Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Fpj0ED3RNxKf-m2jJEfnJBwEXe0.roa
File: Fpj0ED3RNxKf-m2jJEfnJBwEXe0.roa (raw, json)
Hash identifier: LQcrW3QqPgjQKe416jviFLOWiSCzX3YlNRc+ojtXUZI=
Subject key identifier: 16:98:F4:10:3D:D1:37:12:9F:FA:6D:A3:24:47:E7:24:1C:04:5D:ED
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 019D2E28B3C6CDB8A71C905DDFC57BCE7472
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Fpj0ED3RNxKf-m2jJEfnJBwEXe0.roa
Signing time: Fri 27 Mar 2026 07:18:32 +0000
ROA not before: Fri 27 Mar 2026 07:18:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 5065
IP address blocks: 62.132.16.0/24 maxlen: 24
62.132.17.0/24 maxlen: 24
62.132.18.0/24 maxlen: 24
62.132.19.0/24 maxlen: 24
62.192.110.0/24 maxlen: 24
194.77.44.0/24 maxlen: 24
194.77.45.0/24 maxlen: 24
194.77.66.0/24 maxlen: 24
194.77.67.0/24 maxlen: 24
194.77.128.0/24 maxlen: 24
194.77.129.0/24 maxlen: 24
194.77.134.0/24 maxlen: 24
194.77.135.0/24 maxlen: 24
194.77.150.0/24 maxlen: 24
194.77.151.0/24 maxlen: 24
194.77.216.0/24 maxlen: 24
194.77.217.0/24 maxlen: 24
194.121.104.0/24 maxlen: 24
194.121.105.0/24 maxlen: 24
212.222.22.0/24 maxlen: 24
212.222.23.0/24 maxlen: 24
217.8.216.0/24 maxlen: 24
217.8.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 11:57:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2e:28:b3:c6:cd:b8:a7:1c:90:5d:df:c5:7b:ce:74:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Mar 27 07:18:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1698f4103dd137129ffa6da32447e7241c045ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:6a:8c:66:a3:d2:c6:fd:b2:5d:f6:35:6b:65:
63:5d:ba:5f:6d:09:3a:f1:cc:02:e0:f1:65:b6:be:
65:69:92:fb:d5:9a:0a:aa:e5:a3:92:36:2f:a5:25:
cf:04:99:1f:f6:33:fe:33:51:bb:e3:86:58:b9:4c:
20:3b:6f:c7:f6:89:5d:78:ec:c5:10:02:98:10:94:
0a:47:f7:9b:c6:8a:19:39:6a:cc:a3:9f:b5:24:4a:
05:0a:b1:79:e4:8a:c1:9d:ac:ab:c7:df:29:1a:8a:
4e:ea:72:48:f5:a4:d9:fb:fb:f2:ea:62:96:6b:1a:
18:aa:01:be:15:7e:99:73:d5:74:fb:44:e0:71:c0:
ac:33:8f:31:16:26:b7:1e:0c:c4:57:0e:f0:30:14:
3d:bd:64:50:cf:7b:dd:dc:19:25:0c:df:f7:11:2c:
6d:05:7e:cf:3e:69:94:28:47:db:7e:2b:d7:41:41:
66:fc:b0:12:71:0f:d3:49:69:85:62:71:04:dd:e9:
b4:98:f4:67:ab:06:40:21:e9:ed:94:40:78:13:25:
92:46:f7:a9:7d:e1:46:75:ed:28:a7:7b:a6:01:48:
9d:38:13:5a:f4:e8:83:9e:3c:47:5b:f1:d2:4d:12:
e8:6c:1a:f1:e7:4d:cd:ca:5f:39:96:a0:41:95:ba:
75:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:98:F4:10:3D:D1:37:12:9F:FA:6D:A3:24:47:E7:24:1C:04:5D:ED
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Fpj0ED3RNxKf-m2jJEfnJBwEXe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.132.16.0/22
62.192.110.0/24
194.77.44.0/23
194.77.66.0/23
194.77.128.0/23
194.77.134.0/23
194.77.150.0/23
194.77.216.0/23
194.121.104.0/23
212.222.22.0/23
217.8.216.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:f3:fe:a2:2a:24:d2:9f:0e:ae:e7:34:cd:26:21:42:7a:a0:
b6:c2:d5:ac:ca:46:75:04:96:80:e3:7d:c7:b8:a9:6e:60:8f:
1b:f4:2a:b3:9c:ed:15:6c:39:a2:31:b5:1a:ae:88:a1:fb:03:
dc:e4:c2:21:07:87:59:11:bd:f2:e5:95:04:11:4d:23:5d:da:
9e:83:46:1c:d9:ff:6f:a2:7d:ba:b4:a6:fa:15:42:4f:2f:0d:
b1:7c:88:7c:e7:f9:98:04:42:01:59:ce:59:53:e0:09:66:93:
53:0f:42:22:69:04:a6:c6:d5:d8:3d:a5:02:2b:23:e0:89:50:
24:41:e1:a4:38:59:d7:5a:66:f9:96:c6:9e:81:4c:e2:bd:a2:
a4:d4:b3:72:b2:ee:4b:a1:1c:f6:63:e4:f6:be:1a:bc:b7:2a:
bb:bf:48:8a:0d:ee:4d:b1:93:47:d2:15:fb:ba:e1:a4:9b:cc:
5d:d5:1d:e3:19:a6:c3:c9:14:7c:3a:e0:dd:80:89:c1:29:8f:
cd:35:b8:23:01:ac:ec:95:53:d5:d1:d6:7e:9d:82:3b:f5:70:
d9:1d:31:62:b5:91:ac:d9:a0:cb:00:72:5b:69:51:21:32:6e:
84:d2:ca:27:73:db:4c:64:e3:61:6a:ac:94:2b:54:8b:40:1d:
50:4c:67:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 20:20:45 2026 by rpki-client