Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/lYt4DFfegeY6kX95tBgC3KVg5q8.roa
File: lYt4DFfegeY6kX95tBgC3KVg5q8.roa (raw, json)
Hash identifier: bEOFUEDLGBQ2u4IKEUROQygsHO4jTV8/hosvv/Vn9W0=
Subject key identifier: 95:8B:78:0C:57:DE:81:E6:3A:91:7F:79:B4:18:02:DC:A5:60:E6:AF
Certificate issuer: /CN=ae37cf4b1fd4ce56788ed80b7a2e11c61b456ab4
Certificate serial: 019E3B437359584B48F78A579423435FF8E0
Authority key identifier: AE:37:CF:4B:1F:D4:CE:56:78:8E:D8:0B:7A:2E:11:C6:1B:45:6A:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjfPSx_UzlZ4jtgLei4RxhtFarQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/lYt4DFfegeY6kX95tBgC3KVg5q8.roa
Signing time: Mon 18 May 2026 13:25:36 +0000
ROA not before: Mon 18 May 2026 13:25:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 29657
IP address blocks: 194.5.90.0/23 maxlen: 23
194.5.90.0/24 maxlen: 24
194.5.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/rjfPSx_UzlZ4jtgLei4RxhtFarQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/rjfPSx_UzlZ4jtgLei4RxhtFarQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjfPSx_UzlZ4jtgLei4RxhtFarQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3b:43:73:59:58:4b:48:f7:8a:57:94:23:43:5f:f8:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae37cf4b1fd4ce56788ed80b7a2e11c61b456ab4
Validity
Not Before: May 18 13:25:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=958b780c57de81e63a917f79b41802dca560e6af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:22:01:22:df:7d:34:ae:68:aa:33:88:80:c0:
a5:71:35:a7:20:48:42:7b:98:38:15:49:7c:52:1d:
0b:24:c9:7f:37:da:04:e3:91:79:e6:1b:2b:81:f9:
90:86:b7:f7:4f:cb:3f:df:78:5a:f2:79:9d:f0:6c:
5d:e5:70:2a:7f:82:e7:48:00:05:c8:c3:0d:6b:ab:
fb:91:f7:d0:06:be:47:aa:2f:5a:79:50:df:fb:c4:
34:13:40:fc:19:c6:c4:92:6d:a5:1e:e7:b8:d8:74:
9a:dc:fc:df:02:74:a9:91:2e:33:7f:98:ef:5e:b2:
06:af:01:93:19:6a:4a:e3:8a:5e:b2:97:54:54:30:
95:66:bb:30:45:b3:05:fa:4b:26:5f:9f:2b:a8:53:
05:e9:a4:e5:34:f2:e5:f5:a2:48:e0:ca:00:11:96:
4f:13:96:44:0c:9b:9e:b6:1d:c5:38:60:99:9c:bd:
4a:3c:8b:86:79:66:cd:6a:d0:cf:d4:52:03:5b:c3:
af:c4:4d:02:db:87:05:a8:16:af:49:86:28:f3:52:
22:ee:d6:0d:78:32:07:03:84:2d:22:d3:d1:6d:4e:
01:54:e8:8c:21:cb:0b:4f:72:ea:7c:04:fb:a6:9b:
ac:6b:93:55:4b:ca:07:85:48:84:77:db:4a:e3:05:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8B:78:0C:57:DE:81:E6:3A:91:7F:79:B4:18:02:DC:A5:60:E6:AF
X509v3 Authority Key Identifier:
keyid:AE:37:CF:4B:1F:D4:CE:56:78:8E:D8:0B:7A:2E:11:C6:1B:45:6A:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjfPSx_UzlZ4jtgLei4RxhtFarQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/lYt4DFfegeY6kX95tBgC3KVg5q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/2c53bd-4a19-4428-b550-1ea2a8ea1543/1/rjfPSx_UzlZ4jtgLei4RxhtFarQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.90.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:ab:6d:a5:b3:be:17:c3:4a:3b:75:1e:f1:e7:22:5b:a7:6c:
b9:80:e1:e9:d4:5c:1d:9f:ee:40:ad:79:4c:16:be:f5:df:6c:
5c:20:0c:a4:fc:c2:8e:c0:fe:d8:07:d1:86:58:18:93:9b:7f:
f3:0a:1f:35:3e:ec:08:4f:81:75:ca:5c:35:5c:2b:60:23:71:
ce:b4:af:60:fa:58:60:60:a4:2b:1c:b2:10:fd:aa:9a:4e:8e:
52:c3:5b:9e:e6:a7:2e:81:8d:07:dd:a2:ed:6e:20:ea:68:94:
8a:93:78:0f:25:e5:29:27:df:6e:52:12:0a:6c:f3:0c:3d:ac:
11:0e:d3:80:91:a5:b4:3a:87:0f:e5:08:1c:fd:19:a7:c7:49:
b5:d0:95:98:77:cc:04:40:b4:1b:5f:a6:a5:8a:00:cb:ef:de:
31:97:b9:42:36:54:28:c4:50:3a:35:24:3f:b2:85:9d:80:20:
10:c2:a1:4a:9a:ff:06:97:a3:b3:a9:f5:35:07:3d:8c:8e:ec:
72:26:86:df:89:9d:4f:3d:59:f2:b9:1f:e2:15:cc:67:f7:45:
3a:51:5a:85:c1:a0:9e:18:8b:ff:b0:cd:78:99:7c:a7:4e:15:
c3:bd:3b:1a:69:96:1d:62:54:e9:26:33:ef:7a:77:d5:c0:68:
40:3e:f0:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ47Q3NZWEtI94pXlCNDX/jgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMzdjZjRiMWZkNGNlNTY3ODhlZDgwYjdhMmUxMWM2MWI0
NTZhYjQwHhcNMjYwNTE4MTMyNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NThiNzgwYzU3ZGU4MWU2M2E5MTdmNzliNDE4MDJkY2E1NjBlNmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6SIBIt99NK5oqjOIgMClcTWnIEhC
e5g4FUl8Uh0LJMl/N9oE45F55hsrgfmQhrf3T8s/33ha8nmd8Gxd5XAqf4LnSAAF
yMMNa6v7kffQBr5Hqi9aeVDf+8Q0E0D8GcbEkm2lHue42HSa3PzfAnSpkS4zf5jv
XrIGrwGTGWpK44pespdUVDCVZrswRbMF+ksmX58rqFMF6aTlNPLl9aJI4MoAEZZP
E5ZEDJueth3FOGCZnL1KPIuGeWbNatDP1FIDW8OvxE0C24cFqBavSYYo81Ii7tYN
eDIHA4QtItPRbU4BVOiMIcsLT3LqfAT7ppusa5NVS8oHhUiEd9tK4wVc3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJWLeAxX3oHmOpF/ebQYAtylYOavMB8GA1UdIwQY
MBaAFK43z0sf1M5WeI7YC3ouEcYbRWq0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmpmUFN4X1V6bFo0anRnTGVpNFJ4aHRGYXJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8yYzUzYmQtNGExOS00NDI4LWI1NTAt
MWVhMmE4ZWExNTQzLzEvbFl0NERGZmVnZVk2a1g5NXRCZ0MzS1ZnNXE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8yYzUzYmQtNGExOS00NDI4LWI1NTAtMWVhMmE4ZWExNTQz
LzEvcmpmUFN4X1V6bFo0anRnTGVpNFJ4aHRGYXJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwgVaMA0G
CSqGSIb3DQEBCwUAA4IBAQBMq22ls74Xw0o7dR7x5yJbp2y5gOHp1Fwdn+5ArXlM
Fr7132xcIAyk/MKOwP7YB9GGWBiTm3/zCh81PuwIT4F1ylw1XCtgI3HOtK9g+lhg
YKQrHLIQ/aqaTo5Sw1ue5qcugY0H3aLtbiDqaJSKk3gPJeUpJ99uUhIKbPMMPawR
DtOAkaW0OocP5Qgc/Rmnx0m10JWYd8wEQLQbX6aligDL794xl7lCNlQoxFA6NSQ/
soWdgCAQwqFKmv8Gl6OzqfU1Bz2MjuxyJobfiZ1PPVnyuR/iFcxn90U6UVqFwaCe
GIv/sM14mXynThXDvTsaaZYdYlTpJjPvenfVwGhAPvA3
-----END CERTIFICATE-----
Generated at Thu Jun 4 12:21:42 2026 by rpki-client