Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/VXxfew8j18uPdFss96dcXgCc7sg.roa
File: VXxfew8j18uPdFss96dcXgCc7sg.roa (raw, json)
Hash identifier: qrRIRwT5QjtxTKRKL4FKUODIVhDtXYDQzfU4y4rIn04=
Subject key identifier: 55:7C:5F:7B:0F:23:D7:CB:8F:74:5B:2C:F7:A7:5C:5E:00:9C:EE:C8
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 019E3B664CC9E8E214A992BFAB7127C939DD
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/VXxfew8j18uPdFss96dcXgCc7sg.roa
Signing time: Mon 18 May 2026 14:03:40 +0000
ROA not before: Mon 18 May 2026 14:03:40 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216139
IP address blocks: 176.98.184.0/24 maxlen: 24
176.98.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3b:66:4c:c9:e8:e2:14:a9:92:bf:ab:71:27:c9:39:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: May 18 14:03:40 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=557c5f7b0f23d7cb8f745b2cf7a75c5e009ceec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b6:21:73:b5:33:a3:6e:08:bb:65:a8:2b:3d:
d9:35:d8:b1:fa:8d:15:56:5f:ac:48:16:fb:cf:48:
f4:1f:58:ab:77:db:6f:6b:1f:42:8b:7a:37:53:8d:
3d:2d:a8:24:80:ab:f3:29:d6:be:23:06:82:b1:fd:
e7:a1:9b:d6:a5:5c:47:62:bf:cb:fc:30:af:ca:aa:
51:31:45:03:04:28:e8:82:df:15:04:af:8c:0a:6e:
73:c4:10:24:48:e5:af:24:f0:56:5d:44:0e:b1:6b:
93:67:4b:2c:58:5e:34:f6:dd:44:21:b1:9a:3b:7b:
90:67:84:6a:76:bc:9b:67:5c:57:50:28:f2:60:2e:
f4:4f:2b:7d:ec:0f:e5:b2:37:2f:c0:43:de:5f:ce:
9b:8b:8a:09:3c:7b:5a:67:99:0f:7b:c0:23:10:bc:
71:b1:64:d8:8b:aa:2e:4b:38:67:50:6d:a0:5f:a2:
bb:4b:de:f5:9e:d8:ef:1f:cc:0c:2d:43:c2:60:d0:
a5:65:8d:39:d0:8e:55:e8:97:8a:35:a9:93:f2:d5:
ee:e8:7c:3b:31:66:37:42:a3:32:20:ed:e5:d6:b6:
d5:04:ad:3a:8b:65:fe:24:8c:62:11:7b:11:21:8f:
fc:6b:3c:5b:32:60:73:16:92:c8:36:42:94:54:1d:
cf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:7C:5F:7B:0F:23:D7:CB:8F:74:5B:2C:F7:A7:5C:5E:00:9C:EE:C8
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/VXxfew8j18uPdFss96dcXgCc7sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.184.0/23
Signature Algorithm: sha256WithRSAEncryption
28:87:4c:16:7e:aa:64:2b:21:4b:cd:f5:a4:da:d8:3c:64:e4:
a7:b8:c0:d8:41:cb:3e:4b:91:8f:0d:7c:5a:a0:77:df:40:9a:
e9:1c:8a:36:77:5e:08:13:b5:20:72:90:5f:66:43:98:39:93:
a3:12:34:5b:9e:62:3d:5f:2b:fa:66:3d:81:11:f2:c1:94:c7:
a6:06:cb:95:3a:25:b8:e5:2a:db:b1:44:0e:98:c0:d0:5b:30:
79:2e:62:d8:0d:29:55:87:a0:13:5f:66:2d:45:27:5f:2c:cc:
a0:7a:09:90:40:d4:e3:65:6a:91:3b:2a:c5:89:7f:7d:ff:8e:
0f:00:52:2d:ab:05:74:cd:f2:94:05:c2:c3:cf:5f:2a:3b:9f:
66:0e:6c:31:33:ca:9f:2c:b5:53:51:d6:97:65:4d:8b:31:5a:
2b:eb:a5:2b:cc:5a:f8:af:bf:5b:ff:1d:ef:fd:0f:86:01:0e:
f2:e9:c6:53:4c:1d:00:75:97:50:cf:5d:84:7a:0f:e0:12:c1:
7d:28:13:3e:5f:38:d5:6c:ea:1a:48:2c:4b:9d:83:05:ef:4c:
89:89:50:3c:b4:b8:42:75:87:8f:06:87:6f:46:2a:36:12:64:
8d:58:9b:3f:2d:df:30:d8:c6:cd:1e:99:43:8f:e4:d8:7d:68:
2f:3e:0e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 20:06:14 2026 by rpki-client