Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/sVJDjJhq6PpPgC3tkCrKbUL2zY4.roa
File: sVJDjJhq6PpPgC3tkCrKbUL2zY4.roa (raw, json)
Hash identifier: tor5JhTFRjiHebCba2vY5qi55/v5lhD35U/5+IqI8sE=
Subject key identifier: B1:52:43:8C:98:6A:E8:FA:4F:80:2D:ED:90:2A:CA:6D:42:F6:CD:8E
Certificate issuer: /CN=a04845af1dc0087b274cee52a4a9e0880335435d
Certificate serial: 019DD33C9934CD62098E8AF6BA8038CA2DB0
Authority key identifier: A0:48:45:AF:1D:C0:08:7B:27:4C:EE:52:A4:A9:E0:88:03:35:43:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oEhFrx3ACHsnTO5SpKngiAM1Q10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/sVJDjJhq6PpPgC3tkCrKbUL2zY4.roa
Signing time: Tue 28 Apr 2026 08:37:37 +0000
ROA not before: Tue 28 Apr 2026 08:37:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 59796
IP address blocks: 178.210.160.0/24 maxlen: 24
178.210.165.0/24 maxlen: 24
178.210.170.0/24 maxlen: 24
178.210.171.0/24 maxlen: 24
178.210.172.0/24 maxlen: 24
178.210.173.0/24 maxlen: 24
178.210.174.0/24 maxlen: 24
178.210.175.0/24 maxlen: 24
178.210.176.0/24 maxlen: 24
178.210.177.0/24 maxlen: 24
178.210.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/oEhFrx3ACHsnTO5SpKngiAM1Q10.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/oEhFrx3ACHsnTO5SpKngiAM1Q10.mft
rsync://rpki.ripe.net/repository/DEFAULT/oEhFrx3ACHsnTO5SpKngiAM1Q10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d3:3c:99:34:cd:62:09:8e:8a:f6:ba:80:38:ca:2d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04845af1dc0087b274cee52a4a9e0880335435d
Validity
Not Before: Apr 28 08:37:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b152438c986ae8fa4f802ded902aca6d42f6cd8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9a:68:37:28:ef:51:68:c3:2e:8f:66:2d:f5:
60:f0:19:f7:06:f5:64:47:61:50:22:a0:59:43:d2:
2a:d4:3e:cc:26:c8:d4:b4:65:af:bf:3c:a1:6c:c6:
27:66:49:02:64:f1:00:f8:a2:99:a5:33:a5:70:f3:
98:52:aa:2c:9a:32:23:79:f4:9f:a6:ab:3b:07:14:
ed:54:e5:74:36:2f:79:00:53:1d:e0:c1:a5:d5:b6:
29:ba:a5:f7:93:a4:48:0d:8a:a2:01:b5:da:c0:4a:
31:8e:1a:c3:0f:a6:1a:7f:b9:d2:bf:8a:32:02:b1:
8f:53:ff:72:33:6f:51:d0:b1:c9:de:32:00:3e:41:
72:10:21:78:4e:8b:05:a7:c2:26:ef:29:b6:fa:28:
21:1f:1a:e2:c2:19:ab:d8:8f:82:74:19:c4:7e:db:
5a:95:17:b5:05:bd:b3:6e:10:fc:cf:9a:a8:b8:de:
29:ec:a5:29:de:98:d8:f4:62:c6:4f:a0:e3:72:97:
1c:3e:d4:57:ba:7d:b6:09:1c:50:4b:94:0c:c4:3f:
1a:04:77:09:2a:a2:f1:51:03:b7:71:34:ad:f5:c8:
25:e8:81:6c:e7:47:13:45:06:8e:ff:35:83:e0:ae:
5c:1c:2c:39:51:ae:83:e5:86:0d:b0:e1:3d:12:b4:
10:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:52:43:8C:98:6A:E8:FA:4F:80:2D:ED:90:2A:CA:6D:42:F6:CD:8E
X509v3 Authority Key Identifier:
keyid:A0:48:45:AF:1D:C0:08:7B:27:4C:EE:52:A4:A9:E0:88:03:35:43:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oEhFrx3ACHsnTO5SpKngiAM1Q10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/sVJDjJhq6PpPgC3tkCrKbUL2zY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/oEhFrx3ACHsnTO5SpKngiAM1Q10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.210.160.0/24
178.210.165.0/24
178.210.170.0-178.210.178.255
Signature Algorithm: sha256WithRSAEncryption
01:3d:e9:34:87:a8:79:a1:48:22:6d:47:6d:63:b1:be:ba:9f:
ff:11:c1:89:b2:54:9a:a8:45:6a:8c:62:f0:c9:0b:c7:d3:1d:
e3:73:47:75:25:90:a7:6c:6d:d0:d9:63:a9:4e:87:20:fa:73:
7d:8a:5c:9a:81:b9:15:87:c6:ea:50:ca:37:14:75:70:23:50:
9c:4d:28:0a:5a:3a:65:f3:ce:a8:ea:d1:17:88:5b:e6:c5:2d:
ce:94:f6:be:e3:39:bb:e1:6a:0e:65:58:8a:08:06:fd:48:9d:
d2:f2:7a:b0:de:58:1a:9b:ad:48:9a:07:51:61:04:36:1b:a1:
89:91:e8:12:52:a3:35:8c:46:38:6d:7f:3f:8d:e3:eb:a4:f7:
76:cd:47:0a:02:2e:4e:b7:ad:07:62:b0:54:12:c3:6b:1e:ef:
2c:9a:fb:63:15:56:55:c7:a4:bf:db:84:dc:71:bd:e0:4a:4b:
14:4d:57:7e:d5:42:cc:5e:98:66:50:01:6f:0b:43:f3:c6:02:
c5:64:78:61:c0:9d:9b:e0:4b:60:7d:c6:36:17:e0:95:0c:cc:
4b:de:88:93:30:f7:e7:54:0c:63:31:82:0b:64:43:6d:84:96:
db:a5:30:f8:81:87:2e:22:66:04:8e:ac:4d:e3:d8:b3:48:70:
ab:3a:67:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 2 19:21:56 2026 by rpki-client