Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/108sWP0ra4Q7_JHhu7ui0cxjSEU.roa
File: 108sWP0ra4Q7_JHhu7ui0cxjSEU.roa (raw, json)
Hash identifier: 4TLi2roMPf77ShvCvwCBQg7mxfgw9UERgKNPf/hCVgc=
Subject key identifier: D7:4F:2C:58:FD:2B:6B:84:3B:FC:91:E1:BB:BB:A2:D1:CC:63:48:45
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 019E8D69E1F04605BE933A37443C2666DB14
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/108sWP0ra4Q7_JHhu7ui0cxjSEU.roa
Signing time: Wed 03 Jun 2026 12:16:26 +0000
ROA not before: Wed 03 Jun 2026 12:16:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42473
IP address blocks: 2.57.104.0/24 maxlen: 24
2.57.105.0/24 maxlen: 24
2.57.106.0/24 maxlen: 24
2.57.107.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.235.7.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.84.252.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.101.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
144.208.254.0/24 maxlen: 24
144.208.255.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:5c::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:6c::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1011::/48 maxlen: 48
2a00:11c0:1014::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8d:69:e1:f0:46:05:be:93:3a:37:44:3c:26:66:db:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jun 3 12:16:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d74f2c58fd2b6b843bfc91e1bbbba2d1cc634845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7f:11:29:81:00:f5:1d:13:49:13:16:7b:36:
30:18:7b:ac:fa:ae:00:67:81:31:5d:a8:76:bf:d5:
3c:2d:7b:b7:85:50:ea:a6:c4:10:c2:3c:0d:e0:62:
be:00:aa:cc:f5:95:53:04:91:23:da:3c:08:a1:e5:
9f:23:40:9b:3b:f2:e4:55:02:f8:7e:8a:55:ca:4a:
06:5d:67:51:9c:a1:87:3f:70:6b:0b:41:0f:25:68:
d4:58:12:b7:c4:9b:4f:fb:f3:c0:5f:8a:29:74:a3:
38:aa:df:f6:ec:35:9d:24:ee:90:04:16:4d:f0:7c:
d8:15:d6:d1:c7:97:24:1d:80:13:10:53:f7:c7:2f:
46:56:b0:44:cb:00:70:7c:63:a3:50:c0:02:71:56:
5c:ae:8f:08:8d:54:79:01:5f:80:a4:f3:00:7f:25:
29:95:29:66:f4:7f:e6:98:e7:3a:63:db:0f:c1:ce:
0f:7d:be:3e:02:e9:19:0e:99:b1:c3:cb:96:94:d3:
c4:99:80:a6:6b:ec:5a:69:b1:47:9c:ca:02:d6:01:
ce:2c:bd:dd:a0:30:2d:38:9d:5a:8b:9b:ce:41:8e:
8b:ec:ef:56:44:b8:c9:7d:ea:e9:25:01:18:ba:53:
06:51:42:78:11:89:6a:d1:30:ed:ec:fd:c6:f8:75:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4F:2C:58:FD:2B:6B:84:3B:FC:91:E1:BB:BB:A2:D1:CC:63:48:45
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/108sWP0ra4Q7_JHhu7ui0cxjSEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.104.0/22
37.235.3.0-37.235.5.255
37.235.7.0/24
37.252.224.0/19
45.84.252.0/24
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/23
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
c2:06:f7:59:af:d8:a5:90:02:1d:41:d5:0c:78:ea:e5:6a:99:
4e:e5:6c:d6:c7:44:20:e8:90:b3:12:12:bc:ec:73:80:c1:f1:
93:5a:27:b8:4a:b2:d4:b3:b2:75:8d:8a:7e:bc:49:fc:52:d2:
9b:83:05:7b:85:3d:09:27:03:13:06:98:31:7e:c2:c4:fb:b5:
07:ff:54:5f:9c:94:3a:f1:3c:a5:f7:ae:ae:ce:e6:d0:7f:d8:
5b:dd:80:6b:6b:82:c6:94:38:00:56:58:8f:f8:f9:bd:eb:23:
3b:57:79:e9:85:bf:85:14:90:13:05:4d:11:65:c7:da:16:e7:
c6:4d:6a:57:46:e0:6e:a6:9d:84:5b:4b:67:f6:5a:39:c7:0b:
17:4f:fe:a0:95:54:62:c6:91:10:62:3e:5c:11:da:51:65:3c:
c1:ca:66:32:a6:0f:5b:a0:e4:e6:79:c0:53:ff:86:b3:2d:14:
a9:64:77:35:b1:a9:cd:f6:66:a7:00:d6:8d:a2:2d:cd:82:75:
f6:62:48:4c:fb:66:0e:15:2e:70:36:2a:a9:bf:3c:ec:77:fc:
aa:be:40:fc:e1:72:92:7f:5c:1a:d1:ae:ef:72:a7:dd:f5:6c:
4a:fb:74:30:72:45:b4:e2:4b:e8:c7:74:99:9c:fe:e4:f0:b8:
11:d9:ff:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:41:10 2026 by rpki-client