Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s3SZ2WkJY7qMWqkQJm0T38I26hU.roa
File: s3SZ2WkJY7qMWqkQJm0T38I26hU.roa (raw, json)
Hash identifier: llHfycQbiYhpSo148eGedtwp1/QF1/olscMH9Hfp3EM=
Subject key identifier: B3:74:99:D9:69:09:63:BA:8C:5A:A9:10:26:6D:13:DF:C2:36:EA:15
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 019E227645F8B58D35604A9285E3480B5E85
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s3SZ2WkJY7qMWqkQJm0T38I26hU.roa
Signing time: Wed 13 May 2026 17:50:36 +0000
ROA not before: Wed 13 May 2026 17:50:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43278
IP address blocks: 45.129.237.0/24 maxlen: 24
45.137.154.0/24 maxlen: 24
195.18.27.0/24 maxlen: 24
213.109.97.0/24 maxlen: 24
213.226.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:22:76:45:f8:b5:8d:35:60:4a:92:85:e3:48:0b:5e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 13 17:50:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b37499d9690963ba8c5aa910266d13dfc236ea15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b7:5b:f7:f6:40:7c:ae:9a:a6:85:0c:89:6b:
bd:b8:04:ab:82:d7:c3:4b:75:2d:a1:5b:47:ba:f4:
b0:67:a7:dd:64:08:5a:65:bc:1e:80:3e:95:09:bb:
1e:01:7a:44:5a:d6:2f:78:31:b5:4e:90:bc:e2:a6:
9b:bc:ae:57:c2:e5:97:25:86:18:c8:5f:e7:52:fe:
4e:44:07:3e:39:2b:19:be:65:5f:cc:5d:44:7a:01:
06:78:e7:f8:7c:0e:64:c7:47:19:8c:58:18:dc:0a:
1c:d2:cf:90:ec:f4:e5:de:60:6e:0d:0e:0e:60:67:
38:eb:5a:81:ba:8e:13:b7:3a:2b:cd:82:24:95:e5:
7e:a9:63:09:6e:51:47:09:1c:ff:73:d7:bf:72:3f:
7c:f9:66:c5:1f:ff:de:ea:cf:89:45:03:82:a8:9f:
d6:ff:99:f8:32:45:54:e4:2d:19:46:70:2e:10:8d:
95:03:67:ec:e2:6a:0a:a8:fe:27:c6:52:9f:ee:8f:
6d:1c:ba:2a:76:1b:97:96:8e:83:21:09:c8:a0:7f:
99:18:f5:61:48:ae:f6:33:48:64:4b:96:bc:34:85:
97:bd:4d:56:f5:5d:25:c5:29:75:20:ca:b0:20:f5:
b2:a2:e1:23:45:f6:c8:ed:b2:03:5b:99:1f:9c:55:
3d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:74:99:D9:69:09:63:BA:8C:5A:A9:10:26:6D:13:DF:C2:36:EA:15
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s3SZ2WkJY7qMWqkQJm0T38I26hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.237.0/24
45.137.154.0/24
195.18.27.0/24
213.109.97.0/24
213.226.115.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7a:a3:c5:65:7e:24:15:d5:15:c5:8c:0a:eb:21:a7:42:54:
6c:2d:c2:79:a2:6d:be:46:3f:c6:e3:6c:90:66:29:7a:04:86:
48:a6:c5:f8:7a:c4:4a:c3:0a:ba:da:b7:68:30:97:04:52:a0:
f1:d0:5d:fc:86:7e:d8:cd:9c:00:12:ee:0c:b0:3a:c6:07:1d:
3c:8a:a1:87:2e:71:06:fe:8f:32:47:e5:8f:27:10:db:db:e3:
b8:01:c5:7d:4a:1b:bb:c9:44:1b:6b:8e:d1:3b:a7:36:1a:93:
41:e0:bc:7d:db:e7:7f:e3:84:32:43:d5:7b:d4:d7:75:fa:87:
42:b9:38:11:f0:eb:8d:c6:75:66:54:fb:04:98:8e:c2:29:33:
9b:2a:fa:36:d9:0f:ab:98:02:e7:c2:45:60:34:7d:2d:f2:fa:
f1:b1:1e:80:47:1a:22:fe:68:c4:92:e8:aa:53:3b:e0:cb:62:
d8:1b:6b:81:d5:75:a6:9b:d0:75:dc:bb:55:bf:a4:80:0c:a7:
00:d6:83:f5:d9:0e:18:93:b8:38:44:69:93:aa:51:12:df:3d:
b4:d5:45:00:35:63:d1:88:b0:cc:67:91:35:90:04:74:3b:6d:
e4:2c:c1:a5:2d:a6:1a:ff:f7:2f:54:ce:f6:84:2c:2c:73:0e:
1c:7e:82:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 10:00:09 2026 by rpki-client