Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/95_E3nN2-d-SH6BMWNDH89DwWWw.roa
File: 95_E3nN2-d-SH6BMWNDH89DwWWw.roa (raw, json)
Hash identifier: 2gsICIwIfIQ8S9OZ0wlLRJuSz0VYCyMSBi78pUEr+AU=
Subject key identifier: F7:9F:C4:DE:73:76:F9:DF:92:1F:A0:4C:58:D0:C7:F3:D0:F0:59:6C
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019E2F4ED8DE74216B182EE340C4073DBEA5
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/95_E3nN2-d-SH6BMWNDH89DwWWw.roa
Signing time: Sat 16 May 2026 05:42:36 +0000
ROA not before: Sat 16 May 2026 05:42:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 48678
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.106.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.74.242.0/24 maxlen: 24
45.74.247.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.2.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.136.4.0/24 maxlen: 24
45.141.149.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
91.208.204.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb05::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440:7::/48 maxlen: 48
2a13:a441::/32 maxlen: 32
2a13:a442::/32 maxlen: 32
2a13:a443::/32 maxlen: 32
2a13:a444::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a446::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:4e:d8:de:74:21:6b:18:2e:e3:40:c4:07:3d:be:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 16 05:42:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f79fc4de7376f9df921fa04c58d0c7f3d0f0596c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6f:e4:c7:fa:e2:1f:b2:81:81:bf:84:c2:36:
8a:52:0f:f9:24:80:6a:70:50:a3:8f:e5:1f:f2:00:
6d:b3:9b:4a:38:69:d1:d8:3f:93:80:fb:cb:26:03:
e4:eb:ec:e3:e8:d0:2f:d8:68:09:90:e8:bf:a1:26:
b9:13:4d:b4:a8:3b:25:c0:f8:e4:97:a8:8d:87:79:
c3:c1:98:72:8d:17:f5:42:72:01:a8:0a:0a:f5:8a:
75:d0:1d:3f:a7:4e:02:79:37:92:6c:75:32:ed:e2:
44:6d:53:b5:6c:7a:c5:d5:ca:d0:ca:51:80:14:85:
61:1a:61:5e:3d:bc:02:88:78:ba:93:0d:19:6f:50:
5a:cf:be:e5:21:37:42:50:23:4a:ad:e2:65:c2:dc:
33:52:70:44:29:e9:1a:22:63:ef:e8:69:2b:09:c6:
e0:d2:dd:7b:21:93:25:87:d8:44:b7:f4:8a:05:44:
3c:25:44:1d:5a:5b:02:33:88:98:c9:7f:93:72:10:
a3:32:e0:78:dd:be:fa:7c:aa:da:09:0b:57:08:67:
d5:76:90:d1:c3:ba:ce:8a:ed:9b:2d:a8:2f:37:50:
53:ca:bb:a1:33:8c:49:5c:32:4b:75:40:6f:b1:e6:
fe:07:9b:ea:45:5f:39:ed:37:d7:77:61:d0:03:36:
ba:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9F:C4:DE:73:76:F9:DF:92:1F:A0:4C:58:D0:C7:F3:D0:F0:59:6C
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/95_E3nN2-d-SH6BMWNDH89DwWWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0-5.180.107.255
45.74.242.0/24
45.74.247.0/24
45.131.0.0/24
45.131.2.0/23
45.136.4.0/24
45.141.149.0/24
77.83.200.0-77.83.202.255
91.208.204.0/24
194.116.237.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440:7::/48
2a13:a441::-2a13:a447:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
21:a5:b4:a2:c9:c7:5e:d6:a2:87:f6:49:71:b9:4b:b5:16:03:
43:75:4e:40:e7:3e:fd:ab:9a:30:36:06:a7:4c:f2:e8:96:97:
b9:dc:5a:14:a0:7d:c0:7d:0a:e2:d7:01:69:67:45:8b:c7:d8:
e0:06:e8:8b:53:40:5f:e1:2d:6f:a7:3c:d0:bc:33:48:1e:55:
b5:87:a3:e8:89:d1:e2:ed:b8:28:d8:1b:3d:12:30:48:32:a6:
8f:3c:20:15:c7:ec:1b:03:91:0b:7f:77:55:00:04:49:67:3f:
d3:a1:4b:dc:ec:9f:df:d8:26:1d:64:a9:62:f4:1e:3a:80:8f:
25:8a:38:5d:9c:65:4a:48:52:7d:08:92:e7:fc:36:09:bd:77:
f8:fe:9a:12:7d:e8:e3:19:59:54:fc:55:ea:5a:dd:5f:8a:d2:
d1:b4:69:f1:a2:92:76:0e:0c:b6:ab:67:a5:8a:da:f8:04:9a:
c4:f0:7b:eb:be:a3:b4:82:76:95:97:8f:a5:09:f3:ed:19:39:
ff:8d:8a:8c:06:32:f5:07:ac:83:42:d4:b3:45:6d:4b:90:cc:
c1:86:ec:32:41:5c:23:6b:ab:7f:72:b1:dc:34:fd:9c:8c:f6:
c0:ae:68:58:2c:4f:06:74:92:51:3d:90:2a:e8:6c:e2:37:6c:
ef:28:6e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 03:19:43 2026 by rpki-client