Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/UK_V3N1epsugIkAcmcr5ieNfjeU.roa
File: UK_V3N1epsugIkAcmcr5ieNfjeU.roa (raw, json)
Hash identifier: 4iAgS9C2I2C1YIUY6TIsSDC8YFSx7TeJEyw2cxl8uo0=
Subject key identifier: 50:AF:D5:DC:DD:5E:A6:CB:A0:22:40:1C:99:CA:F9:89:E3:5F:8D:E5
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 019E2D5922D3EA3FAF70E6E6AC49478B94EB
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/UK_V3N1epsugIkAcmcr5ieNfjeU.roa
Signing time: Fri 15 May 2026 20:34:36 +0000
ROA not before: Fri 15 May 2026 20:34:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 3561
IP address blocks: 5.157.164.0/22 maxlen: 22
62.216.64.0/21 maxlen: 21
178.157.64.0/22 maxlen: 22
188.119.144.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2d:59:22:d3:ea:3f:af:70:e6:e6:ac:49:47:8b:94:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: May 15 20:34:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=50afd5dcdd5ea6cba022401c99caf989e35f8de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:85:eb:c5:ef:97:25:b2:ce:20:ba:79:90:
fb:05:1b:44:31:80:a7:14:d0:d8:ef:b9:c1:00:3d:
2a:a6:e6:26:4b:4b:02:68:ca:4f:c9:0f:a1:f9:ba:
09:db:ac:b6:5d:63:dd:94:20:35:78:6c:96:3d:12:
00:16:db:f2:d4:40:15:f9:bb:7d:04:1d:97:65:88:
f7:4f:70:d3:41:9c:8b:3f:e2:bb:7d:f0:e7:bd:0f:
a0:77:89:a3:ba:4a:d0:23:a7:d9:2d:0a:b5:c3:d6:
5d:76:d8:5b:ec:29:9a:8e:9a:db:c5:91:65:63:8a:
62:34:37:d6:63:5c:80:c9:43:a7:3e:e7:91:a3:6b:
a1:32:a1:2b:fb:28:5f:59:ef:3c:58:e5:b0:81:f6:
36:95:e0:71:2b:4b:ac:d0:04:8d:c7:34:8d:b3:21:
d8:b0:19:ca:54:cd:53:b4:e2:4f:6b:1a:3c:3b:04:
4d:ec:a4:f6:d6:7e:82:f9:74:06:38:0c:4f:b5:8e:
19:b7:7a:02:34:20:25:fb:c4:ef:61:b3:57:f2:75:
8d:50:f9:47:50:10:8b:75:bd:d3:61:bc:f4:a7:fb:
aa:10:43:28:5e:11:e8:f0:39:27:3e:e3:f3:e8:a6:
a9:7e:b1:85:7b:73:a2:ee:20:fa:ab:ad:d3:4a:ed:
74:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:AF:D5:DC:DD:5E:A6:CB:A0:22:40:1C:99:CA:F9:89:E3:5F:8D:E5
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/UK_V3N1epsugIkAcmcr5ieNfjeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.164.0/22
62.216.64.0/21
178.157.64.0/22
188.119.144.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:3f:72:9c:17:9e:b5:c4:46:73:59:a1:30:15:df:1e:9e:a9:
3c:9b:bb:45:48:53:34:e3:32:63:f7:8d:26:8f:d1:2c:d1:c0:
bc:a1:71:41:0a:45:b6:d1:6a:ae:b2:38:20:66:8c:20:e2:b8:
f7:0c:6d:2a:83:13:b6:1d:bc:0b:b4:cc:a2:ef:c4:d0:90:a7:
99:ef:d9:01:74:99:ab:b1:74:cf:10:47:20:17:d2:71:23:0d:
58:4b:fa:01:4a:c4:e0:d7:67:0f:09:57:00:8a:40:a1:9f:c2:
8a:10:1e:9d:95:96:32:67:c6:c3:eb:43:c5:42:76:2a:90:57:
9a:c2:55:a5:74:20:26:3e:6f:49:1a:c6:d5:62:48:c0:6d:f3:
37:73:e5:32:5a:5c:b6:72:c3:03:53:aa:69:eb:d6:66:60:c1:
66:e0:8f:f1:42:1f:10:cc:7b:9b:07:21:51:33:91:7e:7a:69:
43:55:27:cc:3a:65:4c:a8:19:81:9e:40:e4:91:41:97:76:61:
c6:b0:5d:37:a8:de:35:08:b1:f8:f0:09:02:2f:1a:6a:56:fc:
87:89:8b:e7:b7:ae:61:ab:24:34:53:4d:04:17:52:10:a9:8e:
6b:9e:6d:98:55:6e:1a:69:d3:69:ed:d7:04:2d:8e:e1:2b:e1:
24:59:2a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 14:06:04 2026 by rpki-client