Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/WW6N0nsC2pVQw7M3pHrlWJbBGXw.roa
File: WW6N0nsC2pVQw7M3pHrlWJbBGXw.roa (raw, json)
Hash identifier: XS90Xu8sWkUM1Fcl71wR/SDIDYfHwCcW1jjcYUuog9M=
Subject key identifier: 59:6E:8D:D2:7B:02:DA:95:50:C3:B3:37:A4:7A:E5:58:96:C1:19:7C
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0199DF115221A1E669238DB6CFC6B35DF383
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/WW6N0nsC2pVQw7M3pHrlWJbBGXw.roa
Signing time: Mon 13 Oct 2025 19:34:38 +0000
ROA not before: Mon 13 Oct 2025 19:34:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199967
IP address blocks: 5.154.254.0/24 maxlen: 24
5.154.255.0/24 maxlen: 24
5.157.130.0/24 maxlen: 24
5.157.131.0/24 maxlen: 24
37.35.40.0/24 maxlen: 24
37.35.41.0/24 maxlen: 24
37.35.42.0/24 maxlen: 24
37.35.43.0/24 maxlen: 24
62.216.84.0/24 maxlen: 24
62.216.85.0/24 maxlen: 24
62.216.86.0/24 maxlen: 24
62.216.87.0/24 maxlen: 24
62.216.88.0/24 maxlen: 24
62.216.89.0/24 maxlen: 24
62.216.90.0/24 maxlen: 24
62.216.91.0/24 maxlen: 24
188.74.182.0/24 maxlen: 24
188.74.183.0/24 maxlen: 24
188.74.210.0/24 maxlen: 24
188.74.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:df:11:52:21:a1:e6:69:23:8d:b6:cf:c6:b3:5d:f3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Oct 13 19:34:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=596e8dd27b02da9550c3b337a47ae55896c1197c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:46:64:71:74:51:87:07:31:a6:35:4a:8e:90:
f1:98:fb:23:0d:6e:55:83:d9:5b:52:d4:61:f8:ab:
8e:54:d8:81:12:fc:95:47:ae:c3:ff:4b:10:a3:81:
14:22:13:c7:b1:56:a1:12:c8:a1:f8:52:05:a7:5a:
fa:ce:00:77:f6:06:8c:a3:21:6f:5a:72:a3:f2:7f:
e9:9e:bd:4b:70:96:06:81:3d:73:ac:8c:95:6c:76:
34:1c:0d:33:75:84:16:62:c1:7f:16:24:70:46:ee:
ce:b4:30:1e:0d:54:56:e5:1f:66:73:85:89:88:3d:
ea:4c:55:2c:ba:72:58:4b:a8:22:f2:12:1a:3c:99:
3c:c8:1b:52:22:b1:fd:30:96:0e:c3:b1:30:d5:3d:
7b:b0:a3:60:ca:c0:b8:30:a0:c2:93:cc:fc:ca:52:
de:71:82:1c:2b:72:27:64:7b:fa:6e:e9:ff:ab:e5:
2a:68:cc:62:7d:92:d2:17:53:81:12:7e:f6:ce:c0:
e6:c9:0d:1d:91:e2:12:e9:a3:31:15:5d:01:3f:8b:
7e:19:9e:12:fb:69:a2:5b:7a:2f:d1:f1:13:80:a0:
b9:5d:54:2d:8f:e5:0b:e6:01:b7:be:f7:77:de:0d:
5d:a1:5b:89:6d:e0:c2:81:c8:93:62:2a:c1:59:8f:
4c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6E:8D:D2:7B:02:DA:95:50:C3:B3:37:A4:7A:E5:58:96:C1:19:7C
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/WW6N0nsC2pVQw7M3pHrlWJbBGXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.254.0/23
5.157.130.0/23
37.35.40.0/22
62.216.84.0-62.216.91.255
188.74.182.0/23
188.74.210.0/23
Signature Algorithm: sha256WithRSAEncryption
78:17:91:e0:c9:78:b5:b2:3d:c0:37:78:db:3e:bf:ce:ca:a2:
91:d4:e8:79:5c:d0:56:42:f4:47:57:15:0e:c2:c7:f9:92:de:
29:9b:c1:73:73:39:b0:51:51:c8:f9:74:93:43:a5:0a:f7:8a:
d2:05:72:d8:c7:a4:3f:a7:8e:68:9d:e9:fd:12:6f:9d:e0:35:
5b:b4:78:26:54:e0:33:33:78:b5:7d:10:37:5f:81:82:eb:60:
b8:aa:be:ae:29:37:a5:de:0d:f3:8d:ed:63:f5:08:e5:fa:55:
95:ce:00:aa:ab:54:33:f2:80:48:5c:d1:8e:b8:31:52:ca:73:
40:43:7e:6b:8d:ef:64:2a:2a:88:98:fe:5d:a7:08:9b:e5:cd:
bf:d9:6c:04:e2:8b:8e:d5:19:50:20:a4:45:fa:9c:e8:05:97:
4c:a6:55:9c:c8:dd:b4:09:76:5d:4a:7e:65:f2:78:79:6a:17:
4b:a4:9c:95:b5:e3:8e:2a:7f:e3:e7:86:1a:eb:6d:a0:b2:ca:
ee:47:07:1b:48:2f:08:32:18:3f:a1:6b:ee:10:77:3c:b5:37:
dc:12:c6:3a:96:55:19:1f:1d:90:ec:a5:05:a9:37:30:b3:91:
77:01:c9:f0:a7:cc:5b:3d:23:bf:1f:61:29:27:54:02:62:f0:
77:a2:2c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:54:22 2025 by rpki-client