Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UZcs7RpjrqipcQ_aIYDxG_EBA4Q.roa
File: UZcs7RpjrqipcQ_aIYDxG_EBA4Q.roa (raw, json)
Hash identifier: T1HgXlW7xXAisxGHUq1A5vbXuCqY7fadcv8aAXDFY0M=
Subject key identifier: 51:97:2C:ED:1A:63:AE:A8:A9:71:0F:DA:21:80:F1:1B:F1:01:03:84
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019E8E1DFD481663D4036255CCAB37BF9930
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UZcs7RpjrqipcQ_aIYDxG_EBA4Q.roa
Signing time: Wed 03 Jun 2026 15:33:10 +0000
ROA not before: Wed 03 Jun 2026 15:33:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214927
IP address blocks: 45.118.248.0/24 maxlen: 24
45.130.60.0/24 maxlen: 24
45.131.212.0/24 maxlen: 24
45.140.13.0/24 maxlen: 24
45.152.208.0/24 maxlen: 24
45.155.69.0/24 maxlen: 24
85.209.128.0/24 maxlen: 24
103.114.43.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
185.122.171.0/24 maxlen: 24
185.242.245.0/24 maxlen: 24
2a0c:7886:105::/48 maxlen: 48
2a0f:e7c6:1000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:1d:fd:48:16:63:d4:03:62:55:cc:ab:37:bf:99:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 3 15:33:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=51972ced1a63aea8a9710fda2180f11bf1010384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:c0:af:4e:1f:43:32:24:4c:e9:56:9f:96:
0d:32:be:7c:16:cf:35:b5:c7:c3:c8:60:57:ff:1c:
83:1c:d7:c3:2d:89:f5:ad:1a:6a:ac:76:5e:ee:9b:
f9:b2:e7:5f:f7:85:07:bf:76:82:43:35:a1:d7:c7:
a4:04:f9:9d:02:e8:54:d2:6a:da:ac:60:08:d9:74:
50:9b:ea:fd:c8:9a:49:da:41:93:39:79:87:34:57:
98:84:40:fb:33:b8:18:b7:bb:59:ca:4d:85:59:a3:
97:6d:da:d0:0c:b0:23:f2:92:88:43:35:1e:eb:36:
a0:54:75:b4:9f:68:a5:c4:bb:4b:ae:d4:90:0d:12:
33:d6:bc:2b:d8:f4:bb:ae:4c:de:e6:80:94:c9:a1:
99:4e:fd:b5:a9:4f:08:97:3d:b0:56:42:10:2d:4e:
9e:a3:08:42:a9:04:ae:84:3c:3f:88:df:24:a9:17:
62:be:ab:3b:41:11:d7:65:fe:a3:bb:1f:46:66:fb:
1e:b7:80:02:f6:63:04:8d:b9:47:50:71:8e:fc:1c:
5f:4f:30:c7:22:82:3c:8b:6f:33:99:34:65:f7:5d:
78:b1:78:85:75:db:e5:b7:f9:0f:fc:9a:96:c9:eb:
ba:58:ad:6e:52:db:e8:96:8f:9b:5a:85:38:e5:28:
c2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:97:2C:ED:1A:63:AE:A8:A9:71:0F:DA:21:80:F1:1B:F1:01:03:84
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UZcs7RpjrqipcQ_aIYDxG_EBA4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.118.248.0/24
45.130.60.0/24
45.131.212.0/24
45.140.13.0/24
45.152.208.0/24
45.155.69.0/24
85.209.128.0/24
103.114.43.0/24
113.30.154.0/24
185.122.171.0/24
185.242.245.0/24
IPv6:
2a0c:7886:105::/48
2a0f:e7c6:1000::/48
Signature Algorithm: sha256WithRSAEncryption
3d:2c:3b:b1:c8:5f:71:49:b3:3f:61:dc:a5:a3:77:8a:b9:03:
48:1c:24:6a:44:d4:41:09:ab:af:98:27:c7:61:7f:a3:2e:73:
1d:61:c0:d9:82:f9:bb:2b:ee:c6:a9:7d:8d:c9:e6:32:ab:93:
8c:c7:13:7d:86:77:06:d5:a3:e3:cb:40:15:dc:9f:67:4f:1b:
9f:8e:cd:6b:19:87:14:f1:bb:f0:57:96:7c:d7:cb:ed:05:ec:
91:1f:dd:7e:60:85:91:06:ae:8b:85:66:66:e1:29:dc:e5:96:
4d:81:f7:32:3d:fe:5f:b4:68:d2:b7:8f:d5:db:16:1b:56:90:
c2:63:a7:b4:fe:87:e4:f6:15:61:eb:d8:ca:73:df:9e:f7:b2:
bd:2d:db:e1:7e:35:66:7c:60:57:eb:78:fd:88:f0:ed:9b:ae:
83:8a:68:a1:dd:4c:f9:e5:b2:89:7d:d4:f3:78:0c:29:e7:be:
7a:09:49:42:93:bf:02:57:9c:14:8f:d6:b3:81:cb:e1:57:8a:
1f:0f:8a:68:48:a7:c0:43:0d:7d:99:25:10:bf:e0:74:1f:14:
b2:24:ef:57:65:a8:aa:b7:07:d2:56:94:b5:57:f5:32:99:24:
6a:32:1d:fc:a4:a7:e8:b2:6f:f6:81:0c:f3:b5:cb:e8:23:bb:
5c:3f:b4:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 15:19:10 2026 by rpki-client