Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VfAN9S09pABqfB9cMeYiXt7q8sI.roa
File: VfAN9S09pABqfB9cMeYiXt7q8sI.roa (raw, json)
Hash identifier: v7E2xilHGPZ7CSPB+r+gJnVzdiuYWIADrV68OlR9LAY=
Subject key identifier: 55:F0:0D:F5:2D:3D:A4:00:6A:7C:1F:5C:31:E6:22:5E:DE:EA:F2:C2
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019E5B1053A4E05BA0181B5C4F794D210DD0
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VfAN9S09pABqfB9cMeYiXt7q8sI.roa
Signing time: Sun 24 May 2026 17:37:37 +0000
ROA not before: Sun 24 May 2026 17:37:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44559
IP address blocks: 31.222.248.0/24 maxlen: 24
45.142.39.0/24 maxlen: 24
157.22.0.0/24 maxlen: 24
157.22.1.0/24 maxlen: 24
157.22.2.0/24 maxlen: 24
157.22.3.0/24 maxlen: 24
157.22.4.0/24 maxlen: 24
157.22.5.0/24 maxlen: 24
157.22.6.0/24 maxlen: 24
157.22.7.0/24 maxlen: 24
157.22.8.0/24 maxlen: 24
157.22.9.0/24 maxlen: 24
157.22.10.0/24 maxlen: 24
157.22.11.0/24 maxlen: 24
157.22.12.0/24 maxlen: 24
157.22.13.0/24 maxlen: 24
157.22.14.0/24 maxlen: 24
157.22.15.0/24 maxlen: 24
157.22.20.0/24 maxlen: 24
157.22.21.0/24 maxlen: 24
157.22.22.0/24 maxlen: 24
157.22.23.0/24 maxlen: 24
157.22.24.0/24 maxlen: 24
157.22.25.0/24 maxlen: 24
157.22.26.0/24 maxlen: 24
157.22.27.0/24 maxlen: 24
157.22.28.0/24 maxlen: 24
157.22.29.0/24 maxlen: 24
157.22.30.0/24 maxlen: 24
157.22.31.0/24 maxlen: 24
157.22.32.0/24 maxlen: 24
157.22.33.0/24 maxlen: 24
157.22.34.0/24 maxlen: 24
157.22.35.0/24 maxlen: 24
157.22.36.0/24 maxlen: 24
157.22.37.0/24 maxlen: 24
157.22.38.0/24 maxlen: 24
157.22.39.0/24 maxlen: 24
157.22.40.0/24 maxlen: 24
157.22.42.0/24 maxlen: 24
157.22.43.0/24 maxlen: 24
157.22.48.0/24 maxlen: 24
157.22.49.0/24 maxlen: 24
157.22.51.0/24 maxlen: 24
157.22.52.0/24 maxlen: 24
157.22.53.0/24 maxlen: 24
157.22.54.0/24 maxlen: 24
157.22.55.0/24 maxlen: 24
157.22.56.0/24 maxlen: 24
157.22.57.0/24 maxlen: 24
157.22.59.0/24 maxlen: 24
157.22.60.0/24 maxlen: 24
157.22.61.0/24 maxlen: 24
157.22.62.0/24 maxlen: 24
157.22.63.0/24 maxlen: 24
157.22.64.0/24 maxlen: 24
157.22.65.0/24 maxlen: 24
157.22.66.0/24 maxlen: 24
157.22.67.0/24 maxlen: 24
157.22.68.0/24 maxlen: 24
157.22.69.0/24 maxlen: 24
157.22.70.0/24 maxlen: 24
157.22.71.0/24 maxlen: 24
157.22.76.0/24 maxlen: 24
157.22.77.0/24 maxlen: 24
157.22.78.0/24 maxlen: 24
157.22.79.0/24 maxlen: 24
157.22.80.0/24 maxlen: 24
157.22.81.0/24 maxlen: 24
157.22.82.0/24 maxlen: 24
157.22.83.0/24 maxlen: 24
157.22.84.0/24 maxlen: 24
157.22.85.0/24 maxlen: 24
157.22.86.0/24 maxlen: 24
157.22.87.0/24 maxlen: 24
157.22.88.0/24 maxlen: 24
157.22.89.0/24 maxlen: 24
157.22.90.0/24 maxlen: 24
157.22.91.0/24 maxlen: 24
157.22.92.0/24 maxlen: 24
157.22.93.0/24 maxlen: 24
157.22.94.0/24 maxlen: 24
157.22.95.0/24 maxlen: 24
157.22.96.0/24 maxlen: 24
157.22.98.0/24 maxlen: 24
157.22.99.0/24 maxlen: 24
157.22.104.0/24 maxlen: 24
157.22.105.0/24 maxlen: 24
157.22.107.0/24 maxlen: 24
157.22.108.0/24 maxlen: 24
157.22.109.0/24 maxlen: 24
157.22.110.0/24 maxlen: 24
157.22.111.0/24 maxlen: 24
157.22.112.0/24 maxlen: 24
157.22.113.0/24 maxlen: 24
157.22.114.0/24 maxlen: 24
157.22.115.0/24 maxlen: 24
157.22.117.0/24 maxlen: 24
157.22.118.0/24 maxlen: 24
157.22.119.0/24 maxlen: 24
157.22.120.0/24 maxlen: 24
157.22.121.0/24 maxlen: 24
157.22.122.0/24 maxlen: 24
157.22.123.0/24 maxlen: 24
176.56.37.0/24 maxlen: 24
178.212.143.0/24 maxlen: 24
185.46.175.0/24 maxlen: 24
185.92.211.0/24 maxlen: 24
185.161.79.0/24 maxlen: 24
193.33.66.0/24 maxlen: 24
193.56.29.0/24 maxlen: 24
194.32.238.0/24 maxlen: 24
194.32.239.0/24 maxlen: 24
194.56.180.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 May 2026 12:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5b:10:53:a4:e0:5b:a0:18:1b:5c:4f:79:4d:21:0d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 24 17:37:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=55f00df52d3da4006a7c1f5c31e6225edeeaf2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:31:d0:f5:08:3f:92:53:36:23:2c:28:fc:72:
f5:6d:a4:5b:d4:fe:75:82:b7:a4:09:81:99:21:6d:
9d:ca:a0:ca:99:34:04:71:9d:9f:3d:e9:bd:c9:ec:
01:de:05:59:59:aa:58:22:ff:c4:99:7f:f4:6f:8e:
8f:ee:d8:79:c9:5a:9f:a2:5a:5b:7d:8e:6f:a0:61:
5f:95:66:76:88:a9:ff:26:e7:69:a2:1b:8d:d1:b4:
5d:2e:5a:f8:06:bc:2d:8d:ac:2f:af:ad:85:4f:39:
6b:c2:4e:26:4b:5b:89:03:8f:38:49:a7:9b:36:a7:
ca:8c:b3:d2:95:22:1c:c7:b8:77:0b:ce:ad:e6:c6:
a6:02:ee:b1:9a:4c:5e:f2:24:76:0c:ac:cc:13:02:
37:d1:fd:66:35:2e:3e:d6:46:46:5c:49:66:c3:69:
0f:c3:74:a5:b4:4b:a4:2c:4b:33:c8:b0:96:6e:c9:
05:bb:b2:77:6d:5b:1b:f5:89:c2:6f:88:51:b0:b5:
ae:c8:28:3c:d9:3c:ab:79:07:c0:ae:6b:0b:ba:1c:
5e:43:19:b5:66:31:2f:e5:a2:3c:00:41:a8:c8:ad:
0b:26:4a:56:67:46:50:f2:9f:07:de:5b:e4:71:28:
7a:97:a7:e3:d9:57:e1:c7:c0:41:b5:6c:da:0c:9e:
4f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F0:0D:F5:2D:3D:A4:00:6A:7C:1F:5C:31:E6:22:5E:DE:EA:F2:C2
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/VfAN9S09pABqfB9cMeYiXt7q8sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.248.0/24
45.142.39.0/24
157.22.0.0/20
157.22.20.0-157.22.40.255
157.22.42.0/23
157.22.48.0/23
157.22.51.0-157.22.57.255
157.22.59.0-157.22.71.255
157.22.76.0-157.22.96.255
157.22.98.0/23
157.22.104.0/23
157.22.107.0-157.22.115.255
157.22.117.0-157.22.123.255
176.56.37.0/24
178.212.143.0/24
185.46.175.0/24
185.92.211.0/24
185.161.79.0/24
193.33.66.0/24
193.56.29.0/24
194.32.238.0/23
194.56.180.0/24
195.64.110.0/24
195.96.146.0/24
212.18.103.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a6:9f:b7:7d:e3:cb:fa:b5:17:e0:54:70:8c:ce:01:c0:69:
fc:74:3c:b7:5c:8f:2e:66:cd:5b:50:89:ec:0e:61:4c:de:cc:
96:b9:7a:9b:16:ff:bc:7b:f1:06:91:eb:1f:46:bc:42:92:f7:
57:09:2d:09:ff:2b:0f:50:3a:62:1d:76:0d:23:0e:5b:9d:b0:
0b:a6:ab:57:54:3d:f6:89:47:8e:86:c4:f0:46:63:7f:63:8f:
c7:30:10:f9:55:d5:38:09:c0:bc:56:4a:4f:aa:ea:13:17:4c:
5c:0c:0f:7e:fe:c4:06:1c:56:aa:fa:13:0b:ed:94:35:34:ae:
1e:2b:0d:e2:93:d2:fe:4e:8f:c2:5f:09:b1:06:65:18:ed:8f:
9e:64:36:07:5e:4d:4b:99:61:7a:c7:fd:9a:51:9b:f2:99:df:
69:ee:53:07:12:a1:8f:12:eb:3a:9f:06:f2:e4:54:0f:c6:0d:
2a:75:b2:f0:23:6d:fe:10:a6:63:fb:2a:21:72:c1:fe:8c:2f:
b5:55:5c:74:56:51:b2:93:78:90:e8:7e:c7:ff:b3:83:59:78:
43:73:44:05:8b:2f:22:dd:48:07:18:3b:22:3b:f5:82:2e:87:
f5:04:87:53:be:d6:bc:38:3a:16:6d:1e:8c:7f:7d:fd:c9:bd:
88:ef:bb:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 26 20:47:08 2026 by rpki-client