32:88:d5:fa:a8:d0:
b6:a5:f0:c8:15:cc:aa:6e:1f:6a:6e:3f:27:aa:11:
c4:ab:2b:1f:56:22:ec:77:8f:51:8e:0d:d9:d5:ec:
2d:2e:54:c0:19:f9:07:2c:47:f0:65:a7:a1:fa:5c:
5c:56:bc:2e:0c:b0:3a:58:de:a3:c1:4b:2a:7e:02:
65:20:d0:76:ee:0b:a9:85:2c:64:37:09:96:16:0b:
7d:d4:cd:e7:c7:55:b6:b8:a7:d8:43:30:35:52:ae:
d5:e7:35:7d:64:a5:df:c3:fd:ec:68:ff:59:b6:d5:
29:81:84:87:42:69:48:e1:99:0d:82:11:ba:f5:ad:
b6:48:6b:64:d8:b1:0f:56:39:96:b7:d7:c7:ad:e1:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:AB:62:77:5E:67:26:0F:D9:1E:74:EA:73:D6:DB:85:2B:71:BA:2F
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/aatid15nJg_ZHnTqc9bbhStxui8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.76.0/23
93.187.128.0/22
109.206.244.0/22
185.239.84.0/22
185.242.232.0/22
185.245.40.0/22
IPv6:
2a0c:f480::/29
2a0d:2480::/29
Signature Algorithm: sha256WithRSAEncryption
17:7b:66:d3:43:5a:53:bb:df:9d:e6:f1:dc:cf:db:63:e6:01:
a4:d3:62:40:54:a2:59:73:63:a1:ef:e5:4f:cd:ed:54:84:96:
29:44:a1:41:4a:b7:38:1b:9c:25:5a:26:fd:83:2e:c4:44:9a:
0e:5e:62:ec:f1:e5:9f:e0:c1:ab:72:2a:5a:ba:0d:02:a3:62:
39:da:de:18:4b:bc:2a:1a:99:36:4e:2c:10:58:fc:64:a6:c6:
95:c7:4f:32:55:46:24:55:66:68:dd:55:9c:1e:28:41:ec:b2:
12:8f:2b:0f:64:db:f1:dc:b6:ce:7e:c7:38:c6:2c:8b:a4:a2:
0e:36:9c:d8:ec:06:cd:bc:26:a1:b1:50:30:39:70:8b:f0:de:
24:2f:5f:3e:83:4c:41:0b:45:cb:10:97:e7:50:03:6b:9f:6c:
e4:bc:ef:dd:80:da:a6:17:1a:d1:e5:6c:55:a4:04:f4:fb:28:
33:22:7c:31:0d:8f:66:d5:67:a5:85:26:74:64:02:1c:4d:41:
ae:aa:d2:85:23:27:b2:58:5e:bb:cf:0f:bc:ff:28:6b:9f:0d:
b2:1b:41:6a:2f:54:fc:49:9f:bf:80:d1:85:29:06:54:6b:00:
da:e8:2a:30:91:e5:d7:74:01:a8:f1:cf:68:93:61:ec:24:15:
3a:0a:e0:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 21:37:32 2026 by rpki-client