Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/EN5YRtRNeJB3G_kn9_QszN63XRs.roa
File: EN5YRtRNeJB3G_kn9_QszN63XRs.roa (raw, json)
Hash identifier: ED4WNccI96qY8PVsosO6wi3ARts0z42Q1MVgegQE8i4=
Subject key identifier: 10:DE:58:46:D4:4D:78:90:77:1B:F9:27:F7:F4:2C:CC:DE:B7:5D:1B
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 019E7329E913A53585BEE5C9EFAB9D95ABA6
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/EN5YRtRNeJB3G_kn9_QszN63XRs.roa
Signing time: Fri 29 May 2026 09:56:26 +0000
ROA not before: Fri 29 May 2026 09:56:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201935
IP address blocks: 84.254.130.0/24 maxlen: 24
84.254.131.0/24 maxlen: 24
84.254.132.0/24 maxlen: 24
84.254.137.0/24 maxlen: 24
84.254.144.0/23 maxlen: 24
84.254.144.0/24 maxlen: 24
84.254.145.0/24 maxlen: 24
84.254.146.0/24 maxlen: 24
84.254.164.0/24 maxlen: 24
95.210.111.0/24 maxlen: 24
95.210.132.0/23 maxlen: 24
95.210.132.0/24 maxlen: 24
95.210.133.0/24 maxlen: 24
176.227.131.0/24 maxlen: 24
176.227.138.0/24 maxlen: 24
176.227.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:73:29:e9:13:a5:35:85:be:e5:c9:ef:ab:9d:95:ab:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: May 29 09:56:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=10de5846d44d7890771bf927f7f42cccdeb75d1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:10:16:bb:df:61:9f:24:71:3a:5d:e3:4a:
b8:7f:90:f7:9b:9b:1c:9b:eb:fc:c5:62:19:f8:fd:
ea:a3:a1:2d:4f:eb:be:bb:85:0e:95:38:df:51:fe:
74:d8:17:4f:77:cc:03:5d:01:66:3c:07:22:18:75:
ca:84:9e:d0:38:85:dc:34:e0:51:c5:45:4d:2b:a1:
15:b3:87:d2:c4:e1:db:81:05:a1:c9:57:1e:de:ae:
71:fc:80:8f:6d:77:8f:ac:cc:1d:c9:92:d4:5d:bc:
6a:88:df:63:06:97:70:bb:b6:e3:d0:fa:8e:11:e4:
f6:2d:d1:37:2c:29:ad:a1:f5:fa:56:e1:c7:14:0f:
9d:8b:f0:fb:fa:6b:2f:cd:52:05:7b:02:76:b0:50:
7f:90:71:a0:4f:20:14:c3:7a:ce:cd:9d:5d:b1:0a:
a7:39:99:ff:f8:48:0a:e4:e1:bc:a5:f8:3a:c8:01:
d0:4d:e2:9a:79:4c:e5:a1:7b:38:70:93:7c:38:8d:
7e:aa:15:81:08:21:99:a5:4f:46:20:ab:be:f7:14:
11:f1:69:3b:8b:94:00:84:03:8b:24:a0:38:2b:e8:
7d:3a:ef:40:f5:f1:72:b9:c1:41:85:86:1a:92:7f:
75:6a:74:4b:ee:d7:e0:4b:e6:26:69:f6:6f:db:c2:
20:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:DE:58:46:D4:4D:78:90:77:1B:F9:27:F7:F4:2C:CC:DE:B7:5D:1B
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/EN5YRtRNeJB3G_kn9_QszN63XRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.254.130.0-84.254.132.255
84.254.137.0/24
84.254.144.0-84.254.146.255
84.254.164.0/24
95.210.111.0/24
95.210.132.0/23
176.227.131.0/24
176.227.138.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:bd:da:48:ae:c5:39:e0:ad:7a:6c:0b:f1:5c:ad:3a:66:b7:
01:dd:db:42:7e:6f:15:bc:42:5b:01:26:69:35:8d:6d:8a:4b:
83:ed:46:68:97:13:26:1b:cd:4f:b7:19:3c:84:51:10:94:9a:
30:87:0f:cf:99:a9:5d:4b:3a:86:17:bf:b9:7c:5d:ad:c1:7b:
86:b7:4f:54:0f:12:7d:b6:dc:61:68:b2:a5:7c:96:9a:aa:6a:
29:6b:a0:2b:da:ce:02:8f:2f:b6:b2:56:21:56:d5:18:0f:ad:
d4:93:93:40:e6:a9:82:2f:3e:fc:e8:31:58:b1:67:4e:6c:5d:
56:86:d0:ad:ca:42:2b:ea:3b:96:2c:1a:dc:5f:a8:e2:3e:ef:
d5:79:17:6f:8a:a2:76:48:7c:d9:62:c2:d7:b8:28:6b:38:21:
74:b8:d7:4d:02:7a:19:95:4b:70:cf:b6:87:a0:6a:83:3a:b0:
d2:3e:3a:17:c4:e1:9e:aa:8d:9b:8b:33:78:1d:f5:96:3b:a3:
45:ad:cc:8b:32:fe:04:7b:52:45:49:50:4b:15:2f:10:34:ee:
11:84:26:58:fb:ba:c9:60:42:52:5e:ca:70:5c:16:41:e4:6e:
4c:77:89:98:62:6a:e4:39:9f:b3:84:cf:64:70:97:ed:fb:3d:
41:02:55:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:29:26 2026 by rpki-client