Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/teS8A0OF6kU7Fyd8ogb8ojx2dFg.roa
File: teS8A0OF6kU7Fyd8ogb8ojx2dFg.roa (raw, json)
Hash identifier: UoVwStuScEzfJF7g5W8RhkXDaXEbyzUdCxhehzdgwrY=
Subject key identifier: B5:E4:BC:03:43:85:EA:45:3B:17:27:7C:A2:06:FC:A2:3C:76:74:58
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 019E25A7D6D69F062F1CDE5247301F079877
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/teS8A0OF6kU7Fyd8ogb8ojx2dFg.roa
Signing time: Thu 14 May 2026 08:43:36 +0000
ROA not before: Thu 14 May 2026 08:43:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9123
IP address blocks: 80.242.57.0/24 maxlen: 24
92.63.176.0/22 maxlen: 22
92.63.176.0/24 maxlen: 24
92.63.177.0/24 maxlen: 24
92.63.178.0/24 maxlen: 24
92.63.179.0/24 maxlen: 24
109.196.98.0/24 maxlen: 24
109.196.99.0/24 maxlen: 24
109.196.100.0/24 maxlen: 24
109.196.101.0/24 maxlen: 24
109.196.102.0/24 maxlen: 24
109.196.103.0/24 maxlen: 24
185.42.14.0/24 maxlen: 24
188.119.115.0/24 maxlen: 24
217.78.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:25:a7:d6:d6:9f:06:2f:1c:de:52:47:30:1f:07:98:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: May 14 08:43:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b5e4bc034385ea453b17277ca206fca23c767458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ff:61:a9:04:e9:74:10:e6:a6:34:2f:33:2d:
c9:68:a3:25:42:33:59:53:c3:b5:26:89:71:6e:99:
5e:88:e1:b8:a0:89:db:19:52:5d:a4:d1:91:6c:e7:
d9:13:ba:ba:43:34:80:7c:a8:de:33:4a:40:16:0b:
48:b9:b2:5f:94:d7:76:b3:8e:dd:78:55:4d:aa:c8:
97:98:c1:01:43:36:8e:75:ae:b1:49:ab:dd:c9:58:
8f:36:e0:31:ed:cf:27:06:a1:a3:1b:79:d1:47:27:
14:13:45:35:ea:d0:87:24:55:54:df:73:12:c9:aa:
04:e2:1f:27:da:15:93:74:35:f1:3b:fe:b0:4c:4b:
54:2b:b8:24:33:c1:d0:12:6b:18:26:e6:9a:d0:11:
57:b3:0f:6b:00:30:32:ba:13:3c:48:f4:38:80:c7:
17:c0:4f:92:5c:21:c3:0c:a8:4a:dd:ae:5d:96:3c:
fc:f4:74:f2:f8:d8:95:71:6d:0f:f0:48:74:ff:e7:
7a:2f:30:78:0d:3c:60:7f:27:00:d9:11:4f:83:7d:
19:30:e8:06:a5:fc:11:30:52:df:66:87:e4:11:c2:
a9:98:15:76:d3:49:cb:ab:8f:56:f4:e7:06:71:2c:
fc:19:70:00:08:c6:b3:6c:6c:1c:a6:61:31:15:31:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E4:BC:03:43:85:EA:45:3B:17:27:7C:A2:06:FC:A2:3C:76:74:58
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/teS8A0OF6kU7Fyd8ogb8ojx2dFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.242.57.0/24
92.63.176.0/22
109.196.98.0-109.196.103.255
185.42.14.0/24
188.119.115.0/24
217.78.234.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:61:13:73:ab:b5:5e:3a:25:75:38:72:04:5f:79:23:4f:b7:
18:11:1f:1f:5c:87:48:dd:ee:15:bd:1b:52:18:01:74:76:c7:
35:12:76:42:9a:f0:ca:4a:0e:72:ef:86:12:b5:39:8b:6f:82:
de:af:af:64:34:a6:3d:56:54:e3:75:f6:fb:d9:37:15:15:32:
30:0e:88:4e:04:63:81:60:73:5d:33:8f:8c:cd:24:05:25:6a:
00:e0:c4:00:6f:83:b6:c7:56:ca:8c:83:fe:6c:c8:98:09:6d:
d1:eb:cd:d4:c1:a7:8b:c2:8b:d0:06:48:5e:ee:24:75:00:9d:
bf:bf:1e:23:01:9d:6c:af:9e:76:2f:2e:fa:cb:e2:eb:e7:3a:
fb:3a:d6:ac:e8:a4:af:55:15:fb:fc:bb:55:ce:ec:df:48:19:
d2:44:71:02:f4:8f:02:b7:29:88:e0:7f:20:98:8f:32:3e:bc:
8c:47:8b:7e:ed:2b:b7:ca:12:e0:d9:a3:d7:11:45:63:7e:6b:
38:06:32:ff:45:91:c9:e5:09:19:1b:8c:ba:17:c3:dc:61:1d:
cb:7d:72:1d:64:c8:db:49:20:30:da:c7:6b:54:34:a6:ab:f5:
76:f1:b2:39:ca:e7:b5:eb:ad:d8:36:b3:47:d5:4e:7f:60:67:
90:56:a1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 26 02:55:43 2026 by rpki-client