Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/bD0QsdzwdVp6B0T1FvLCgHGF3-w.roa
File: bD0QsdzwdVp6B0T1FvLCgHGF3-w.roa (raw, json)
Hash identifier: MbU22Z7ZWBnkzkmpp+T6Sf6pogu8WdueoGCe1Bjbrps=
Subject key identifier: 6C:3D:10:B1:DC:F0:75:5A:7A:07:44:F5:16:F2:C2:80:71:85:DF:EC
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 019E9C47799D5E406D6F137CEF428C9CCD78
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/bD0QsdzwdVp6B0T1FvLCgHGF3-w.roa
Signing time: Sat 06 Jun 2026 09:33:10 +0000
ROA not before: Sat 06 Jun 2026 09:33:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51026
IP address blocks: 62.220.122.0/23 maxlen: 24
62.220.124.0/23 maxlen: 24
62.220.126.0/24 maxlen: 24
62.220.127.0/24 maxlen: 24
81.12.24.0/22 maxlen: 24
81.12.24.0/24 maxlen: 24
81.12.25.0/24 maxlen: 24
81.12.26.0/24 maxlen: 24
81.12.27.0/24 maxlen: 24
81.12.30.0/24 maxlen: 24
81.12.31.0/24 maxlen: 24
87.107.2.0/23 maxlen: 24
87.107.4.0/23 maxlen: 24
87.107.6.0/23 maxlen: 24
87.107.8.0/23 maxlen: 24
87.107.108.0/23 maxlen: 24
87.107.110.0/23 maxlen: 24
87.107.110.0/24 maxlen: 24
87.107.111.0/24 maxlen: 24
87.107.144.0/24 maxlen: 24
87.107.152.0/24 maxlen: 24
87.107.153.0/24 maxlen: 24
87.107.166.0/24 maxlen: 24
87.107.167.0/24 maxlen: 24
87.107.174.0/24 maxlen: 24
87.107.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:47:79:9d:5e:40:6d:6f:13:7c:ef:42:8c:9c:cd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jun 6 09:33:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6c3d10b1dcf0755a7a0744f516f2c2807185dfec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6a:41:d1:ee:b0:33:c2:12:bb:5d:09:0e:d4:
db:80:50:32:09:39:95:db:13:43:36:b9:ef:78:01:
27:e7:6b:0c:07:66:17:15:79:d2:7b:f4:48:9e:e1:
ad:ce:8c:6e:cc:78:af:9c:ec:bb:e2:1e:79:7a:17:
7a:85:5d:e7:17:94:11:86:c1:b2:fe:75:6d:ae:b5:
a6:d3:8e:46:a4:d1:51:b5:46:d8:dd:6d:96:a9:c9:
c8:7a:32:a3:5a:b2:e0:4b:cd:01:94:1a:5e:44:21:
3a:d6:c8:d8:9c:7b:b2:53:57:a5:a8:41:39:ae:3c:
b9:e5:67:36:14:37:5f:d6:4d:46:b1:e7:8a:7a:2e:
13:68:81:e0:b8:9a:d5:a3:93:dc:8b:32:8c:7c:79:
09:3d:42:2d:95:21:83:bc:60:d4:9e:c2:1a:08:c4:
a5:df:bf:8b:01:fa:46:cf:bd:80:1f:26:7f:19:b9:
3a:e7:2e:68:d5:14:81:ca:7d:e8:b5:89:12:72:ff:
e7:ad:af:94:d3:22:37:6f:d4:e8:10:85:6a:cb:4c:
28:b0:08:66:57:69:48:91:3f:07:fe:39:5d:85:01:
ea:73:ab:76:1b:18:03:3c:05:7a:a0:4d:2b:ca:fd:
b5:3b:e8:e9:9d:9c:2a:1c:ad:6c:65:53:28:f7:1e:
45:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3D:10:B1:DC:F0:75:5A:7A:07:44:F5:16:F2:C2:80:71:85:DF:EC
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/bD0QsdzwdVp6B0T1FvLCgHGF3-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.122.0-62.220.127.255
81.12.24.0/22
81.12.30.0/23
87.107.2.0-87.107.9.255
87.107.108.0/22
87.107.144.0/24
87.107.152.0/23
87.107.166.0/23
87.107.174.0/23
Signature Algorithm: sha256WithRSAEncryption
63:88:44:b1:8d:5e:53:72:71:e6:48:67:c8:b7:b6:f2:51:43:
86:ed:c6:be:74:5c:ad:22:34:06:23:76:11:d9:f2:03:6c:64:
40:ca:50:94:56:08:b5:b9:4b:75:9f:f1:48:f3:de:a9:e1:61:
f7:05:2b:ca:c6:8f:2f:a3:b4:09:74:58:12:e2:62:7e:4b:f9:
63:46:2b:da:1b:5a:a3:56:6c:d1:9f:2e:42:80:9b:15:50:b3:
fa:5f:6b:b1:65:64:b3:e5:f6:ca:94:9b:ec:08:35:b2:73:34:
cd:c1:3e:f5:f1:cd:51:f9:71:4b:25:bd:f3:3c:33:bc:23:17:
f0:ee:71:1f:3a:8f:69:8f:a9:17:13:29:e2:93:26:71:aa:33:
86:2a:b7:77:c3:74:74:77:aa:a0:b0:85:92:d9:ba:53:5c:e8:
0a:d7:af:9c:12:c8:37:cb:1a:2a:b8:87:7c:c5:2f:3f:4d:51:
7a:e0:86:7b:cf:76:f1:2d:7a:40:94:ef:06:dc:20:60:b3:04:
a3:86:82:21:83:ac:88:ea:79:73:4e:33:c8:0f:a7:f2:30:79:
80:3f:5e:0f:6a:d1:37:0e:ab:92:07:14:f8:03:3a:f6:a9:92:
17:85:ae:6a:8a:0a:a5:6c:69:e4:a1:d2:18:4b:12:6f:e3:1b:
1f:fa:e6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:30:40 2026 by rpki-client