Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/AmojMy3O0TzhYdnqQ_foiNeMfu0.roa
File: AmojMy3O0TzhYdnqQ_foiNeMfu0.roa (raw, json)
Hash identifier: NeSi6ZBMXloVln9cQN9LXVSt3sMQcF7jHdMdqk0HF3M=
Subject key identifier: 02:6A:23:33:2D:CE:D1:3C:E1:61:D9:EA:43:F7:E8:88:D7:8C:7E:ED
Certificate issuer: /CN=4b70cb0a5e3a4e53089b51de9a370a5f233874c6
Certificate serial: 019E401FA70CB6FCCE629B6A7512692A8B9C
Authority key identifier: 4B:70:CB:0A:5E:3A:4E:53:08:9B:51:DE:9A:37:0A:5F:23:38:74:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3DLCl46TlMIm1HemjcKXyM4dMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/AmojMy3O0TzhYdnqQ_foiNeMfu0.roa
Signing time: Tue 19 May 2026 12:04:36 +0000
ROA not before: Tue 19 May 2026 12:04:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 19905
IP address blocks: 163.62.72.0/21 maxlen: 24
163.62.80.0/22 maxlen: 24
163.62.92.0/22 maxlen: 24
163.62.96.0/21 maxlen: 24
163.62.112.0/22 maxlen: 24
163.62.116.0/24 maxlen: 24
163.62.118.0/23 maxlen: 24
163.62.120.0/21 maxlen: 24
163.62.128.0/23 maxlen: 24
163.62.132.0/22 maxlen: 24
163.62.240.0/20 maxlen: 24
163.114.20.0/22 maxlen: 24
163.116.0.0/21 maxlen: 24
163.116.8.0/22 maxlen: 24
192.54.192.0/23 maxlen: 24
192.196.12.0/23 maxlen: 24
192.196.36.0/22 maxlen: 24
192.196.40.0/22 maxlen: 24
192.196.70.0/23 maxlen: 24
192.196.72.0/23 maxlen: 24
192.196.90.0/23 maxlen: 24
192.196.92.0/23 maxlen: 24
192.196.98.0/23 maxlen: 24
192.196.114.0/23 maxlen: 24
192.196.118.0/23 maxlen: 24
192.196.120.0/22 maxlen: 24
192.196.124.0/23 maxlen: 24
192.196.140.0/22 maxlen: 24
192.196.140.0/24 maxlen: 24
192.196.148.0/23 maxlen: 24
2a00:7e40::/36 maxlen: 48
2a00:7e40:7000::/64 maxlen: 64
2a00:7e40:9ac1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/S3DLCl46TlMIm1HemjcKXyM4dMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/S3DLCl46TlMIm1HemjcKXyM4dMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/S3DLCl46TlMIm1HemjcKXyM4dMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 06:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:1f:a7:0c:b6:fc:ce:62:9b:6a:75:12:69:2a:8b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b70cb0a5e3a4e53089b51de9a370a5f233874c6
Validity
Not Before: May 19 12:04:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=026a23332dced13ce161d9ea43f7e888d78c7eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:48:32:e7:5f:b9:84:e9:0b:58:9e:58:62:2b:
e2:f9:8c:46:8f:f8:90:8f:0d:50:4e:0f:32:99:98:
c7:ce:ab:9f:66:42:10:dd:92:99:e3:59:4a:90:48:
34:0a:4d:0f:65:ec:f2:ca:b4:56:06:5d:31:c9:27:
3b:5c:e0:74:af:15:08:47:a0:ea:47:ae:8d:e7:8d:
a4:73:2c:f5:50:2d:0d:96:20:08:ba:3b:98:47:37:
94:8b:a4:40:24:4f:fe:c5:5c:ba:aa:b9:16:81:ea:
99:3e:04:3d:d3:83:46:b7:d8:70:40:a4:cd:8c:3e:
4c:66:c5:ed:49:22:35:84:00:c0:04:b6:a0:48:d8:
47:e0:19:17:76:0d:b1:e1:0a:8e:c0:d0:8a:76:75:
3e:01:f7:7e:d6:ad:f9:db:b0:90:72:5a:c7:0f:a6:
57:4e:db:6e:e8:85:40:48:4a:9f:87:6c:b8:0b:50:
98:36:f2:f0:05:47:ca:20:ca:34:07:cf:b7:ad:33:
2c:ad:03:17:81:4f:3b:ab:4d:f5:96:65:3a:da:77:
41:26:8f:7e:ec:98:af:3e:e4:46:21:e6:2d:52:ec:
f5:8d:c7:7b:11:3c:7e:c2:db:7c:fc:5a:78:c1:e3:
56:a6:da:27:b5:b4:c9:0a:ad:e7:4b:92:3e:a3:56:
ea:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6A:23:33:2D:CE:D1:3C:E1:61:D9:EA:43:F7:E8:88:D7:8C:7E:ED
X509v3 Authority Key Identifier:
keyid:4B:70:CB:0A:5E:3A:4E:53:08:9B:51:DE:9A:37:0A:5F:23:38:74:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3DLCl46TlMIm1HemjcKXyM4dMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/AmojMy3O0TzhYdnqQ_foiNeMfu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/04e22e-e555-4ece-85cf-ce59522ef66f/1/S3DLCl46TlMIm1HemjcKXyM4dMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.62.72.0-163.62.83.255
163.62.92.0-163.62.103.255
163.62.112.0-163.62.116.255
163.62.118.0-163.62.129.255
163.62.132.0/22
163.62.240.0/20
163.114.20.0/22
163.116.0.0-163.116.11.255
192.54.192.0/23
192.196.12.0/23
192.196.36.0-192.196.43.255
192.196.70.0-192.196.73.255
192.196.90.0-192.196.93.255
192.196.98.0/23
192.196.114.0/23
192.196.118.0-192.196.125.255
192.196.140.0/22
192.196.148.0/23
IPv6:
2a00:7e40::/36
2a00:7e40:7000::/64
2a00:7e40:9ac1::/48
Signature Algorithm: sha256WithRSAEncryption
2a:89:16:6c:b2:b7:0a:7b:26:17:22:08:2d:87:ca:61:72:e0:
61:6a:d0:b5:41:2d:cb:1f:2b:ad:95:c0:ee:b1:04:c9:2f:24:
4d:25:5f:4b:13:28:95:65:58:f3:28:81:c1:52:72:e6:2f:13:
17:b7:73:23:13:d3:f6:70:4a:b4:4d:69:67:87:0c:6d:e1:c7:
f7:6f:73:f2:fd:65:e9:30:05:a0:43:9b:46:0d:d8:64:e1:7a:
b0:31:e6:6d:b7:56:65:99:96:ed:83:7e:1f:0f:31:56:72:09:
a4:a1:c2:99:64:e5:0c:d5:d6:af:e1:38:11:c2:6c:fc:ae:75:
df:0e:de:09:49:3f:03:3b:66:41:df:de:7c:b2:fb:5c:ea:65:
b8:05:06:57:4f:aa:16:e5:6e:27:24:a9:63:73:33:66:8a:14:
d4:ff:ea:50:12:82:4a:f3:cd:95:14:92:24:d1:03:f8:6c:71:
42:c3:8d:98:7a:7a:00:f9:0c:f0:c0:95:b1:37:7c:2e:c3:2f:
e1:59:7d:0e:fb:ba:6e:b7:0a:8f:3e:7e:b5:29:bd:df:2c:03:
68:cc:9b:e3:59:c8:7d:ab:7f:f7:97:6f:11:c4:21:e8:bf:3c:
60:8c:d6:b7:91:6d:e4:55:c8:b1:27:d3:4f:4b:f6:6d:bd:00:
cb:d0:68:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 11:18:31 2026 by rpki-client