Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MCMuooaLFNF7c4q5sYjRCleS-UU.roa
File: MCMuooaLFNF7c4q5sYjRCleS-UU.roa (raw, json)
Hash identifier: nvOPrKUbbFQaQCFiq8kVmU3DNUpe7zejYg0tNbPSKgE=
Subject key identifier: 30:23:2E:A2:86:8B:14:D1:7B:73:8A:B9:B1:88:D1:0A:57:92:F9:45
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019DBE561AC8D13AE5FC99B140740A00F1A2
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MCMuooaLFNF7c4q5sYjRCleS-UU.roa
Signing time: Fri 24 Apr 2026 07:13:27 +0000
ROA not before: Fri 24 Apr 2026 07:13:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 273189
IP address blocks: 45.67.246.0/23 maxlen: 23
45.67.246.0/24 maxlen: 24
45.67.247.0/24 maxlen: 24
45.89.82.0/23 maxlen: 23
45.89.82.0/24 maxlen: 24
45.89.83.0/24 maxlen: 24
80.80.90.0/23 maxlen: 23
80.80.90.0/24 maxlen: 24
80.80.91.0/24 maxlen: 24
185.225.246.0/23 maxlen: 23
185.225.246.0/24 maxlen: 24
185.225.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 22:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:be:56:1a:c8:d1:3a:e5:fc:99:b1:40:74:0a:00:f1:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Apr 24 07:13:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=30232ea2868b14d17b738ab9b188d10a5792f945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:4e:11:c7:04:b1:5b:e2:f5:be:f0:0f:58:
4e:9d:ef:f6:e6:d6:51:a8:69:07:92:ae:a5:6e:51:
a6:9b:bc:2d:eb:ad:7a:44:21:4a:69:2c:ba:90:26:
c4:06:06:35:d6:93:ee:6e:2c:96:a1:4b:d6:2f:7d:
29:d0:4c:4f:2d:b0:a8:b6:7d:2a:e4:c1:ad:cb:52:
e8:56:79:93:bc:13:27:41:a7:0c:6d:0d:95:6f:b9:
29:90:74:0f:78:01:ec:48:d1:9d:ee:2c:61:2b:cf:
e6:c0:a7:30:aa:78:9b:1c:37:a5:19:0e:ac:b3:f6:
55:25:27:5e:61:8f:1c:da:aa:41:ba:76:c4:85:b8:
e4:4a:5c:ce:83:dd:18:c8:00:1b:9c:f6:60:17:fc:
e0:29:2f:a3:59:ce:37:a2:14:4c:bf:cd:b0:fc:5f:
7d:02:8c:51:5e:f5:a3:ed:d9:46:6e:e3:64:61:52:
74:17:ca:8c:59:ff:15:d8:ed:ec:d5:bc:b2:40:83:
ac:df:36:a5:90:a7:17:f3:35:a5:2b:f9:d3:dc:c9:
ee:3c:bd:5a:46:41:33:c2:e6:bc:f9:d8:69:3f:6d:
e9:38:9e:c1:90:19:aa:77:77:db:7d:13:5b:fc:36:
f9:19:75:5f:5f:b4:f0:ba:2e:40:5f:a5:14:af:15:
49:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:23:2E:A2:86:8B:14:D1:7B:73:8A:B9:B1:88:D1:0A:57:92:F9:45
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MCMuooaLFNF7c4q5sYjRCleS-UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.246.0/23
45.89.82.0/23
80.80.90.0/23
185.225.246.0/23
Signature Algorithm: sha256WithRSAEncryption
67:08:a6:eb:33:50:67:2c:6f:07:07:6c:65:63:e2:46:71:1e:
8a:02:00:25:1e:da:c0:f6:88:4b:06:ba:dd:f0:21:7f:b3:1b:
ec:4c:f6:91:e9:83:88:f9:0f:18:9f:c0:44:0c:2b:cd:ac:0b:
74:88:34:0c:1f:86:eb:47:e5:09:6f:13:18:20:c2:95:36:7d:
8d:82:3f:a9:b7:aa:f6:0b:30:92:91:67:44:6d:a1:99:ea:e6:
33:89:83:a1:81:a9:5f:9b:3e:8a:bc:f4:33:86:be:78:8b:34:
0f:a8:a9:72:f6:07:77:d9:ff:0d:34:86:7c:3c:bc:a9:f6:2f:
8b:c3:33:5c:12:e5:82:38:f5:60:14:6f:40:83:0a:0a:48:23:
5c:1b:db:58:74:59:8e:3d:f3:8a:23:c0:9e:a1:ee:57:d4:00:
7a:53:33:d1:0c:b6:0a:a2:25:20:19:8b:10:14:fc:ee:79:9a:
6e:7c:80:29:80:df:cf:27:c5:2c:46:6f:cf:7d:b0:63:dd:1f:
04:27:ec:cc:fa:74:28:6d:ec:bd:42:00:99:11:01:4d:71:29:
49:c8:cd:91:9c:fa:e1:53:cf:5b:b7:33:6c:c0:83:23:f1:fa:
05:95:81:c9:e2:96:7c:7b:6c:1d:ea:00:16:fb:08:7d:2f:07:
66:75:d7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 07:13:06 2026 by rpki-client