Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BVPU5IsStVSpD1wP88CHjSyLDJ4.roa
File: BVPU5IsStVSpD1wP88CHjSyLDJ4.roa (raw, json)
Hash identifier: 9E1a6Nc/3wZvITiIKItSIR9EZo3Fm8st+UFgFwEqVy8=
Subject key identifier: 05:53:D4:E4:8B:12:B5:54:A9:0F:5C:0F:F3:C0:87:8D:2C:8B:0C:9E
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019E5F70EE370DF12A4D282D7C12E92D81FB
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BVPU5IsStVSpD1wP88CHjSyLDJ4.roa
Signing time: Mon 25 May 2026 14:01:37 +0000
ROA not before: Mon 25 May 2026 14:01:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214822
IP address blocks: 62.233.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 May 2026 12:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5f:70:ee:37:0d:f1:2a:4d:28:2d:7c:12:e9:2d:81:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 25 14:01:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0553d4e48b12b554a90f5c0ff3c0878d2c8b0c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6b:73:fb:10:26:64:3c:15:fd:5e:52:99:b4:
c4:88:58:93:0e:c3:c8:a5:15:a8:01:de:33:49:18:
07:17:4a:03:a5:52:5f:bf:bb:2e:5d:ae:91:2f:1b:
02:ae:31:45:b6:9d:44:a9:ee:aa:95:08:85:a1:9c:
8a:c5:a2:5d:2a:63:e3:1e:bf:5d:c9:12:bc:75:a2:
22:08:61:cf:8a:0d:d6:f7:cd:e5:e7:25:cc:2f:63:
e5:0e:1e:bd:13:76:2d:e2:a2:a5:1f:86:09:49:ff:
94:61:73:92:5b:cf:ef:37:c0:63:e6:4f:a5:53:b4:
3c:b1:d5:5f:f6:d4:74:66:9b:8a:c9:ff:81:55:6e:
84:6b:fa:9b:11:ab:d2:19:7b:2e:b1:e2:29:c5:3e:
b5:1b:19:8f:45:ca:32:fc:10:9f:ba:b1:a9:82:62:
5b:de:8c:9a:e3:89:49:fd:bb:a3:87:71:57:6b:e8:
80:65:6c:b5:5b:41:5f:b1:e0:e4:e3:2e:dd:0d:95:
bc:17:f1:ae:4f:ce:d6:30:9f:f5:c9:6b:cf:5f:bb:
31:f2:67:eb:40:b2:05:fa:a9:91:66:6c:57:20:77:
b4:b8:5f:bc:4f:bb:cb:24:fa:ed:11:1a:32:f3:84:
4d:90:6f:87:8f:36:ee:08:50:70:6f:65:95:5b:71:
d1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:53:D4:E4:8B:12:B5:54:A9:0F:5C:0F:F3:C0:87:8D:2C:8B:0C:9E
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BVPU5IsStVSpD1wP88CHjSyLDJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.35.0/24
Signature Algorithm: sha256WithRSAEncryption
64:cb:f2:bb:be:1c:3a:6b:a0:65:d7:16:9e:6c:d0:1b:1b:49:
10:58:c7:ba:f2:91:6b:e6:4d:95:00:9c:28:ef:8c:81:68:08:
9e:7a:6f:58:a5:18:8f:7e:f8:ea:6c:df:16:ac:f0:35:38:a5:
05:f8:61:cb:65:d8:d6:09:67:c7:c9:a4:89:67:e1:87:66:90:
ae:2f:b8:40:52:b4:cd:38:e0:b2:08:0a:bd:e1:01:21:96:c8:
0f:41:35:1d:0b:f4:90:29:9e:ee:26:10:f9:c8:36:6f:64:e5:
b3:42:fc:66:2f:20:e1:f3:19:ba:39:60:99:a9:67:65:14:6a:
31:25:d3:a1:30:36:62:8c:28:7b:f6:a2:2b:42:02:50:80:24:
d9:fa:91:f1:c6:86:f1:8e:23:93:c3:99:2a:ea:69:e1:f3:cf:
91:a5:1c:d8:7f:ff:48:cf:f2:77:68:f5:29:35:2e:cf:2c:b8:
c4:1d:5d:8a:b6:80:71:2e:22:0d:ab:e2:5d:f5:8d:2b:b8:b6:
63:2a:fd:fe:0f:b9:21:ba:f8:71:46:86:1b:95:b5:51:41:b5:
82:ac:7a:14:2c:9b:f3:6a:17:7d:89:fd:7e:d5:40:12:eb:78:
f4:85:7c:a8:3c:7e:9d:ff:28:1c:83:27:a4:9c:85:a2:32:3b:
ba:1a:7c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 26 20:46:25 2026 by rpki-client