Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5Vc2hYceWVlIAjVudXvWsc1C9_Y.roa
File: 5Vc2hYceWVlIAjVudXvWsc1C9_Y.roa (raw, json)
Hash identifier: 4sCZRK5YNU+4G/ybyLFR+9veCa3l0jHrS82MxnVq+bU=
Subject key identifier: E5:57:36:85:87:1E:59:59:48:02:35:6E:75:7B:D6:B1:CD:42:F7:F6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019CB2FA332D92364667499726CFA2B3F442
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5Vc2hYceWVlIAjVudXvWsc1C9_Y.roa
Signing time: Tue 03 Mar 2026 09:14:27 +0000
ROA not before: Tue 03 Mar 2026 09:14:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 26666
IP address blocks: 45.128.244.0/24 maxlen: 24
45.128.245.0/24 maxlen: 24
45.128.246.0/24 maxlen: 24
45.128.247.0/24 maxlen: 24
45.130.255.0/24 maxlen: 24
45.136.172.0/24 maxlen: 24
45.136.173.0/24 maxlen: 24
45.137.63.0/24 maxlen: 24
193.23.253.0/24 maxlen: 24
193.27.10.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
194.62.31.0/24 maxlen: 24
2a0f:1480::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:35c0::/29 maxlen: 29
2a0f:4f80::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:fa:33:2d:92:36:46:67:49:97:26:cf:a2:b3:f4:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 3 09:14:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e5573685871e59594802356e757bd6b1cd42f7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:52:50:48:7c:f6:96:b2:83:26:50:59:68:2d:
f2:e9:c2:ca:e9:17:6d:25:58:14:cc:e2:84:8e:e4:
50:ab:1a:74:54:fc:50:35:a6:5a:67:42:c6:11:55:
c3:e5:7f:e1:41:d6:32:8b:78:cf:6c:a7:3a:94:b4:
5f:e9:4d:86:58:a0:57:d8:55:33:93:91:07:80:84:
f2:be:e1:b0:7f:b4:7b:95:88:97:e5:ac:ae:24:c7:
84:d8:a9:b4:3a:c0:6e:5c:fb:ac:04:78:8e:70:23:
fe:c5:c3:33:c9:fe:ec:fa:c2:87:45:42:9e:0b:e5:
de:ed:4e:21:31:35:7f:33:d8:14:ec:7c:df:5b:ca:
9b:57:83:1e:b5:78:f9:5d:8c:41:20:00:dd:71:3c:
62:34:b5:90:95:b7:0a:e9:fc:e6:23:d8:84:83:f3:
79:90:83:f6:e6:04:f7:9c:7f:c5:08:1b:bf:bd:12:
0c:3e:1f:65:4c:1b:fa:98:30:4f:1e:a8:c1:b3:c4:
c9:5f:c1:e9:a7:20:e0:e9:eb:17:f2:c8:28:c8:ba:
6b:6b:95:05:a2:b4:80:b4:b5:95:ab:56:9f:f6:47:
15:65:87:b6:ec:5d:70:97:df:2f:56:e5:23:3c:81:
66:b9:85:78:09:21:d7:4c:eb:b4:3f:47:a1:c8:c7:
b0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:57:36:85:87:1E:59:59:48:02:35:6E:75:7B:D6:B1:CD:42:F7:F6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5Vc2hYceWVlIAjVudXvWsc1C9_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.244.0/22
45.130.255.0/24
45.136.172.0/23
45.137.63.0/24
193.23.253.0/24
193.27.10.0/24
194.33.29.0/24
194.62.31.0/24
IPv6:
2a0f:1480::/29
2a0f:2f80::/29
2a0f:35c0::/29
2a0f:4f80::/29
Signature Algorithm: sha256WithRSAEncryption
41:85:44:e4:26:2c:7b:17:9d:2f:bd:f8:2f:6e:7d:06:4d:26:
a9:f6:d5:63:a3:13:10:1e:d2:c4:ef:ea:3c:6c:3c:a5:a6:1b:
02:a3:26:4b:d5:5c:9f:30:6e:b0:b8:7c:b5:81:f5:03:90:91:
97:9f:7d:ae:a8:34:e0:54:b7:f7:90:60:c4:77:9c:7d:56:9f:
f3:f7:4c:41:0f:a1:55:53:fa:22:ca:99:e6:81:06:8b:47:5e:
43:69:9b:e6:a0:94:7c:f3:73:b4:61:e1:93:d5:b5:16:70:71:
49:65:bc:86:ef:68:2c:e9:f7:11:af:ed:14:07:fa:fa:27:77:
2b:43:92:13:c1:8f:e1:d8:b5:3f:c5:c7:c4:f3:0b:32:16:87:
16:30:30:50:b1:aa:bf:71:e5:d3:7b:74:c3:7d:ec:dc:63:35:
36:10:75:d4:f2:6b:0a:83:bb:b7:c1:db:97:ca:db:4a:26:55:
61:f5:91:c3:ef:11:a8:11:92:f4:39:a8:11:48:d1:d1:88:53:
54:6a:f5:e4:2b:d6:bc:69:b9:fd:74:92:04:2e:b9:91:40:85:
81:47:f1:d4:70:3a:c2:7e:1c:6e:e9:5d:3d:c1:6d:19:cb:18:
15:45:1f:9b:08:7c:1d:3d:3a:6e:a9:52:8b:45:b2:30:da:d4:
73:3a:fb:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 19:06:32 2026 by rpki-client