Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RN2oiurH3n2WNrelX3kJfEPCOxk.roa
File: RN2oiurH3n2WNrelX3kJfEPCOxk.roa (raw, json)
Hash identifier: cwddwBrFbn1HDgEN6/jDYyZijqxS6Ujqsyvn9uqw2Q8=
Subject key identifier: 44:DD:A8:8A:EA:C7:DE:7D:96:36:B7:A5:5F:79:09:7C:43:C2:3B:19
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019E596B30500524C22875331E351627B167
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RN2oiurH3n2WNrelX3kJfEPCOxk.roa
Signing time: Sun 24 May 2026 09:57:37 +0000
ROA not before: Sun 24 May 2026 09:57:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.106.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.74.242.0/24 maxlen: 24
45.74.244.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.136.4.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/48 maxlen: 48
2a13:a440:3::/48 maxlen: 48
2a13:a440:4::/48 maxlen: 48
2a13:a440:5::/48 maxlen: 48
2a13:a440:7::/48 maxlen: 48
2a13:a441::/32 maxlen: 32
2a13:a442::/32 maxlen: 32
2a13:a443::/32 maxlen: 32
2a13:a444::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a446::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:59:6b:30:50:05:24:c2:28:75:33:1e:35:16:27:b1:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 24 09:57:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=44dda88aeac7de7d9636b7a55f79097c43c23b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3e:2a:7e:47:cc:c8:0b:71:05:4c:51:24:dd:
30:f5:e9:cb:fc:de:b0:a9:69:44:14:66:f9:15:06:
87:f3:69:62:c6:ca:37:b6:fe:94:91:46:1b:9d:cd:
39:11:5b:0d:1b:45:8b:fb:1e:20:c7:9e:17:93:bb:
69:e6:6c:82:df:9e:f6:17:55:3d:73:20:bd:f7:f2:
78:83:dc:64:ea:fc:d4:5f:d3:29:3b:30:68:7a:f7:
c7:b9:15:5b:b6:df:8a:ed:ff:e2:d9:8b:81:c9:fc:
55:86:09:ef:53:d4:a4:2d:0c:ed:57:9b:a6:84:5d:
89:b1:85:ae:cc:41:c0:72:77:ad:bb:b3:c3:b6:81:
ac:1d:e5:4f:70:2f:cb:0e:d7:dc:79:10:f9:2f:4b:
2b:4c:c3:f2:6b:6a:7e:a6:27:e8:b7:4a:cd:19:77:
8d:cd:6c:ae:33:b3:97:88:a2:5f:bb:2e:09:be:78:
8c:c1:b5:e8:2e:3a:17:9b:c8:2f:34:6e:44:2b:c7:
df:c4:69:64:4e:20:21:34:52:09:4e:0b:2c:9a:7e:
3e:b5:72:e0:3e:e7:1c:b4:33:bf:c3:fb:3e:e7:8f:
f2:9b:a5:b6:3f:dd:c7:ac:47:0c:42:f8:ff:fa:9b:
93:31:ec:b3:46:4d:9b:a4:d5:e8:59:3d:40:f5:08:
69:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DD:A8:8A:EA:C7:DE:7D:96:36:B7:A5:5F:79:09:7C:43:C2:3B:19
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/RN2oiurH3n2WNrelX3kJfEPCOxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0-5.180.107.255
45.74.242.0/24
45.74.244.0/24
45.131.0.0/24
45.136.4.0/24
77.83.200.0/22
194.116.237.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/48
2a13:a440:3::-2a13:a440:5:ffff:ffff:ffff:ffff:ffff
2a13:a440:7::/48
2a13:a441::-2a13:a447:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
69:b6:5c:d3:25:99:fb:14:e9:4f:a7:d3:19:d1:29:43:bc:79:
c7:ff:3c:da:f9:8d:c5:44:eb:cf:e2:9e:38:22:b5:d9:18:be:
33:53:a9:1b:78:62:0e:c6:90:74:ee:0a:30:28:53:d2:30:5d:
49:bd:70:ca:4d:0e:66:6e:0c:c0:1e:d2:93:62:3c:fd:93:e2:
a0:da:e4:a0:74:e5:b6:72:f8:9d:55:06:af:96:82:14:6a:d7:
a4:bc:78:31:d2:ac:a2:58:54:04:43:33:d7:16:f3:99:ab:cf:
13:cd:6e:d0:8d:e6:b3:c2:c6:73:ce:e9:7f:c1:a6:f7:09:a1:
94:49:e0:e4:55:5b:22:45:bc:03:6f:cd:0d:d7:b6:c6:e2:28:
a9:d2:cb:8b:06:e1:6d:f2:c9:82:06:f9:64:13:fa:7b:8c:1c:
79:6a:44:6c:c4:30:5c:8d:1c:60:da:4d:f2:fb:e2:74:2d:bd:
35:19:82:57:0f:53:b0:19:0c:34:58:d9:86:3f:8d:94:2f:24:
0f:52:2a:7b:1d:9e:3e:c5:02:d4:9e:f8:56:7e:7b:d0:ff:3c:
ec:cf:a2:16:25:5e:76:e8:eb:1d:b2:e2:1c:0c:9b:01:89:5d:
d6:5a:74:0d:85:76:04:24:3b:d6:fd:e0:72:8b:18:a7:34:bc:
16:c9:31:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 15:49:54 2026 by rpki-client