Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/avQ9RxdPcMOs6leXVweDJHW84FQ.roa
File: avQ9RxdPcMOs6leXVweDJHW84FQ.roa (raw, json)
Hash identifier: YgSH2WCvSGH2GNbRRHZlbHyYCTgYeRBYVgbNyuTFvDc=
Subject key identifier: 6A:F4:3D:47:17:4F:70:C3:AC:EA:57:97:57:07:83:24:75:BC:E0:54
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 019E9C477AD2776971041965C3EE3340FA13
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/avQ9RxdPcMOs6leXVweDJHW84FQ.roa
Signing time: Sat 06 Jun 2026 09:33:10 +0000
ROA not before: Sat 06 Jun 2026 09:33:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208555
IP address blocks: 62.220.122.0/23 maxlen: 24
62.220.124.0/23 maxlen: 24
62.220.126.0/23 maxlen: 24
81.12.24.0/22 maxlen: 24
81.12.30.0/23 maxlen: 24
87.107.2.0/23 maxlen: 24
87.107.4.0/23 maxlen: 24
87.107.6.0/23 maxlen: 24
87.107.8.0/23 maxlen: 24
87.107.108.0/23 maxlen: 24
87.107.110.0/23 maxlen: 24
87.107.110.0/24 maxlen: 24
87.107.111.0/24 maxlen: 24
87.107.144.0/24 maxlen: 24
87.107.152.0/23 maxlen: 24
87.107.166.0/23 maxlen: 24
87.107.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:47:7a:d2:77:69:71:04:19:65:c3:ee:33:40:fa:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jun 6 09:33:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6af43d47174f70c3acea57975707832475bce054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:28:87:5a:01:53:9b:3c:91:2c:02:27:14:13:
0a:f2:1b:75:42:81:41:43:d8:ee:15:ed:ba:0d:95:
02:82:0e:39:15:a7:15:e4:e0:9a:94:ff:bc:fc:34:
9c:f5:3a:5b:ef:1a:a3:7f:5b:99:c0:a0:29:dc:c9:
be:8d:da:22:cb:d5:c2:85:49:53:ca:91:5b:cb:c6:
dd:84:28:ea:8d:c9:78:85:e5:f3:42:41:fc:e5:4f:
34:60:8f:99:01:f9:90:4d:03:79:e7:6d:09:8e:05:
78:69:15:e7:f4:bf:1a:96:35:de:e5:c6:bb:dc:89:
28:48:17:87:fe:46:6c:d7:fa:54:ae:30:80:60:1e:
74:05:70:e4:9b:8c:f7:0f:13:5d:03:ca:15:6d:f3:
20:46:d1:9e:f3:fe:d8:4e:79:fc:11:86:d4:be:08:
cd:95:f6:2f:83:ac:bf:f4:b8:e5:33:20:22:ac:08:
1e:88:52:c5:fe:f1:d9:3f:17:d4:74:0b:95:f1:fb:
fb:3e:c4:46:5e:f7:2d:37:96:15:34:f5:88:05:9d:
ef:d0:f7:a1:4e:e7:b5:69:16:b0:0a:5e:33:9a:cd:
05:f0:fe:48:2a:94:fa:97:81:cd:31:a8:c4:df:b3:
16:17:c8:32:c6:f4:d2:08:64:3e:11:bb:a7:34:c2:
57:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F4:3D:47:17:4F:70:C3:AC:EA:57:97:57:07:83:24:75:BC:E0:54
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/avQ9RxdPcMOs6leXVweDJHW84FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.122.0-62.220.127.255
81.12.24.0/22
81.12.30.0/23
87.107.2.0-87.107.9.255
87.107.108.0/22
87.107.144.0/24
87.107.152.0/23
87.107.166.0/23
87.107.174.0/23
Signature Algorithm: sha256WithRSAEncryption
65:61:7c:a4:89:a7:ce:7f:5d:2e:65:c4:87:fb:f9:ca:3d:e5:
c7:66:7a:ad:69:e5:95:29:0e:05:2a:13:d4:97:01:0c:e2:93:
c7:18:a4:39:e3:d5:b0:d4:ee:78:07:0b:5c:13:9b:1a:63:f0:
ae:2f:3e:29:2b:6a:db:cb:47:75:50:9a:54:af:5f:74:a6:ab:
f8:7b:08:57:fc:2e:dc:e9:e3:78:0a:e5:87:b7:8d:45:ab:48:
f4:d5:2f:eb:7b:b9:35:e9:42:95:2c:81:69:3e:5e:08:c0:d9:
4a:6c:03:c6:ae:ed:9d:3c:3d:6a:c1:e2:6e:56:cf:c2:b6:f6:
e6:44:51:ae:69:a6:10:3b:25:b2:1d:aa:93:c2:eb:32:01:1f:
e6:c4:cc:5c:58:84:8d:af:50:19:43:9f:8f:16:1e:07:c0:01:
5b:34:df:ec:c5:d0:b9:23:3c:66:76:c7:a4:a2:34:e4:85:c3:
db:12:ff:6b:8f:69:71:38:16:44:5b:fc:9b:7a:92:51:f2:70:
a5:11:38:cb:d9:68:f3:ef:2a:50:bd:f5:88:3f:87:b0:e8:40:
05:12:be:b3:ce:b8:11:81:0a:4e:6f:3a:00:1a:40:3b:80:03:
6a:28:41:22:21:f1:99:85:f4:d2:93:46:44:eb:7c:a8:56:75:
6f:fd:48:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:09:15 2026 by rpki-client