Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/mP4Rn6yn4SNFq0fT-mp_wlCEBAs.roa
File: mP4Rn6yn4SNFq0fT-mp_wlCEBAs.roa (raw, json)
Hash identifier: s52ZavvZjsB/+ktFPQtct/b708RHYqqcn8Seuxf4zb4=
Subject key identifier: 98:FE:11:9F:AC:A7:E1:23:45:AB:47:D3:FA:6A:7F:C2:50:84:04:0B
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019ECAB621E10C7B10F01232597CBCB0EB98
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/mP4Rn6yn4SNFq0fT-mp_wlCEBAs.roa
Signing time: Mon 15 Jun 2026 09:56:34 +0000
ROA not before: Mon 15 Jun 2026 09:56:34 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44559
IP address blocks: 45.12.112.0/24 maxlen: 24
45.12.113.0/24 maxlen: 24
45.12.128.0/24 maxlen: 24
45.15.153.0/24 maxlen: 24
45.83.27.0/24 maxlen: 24
45.83.84.0/24 maxlen: 24
45.83.85.0/24 maxlen: 24
45.83.86.0/24 maxlen: 24
45.83.87.0/24 maxlen: 24
45.83.150.0/24 maxlen: 24
45.83.151.0/24 maxlen: 24
45.86.78.0/24 maxlen: 24
45.86.79.0/24 maxlen: 24
45.88.168.0/24 maxlen: 24
45.88.169.0/24 maxlen: 24
45.128.55.0/24 maxlen: 24
45.128.56.0/24 maxlen: 24
45.128.73.0/24 maxlen: 24
45.128.74.0/24 maxlen: 24
45.128.75.0/24 maxlen: 24
139.28.235.0/24 maxlen: 24
141.98.160.0/24 maxlen: 24
171.22.128.0/24 maxlen: 24
185.106.97.0/24 maxlen: 24
185.161.71.0/24 maxlen: 24
213.59.124.0/24 maxlen: 24
213.59.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ca:b6:21:e1:0c:7b:10:f0:12:32:59:7c:bc:b0:eb:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jun 15 09:56:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=98fe119faca7e12345ab47d3fa6a7fc25084040b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:74:c7:fa:32:a3:34:14:36:a1:d6:23:ec:92:
2f:c9:f5:30:a6:09:bb:d1:90:be:0d:f1:d0:86:a3:
bd:79:64:14:fd:50:20:cd:25:16:71:a2:65:a8:c0:
82:bf:9d:c8:a1:f3:18:30:ee:f0:22:6c:75:02:c0:
61:d9:25:8f:fd:e8:27:45:d9:cc:21:9f:9d:e9:05:
44:3c:b9:21:4c:d9:57:94:ae:40:55:68:e1:aa:e5:
d5:b6:eb:d8:2d:ef:12:8a:e8:c6:98:60:7d:ad:ed:
be:85:11:7b:8f:23:a3:c2:65:66:ac:bd:a4:6b:d4:
4f:77:33:9e:b7:aa:58:d5:b8:79:a9:8f:e7:c3:a7:
b3:21:f4:15:53:33:58:c3:01:fb:d8:21:63:f0:6e:
43:cc:c8:54:67:a4:b5:c5:17:18:d4:c9:5e:d2:5a:
1d:46:f8:98:9f:5d:02:84:a9:14:20:9f:69:7c:a2:
33:03:08:ec:ba:eb:c9:2e:8b:5e:45:3e:ce:ad:41:
af:c3:70:3c:57:00:c2:8a:30:c3:c1:4e:a7:3f:28:
bd:e0:a1:9c:57:4d:0a:64:87:05:8a:34:2e:ba:0d:
f9:eb:8c:27:83:ee:8d:57:d9:3d:39:57:4d:de:bb:
48:e6:92:1d:25:3a:d5:ad:7d:bc:b6:b8:cf:27:cd:
98:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FE:11:9F:AC:A7:E1:23:45:AB:47:D3:FA:6A:7F:C2:50:84:04:0B
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/mP4Rn6yn4SNFq0fT-mp_wlCEBAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.112.0/23
45.12.128.0/24
45.15.153.0/24
45.83.27.0/24
45.83.84.0/22
45.83.150.0/23
45.86.78.0/23
45.88.168.0/23
45.128.55.0-45.128.56.255
45.128.73.0-45.128.75.255
139.28.235.0/24
141.98.160.0/24
171.22.128.0/24
185.106.97.0/24
185.161.71.0/24
213.59.124.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:e2:43:f4:86:59:4a:22:f9:c4:90:78:b6:3a:5c:85:91:08:
07:77:08:83:46:2b:2b:3e:ef:9a:f9:17:26:f6:d1:4a:d2:81:
7d:10:46:2f:77:21:b9:f4:92:29:f5:05:3e:51:3b:9f:7b:fe:
bd:8f:b1:f3:26:20:ad:ea:68:09:3e:04:76:c8:16:31:98:ac:
5f:3a:49:b5:af:08:99:70:01:a5:6b:77:99:da:cd:e0:6e:b5:
49:22:e7:72:8f:2e:b4:78:6d:a6:81:14:b8:c4:60:32:86:65:
ac:61:33:07:ee:fa:0d:39:92:48:df:55:5e:3e:98:61:52:28:
d8:c0:ae:cd:28:09:a8:53:d1:96:b7:e6:34:fb:40:68:4a:ed:
87:6c:f6:e9:bd:e3:c9:df:d8:70:0b:ea:d1:ef:aa:38:b4:35:
9a:d1:56:e6:80:01:0a:57:51:d7:a6:7f:92:f7:c8:80:b6:d9:
f5:98:5a:68:d0:4c:28:59:9a:40:68:d7:e2:5f:42:12:fd:35:
20:35:de:a3:43:a1:5a:7c:19:76:09:89:21:5e:07:79:33:d1:
66:06:a5:78:3f:ea:d6:53:ff:a1:fd:ad:b8:5d:7c:98:5a:51:
ad:20:bb:fc:c9:fd:50:00:64:ca:b7:da:4c:3f:01:3e:50:35:
f1:27:42:c0
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAZ7KtiHhDHsQ8BIyWXy8sOuYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjYwNjE1MDk1NjM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGZlMTE5ZmFjYTdlMTIzNDVhYjQ3ZDNmYTZhN2ZjMjUwODQwNDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9nTH+jKjNBQ2odYj7JIvyfUwpgm7
0ZC+DfHQhqO9eWQU/VAgzSUWcaJlqMCCv53IofMYMO7wImx1AsBh2SWP/egnRdnM
IZ+d6QVEPLkhTNlXlK5AVWjhquXVtuvYLe8SiujGmGB9re2+hRF7jyOjwmVmrL2k
a9RPdzOet6pY1bh5qY/nw6ezIfQVUzNYwwH72CFj8G5DzMhUZ6S1xRcY1Mle0lod
RviYn10ChKkUIJ9pfKIzAwjsuuvJLoteRT7OrUGvw3A8VwDCijDDwU6nPyi94KGc
V00KZIcFijQuug3564wng+6NV9k9OVdN3rtI5pIdJTrVrX28trjPJ82YdQIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFJj+EZ+sp+EjRatH0/pqf8JQhAQLMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvbVA0Um42eW40U05GcTBmVC1tcF93bENFQkFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAS0McAME
AC0MgAMEAC0PmQMEAC1TGwMEAi1TVAMEAS1TlgMEAS1WTgMEAS1YqDAMAwQALYA3
AwQALYA4MAwDBAAtgEkDBAItgEgDBACLHOsDBACNYqADBACrFoADBAC5amEDBAC5
oUcDBAHVO3wwDQYJKoZIhvcNAQELBQADggEBAJ7iQ/SGWUoi+cSQeLY6XIWRCAd3
CINGKys+75r5Fyb20UrSgX0QRi93Ibn0kin1BT5RO597/r2PsfMmIK3qaAk+BHbI
FjGYrF86SbWvCJlwAaVrd5nazeButUki53KPLrR4baaBFLjEYDKGZaxhMwfu+g05
kkjfVV4+mGFSKNjArs0oCahT0Za35jT7QGhK7Yds9um948nf2HAL6tHvqji0NZrR
VuaAAQpXUdemf5L3yIC22fWYWmjQTChZmkBo1+JfQhL9NSA13qNDoVp8GXYJiSFe
B3kz0WYGpXg/6tZT/6H9rbhdfJhaUa0gu/zJ/VAAZMq32kw/AT5QNfEnQsA=
-----END CERTIFICATE-----
Generated at Thu Jun 18 03:44:42 2026 by rpki-client