Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/8TPtZKGHLyqyReIreFs57yVFsKA.roa
File: 8TPtZKGHLyqyReIreFs57yVFsKA.roa (raw, json)
Hash identifier: D+eSUJ+aRsRRqv7Odn+lQ33QLJZuk7A07Qba8y0stiE=
Subject key identifier: F1:33:ED:64:A1:87:2F:2A:B2:45:E2:2B:78:5B:39:EF:25:45:B0:A0
Certificate issuer: /CN=5dd7336fa915721ce3bfee217f4e99164db9532b
Certificate serial: 019DDD1E62993B9585FFD3CA5459F427AABE
Authority key identifier: 5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/8TPtZKGHLyqyReIreFs57yVFsKA.roa
Signing time: Thu 30 Apr 2026 06:40:49 +0000
ROA not before: Thu 30 Apr 2026 06:40:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198605
IP address blocks: 5.62.17.0/24 maxlen: 24
5.62.25.0/24 maxlen: 24
5.62.30.0/24 maxlen: 24
5.62.32.0/24 maxlen: 24
5.62.36.0/23 maxlen: 23
5.62.38.0/23 maxlen: 24
5.62.38.0/24 maxlen: 24
5.62.40.0/23 maxlen: 23
5.62.42.0/23 maxlen: 23
5.62.44.0/23 maxlen: 23
5.62.46.0/23 maxlen: 23
5.62.46.0/24 maxlen: 24
5.62.47.0/24 maxlen: 24
5.62.50.0/24 maxlen: 24
5.62.52.0/24 maxlen: 24
5.62.53.0/24 maxlen: 24
5.62.54.0/24 maxlen: 24
5.62.55.0/24 maxlen: 24
5.62.56.0/23 maxlen: 23
5.62.56.0/24 maxlen: 24
5.62.57.0/24 maxlen: 24
5.62.58.0/23 maxlen: 23
5.62.60.0/23 maxlen: 23
5.62.62.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 18:48:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dd:1e:62:99:3b:95:85:ff:d3:ca:54:59:f4:27:aa:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd7336fa915721ce3bfee217f4e99164db9532b
Validity
Not Before: Apr 30 06:40:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f133ed64a1872f2ab245e22b785b39ef2545b0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:23:df:47:a8:2e:a3:d6:dd:37:a6:a9:03:
e9:be:92:23:40:2e:2e:75:b9:20:df:f0:b6:ad:05:
94:db:cd:27:20:d2:09:1c:b4:2e:a6:ab:25:26:63:
68:cc:1b:2e:0d:c0:db:b6:89:10:23:e4:53:97:f7:
ab:5c:95:a0:05:bc:33:33:50:f0:80:98:69:68:eb:
e9:7c:fc:e7:30:ce:a1:ae:81:13:24:e5:51:12:c8:
3e:78:e0:3d:d3:71:86:b1:59:2d:7c:33:5d:7d:1f:
16:d2:08:bf:3c:4a:32:d5:61:fc:c2:41:f6:76:3d:
35:4e:54:ca:59:f5:0f:ed:fc:45:18:35:6e:90:dc:
40:21:cb:43:6c:35:99:ff:7c:d4:bf:dd:86:19:be:
11:15:1c:c9:24:36:97:8b:20:a6:c2:6e:e0:67:8e:
50:87:fb:c1:78:d0:60:5f:ca:fa:e4:ee:16:a1:2d:
14:ee:5d:fd:cd:40:95:c7:af:6e:9f:54:54:d6:d8:
46:bc:38:b5:f1:ce:24:e7:c9:c8:79:2c:fb:ce:06:
f1:f2:03:a3:8a:c5:ed:a1:aa:71:ff:4f:a8:c9:ce:
11:3a:10:6d:4a:5d:ca:45:24:8c:ce:5f:0e:eb:ab:
1d:7e:3c:36:f7:5e:d8:49:83:a6:b3:aa:24:7a:28:
9a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:33:ED:64:A1:87:2F:2A:B2:45:E2:2B:78:5B:39:EF:25:45:B0:A0
X509v3 Authority Key Identifier:
keyid:5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/8TPtZKGHLyqyReIreFs57yVFsKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.17.0/24
5.62.25.0/24
5.62.30.0/24
5.62.32.0/24
5.62.36.0-5.62.47.255
5.62.50.0/24
5.62.52.0-5.62.63.255
Signature Algorithm: sha256WithRSAEncryption
0b:83:8d:fe:cf:68:dd:39:71:6a:59:91:a2:7d:5e:79:53:b1:
20:a9:c9:82:b0:4b:63:ec:54:10:0f:a3:41:e9:25:b2:e8:a4:
12:ac:06:3b:79:b0:88:f4:15:19:78:a6:6b:34:2b:c7:bc:29:
21:63:a7:06:5e:e9:5c:20:8b:da:2d:53:14:1a:1f:d4:10:4d:
e9:74:75:cb:47:8d:c3:53:90:fd:96:05:bc:3e:eb:68:34:80:
ef:e2:c1:4c:1a:03:cf:9d:24:87:a3:43:65:9a:cd:18:b7:cb:
bf:74:14:af:3f:1a:dd:6c:09:49:7c:35:07:c3:41:01:16:ac:
64:8d:af:78:b7:a7:13:a7:41:32:1f:a9:98:83:a2:ba:2b:c0:
79:9f:7d:bf:b9:59:bd:34:f3:ca:60:5c:c1:25:c9:d9:e8:12:
33:46:b2:5d:0e:cd:e8:79:bf:fa:45:1c:1d:0e:af:79:67:4c:
f8:6d:69:39:2c:0b:33:a5:b3:2d:3d:38:8d:ea:d2:f4:0b:82:
1f:f3:18:aa:a2:0b:5c:b1:66:cf:65:2f:8c:63:27:49:05:b8:
fe:37:9e:a7:49:7d:6a:11:4e:b4:2c:c1:5e:d4:b1:b0:fd:76:
93:8f:9b:d0:19:1b:6b:9d:5b:32:34:7f:db:0c:e1:79:44:32:
48:ec:84:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 02:40:13 2026 by rpki-client