Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YUqaY-CEht-6R8bZ7dIH47kjYl0.roa
File: YUqaY-CEht-6R8bZ7dIH47kjYl0.roa (raw, json)
Hash identifier: caS5dvh1cdFPiOvE/NidQBDYkEOiGgYrEbJAmHnQaoY=
Subject key identifier: 61:4A:9A:63:E0:84:86:DF:BA:47:C6:D9:ED:D2:07:E3:B9:23:62:5D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EE9AD18100ECB80A13CB79F10F97FFF91
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YUqaY-CEht-6R8bZ7dIH47kjYl0.roa
Signing time: Sun 21 Jun 2026 10:14:55 +0000
ROA not before: Sun 21 Jun 2026 10:14:55 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214431
IP address blocks: 94.183.156.0/24 maxlen: 24
94.183.157.0/24 maxlen: 24
94.183.160.0/24 maxlen: 24
94.183.176.0/24 maxlen: 24
94.183.207.0/24 maxlen: 24
94.183.225.0/24 maxlen: 24
94.183.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e9:ad:18:10:0e:cb:80:a1:3c:b7:9f:10:f9:7f:ff:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 21 10:14:55 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=614a9a63e08486dfba47c6d9edd207e3b923625d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:04:34:78:ee:48:7d:ed:81:66:2a:fc:32:60:
dd:c2:20:56:e7:ce:f6:12:7e:8a:13:eb:86:51:ad:
da:ba:07:39:3d:0b:8c:ec:6b:15:f2:d7:26:d2:0d:
3f:0e:2e:7d:a0:5b:1d:8a:f3:55:d7:09:cd:14:1c:
ce:fe:b7:77:de:81:9d:18:89:e4:1a:ba:0a:c9:bb:
a4:e9:51:ed:cb:4a:76:40:e4:b7:26:8b:f0:33:b5:
2f:38:53:bb:9a:c4:e2:88:ac:ca:7f:3d:eb:42:e7:
33:a5:55:5e:ae:65:09:47:bf:d4:7d:56:03:c9:11:
78:08:75:98:b7:e0:c9:15:9f:3b:14:1c:86:3f:63:
bf:91:9e:fe:11:6b:e4:7f:8c:8d:82:19:2e:75:d6:
a8:0e:c0:c3:e1:77:f5:64:17:37:51:ec:0f:47:d9:
36:2c:06:50:a8:f6:69:04:83:90:05:dd:e1:a3:8f:
53:22:5c:ec:b7:1b:b9:6c:58:be:3d:91:cd:24:f3:
49:94:5a:c9:39:1d:03:20:32:b3:34:25:bc:08:6f:
bb:04:a9:ca:6f:12:15:70:76:71:cb:27:28:69:00:
f2:01:41:f8:74:66:11:21:3e:6e:0c:d0:61:56:97:
45:b1:e4:dc:22:1d:c0:04:6b:3d:79:65:c3:78:2b:
65:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4A:9A:63:E0:84:86:DF:BA:47:C6:D9:ED:D2:07:E3:B9:23:62:5D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/YUqaY-CEht-6R8bZ7dIH47kjYl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.183.156.0/23
94.183.160.0/24
94.183.176.0/24
94.183.207.0/24
94.183.225.0/24
94.183.241.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b7:eb:39:8e:0e:14:df:f1:6c:14:9e:d7:aa:a6:bd:b3:dd:
5f:26:99:0f:28:f9:e8:f9:d2:51:f5:97:f6:00:33:60:76:4b:
62:a3:54:92:7a:b2:ab:25:a8:6f:a3:b4:17:02:23:68:33:18:
78:84:cf:ef:29:dc:26:e8:95:e6:9e:91:76:20:c1:e0:87:3c:
22:d6:19:2b:97:11:37:ec:3f:b9:63:a6:9d:8e:b2:4c:1e:ae:
12:c6:48:9c:a4:e7:b9:1a:4d:0e:22:1a:e2:5d:43:ab:a2:f9:
7e:53:fa:cf:ae:3f:ae:82:87:b4:5f:65:cd:22:1f:e6:aa:8f:
50:ac:32:e1:64:a8:88:47:38:25:55:63:72:d3:2e:7b:53:63:
21:99:17:1a:90:5a:a4:96:23:b1:37:c1:fd:41:74:df:5e:02:
e9:fc:81:9c:49:f8:36:81:6b:1d:08:c6:a7:22:b8:66:da:8d:
52:f9:2d:7c:12:d7:18:5a:8c:d7:2b:14:bc:d8:17:d8:6e:24:
75:b7:46:01:9e:c0:9b:6c:48:b2:59:d9:0d:21:43:a3:7f:ef:
ce:11:84:82:37:e2:45:b3:59:72:4b:8e:92:00:bd:2d:7c:ca:
54:02:74:13:fb:77:87:82:f7:50:46:2e:9d:0a:cc:42:f9:f7:
f7:7f:25:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:03:07 2026 by rpki-client