Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WIKI2L_U-Lo5lsPsrrACrcYzi6w.roa
File: WIKI2L_U-Lo5lsPsrrACrcYzi6w.roa (raw, json)
Hash identifier: uZH5ppbN9PZ2v0VxoyMqXHTkyLUC0gXm2uuSjIeqB38=
Subject key identifier: 58:82:88:D8:BF:D4:F8:BA:39:96:C3:EC:AE:B0:02:AD:C6:33:8B:AC
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019E6FDCE3B00AC777A8D3C6CC31B49F6C57
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WIKI2L_U-Lo5lsPsrrACrcYzi6w.roa
Signing time: Thu 28 May 2026 18:33:27 +0000
ROA not before: Thu 28 May 2026 18:33:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206174
IP address blocks: 2a0d:ad42::/32 maxlen: 32
2a0d:b840::/32 maxlen: 32
2a0d:e240::/32 maxlen: 32
2a11:ec5::/32 maxlen: 32
2a11:b4c2::/32 maxlen: 32
2a12:2801::/32 maxlen: 32
2a12:cf81::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6f:dc:e3:b0:0a:c7:77:a8:d3:c6:cc:31:b4:9f:6c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 28 18:33:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=588288d8bfd4f8ba3996c3ecaeb002adc6338bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:05:fe:f9:4c:5f:ad:af:d0:aa:63:f6:82:65:
6f:1e:20:30:37:f2:8d:2b:ac:4d:e5:97:50:fd:b0:
db:83:1a:cb:b1:f2:66:54:45:07:7d:d9:d6:74:bc:
c4:19:9a:83:c6:92:1f:82:26:ad:50:08:5c:6e:60:
dc:cb:92:9a:78:5f:0d:de:65:02:dc:0a:68:e5:4e:
d2:09:5b:6d:09:9b:b1:31:b3:36:b3:d4:d1:6a:b6:
ef:61:a5:8d:f5:ba:cf:a4:39:33:6a:79:4b:56:30:
8f:96:d7:5a:49:16:73:e7:e2:5e:62:fe:1a:d3:38:
60:12:c6:00:4f:ad:2c:ca:ce:19:ad:87:dc:86:7c:
7e:de:63:8f:39:46:81:af:3b:aa:28:39:80:ba:68:
c5:f0:31:23:d2:79:ea:dd:02:52:a4:fa:36:7b:80:
35:8c:38:87:b4:94:c8:18:05:c6:2a:9e:5f:de:c9:
17:33:10:ac:54:53:3e:c1:77:32:ac:43:9e:9a:cf:
ac:2e:68:c2:24:19:80:81:c5:24:c3:8b:c5:e6:ce:
c5:44:a7:79:d8:36:b0:57:b6:52:7a:30:99:63:f6:
d4:5d:f9:17:31:a7:70:2a:87:de:26:3b:66:e9:cd:
e7:7a:1d:67:c4:c0:be:08:f5:68:09:41:cf:50:99:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:82:88:D8:BF:D4:F8:BA:39:96:C3:EC:AE:B0:02:AD:C6:33:8B:AC
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WIKI2L_U-Lo5lsPsrrACrcYzi6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:ad42::/32
2a0d:b840::/32
2a0d:e240::/32
2a11:ec5::/32
2a11:b4c2::/32
2a12:2801::/32
2a12:cf81::/32
Signature Algorithm: sha256WithRSAEncryption
94:34:f3:9f:24:9b:5e:7b:22:b5:f0:ea:6e:eb:2b:1e:34:b5:
a3:93:7e:fe:fd:89:01:d2:20:a8:7a:ad:25:bf:b1:0d:de:89:
91:e1:4b:7e:29:2b:15:27:1e:d5:37:05:6b:d7:54:b3:0b:de:
71:b6:23:2b:05:a2:1b:a8:f0:23:da:a2:f2:69:56:99:ca:88:
f8:a1:bf:65:04:db:21:90:ac:d1:f9:3d:11:7d:30:04:0d:f2:
be:f2:ff:b8:5c:63:b9:39:71:eb:d6:01:7b:e5:a9:9c:30:b8:
0f:c8:fd:df:a9:b2:2f:0a:15:ba:71:5f:22:7b:73:56:2c:bf:
71:6d:04:5e:03:a5:df:59:f6:da:39:f7:60:bc:c5:b9:84:3f:
ac:ff:9a:ad:af:94:04:6e:d0:7a:54:4a:ab:52:2d:1a:04:4a:
35:20:a6:8e:e7:64:b4:22:a8:1c:ca:61:f2:97:45:60:87:96:
67:80:5a:c3:18:16:62:d6:83:7d:ae:4d:a4:55:75:13:a2:ae:
34:af:4d:29:bd:4c:37:60:5e:54:1c:fd:4c:2e:0c:90:52:71:
22:17:77:e8:a7:cd:f9:75:90:8e:1f:4a:e3:68:24:b9:48:e5:
12:82:ac:59:f5:b4:7b:ea:45:4f:b3:7e:8a:82:a4:df:23:09:
ed:ba:b5:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 09:59:28 2026 by rpki-client