Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/L1y1n7vwtV_ZZ6f70GX8Ca_tsko.roa
File: L1y1n7vwtV_ZZ6f70GX8Ca_tsko.roa (raw, json)
Hash identifier: lCvX9qpvtnukUOvjzxgh8UYmCcQAY/5d+y3Ps/qJrU0=
Subject key identifier: 2F:5C:B5:9F:BB:F0:B5:5F:D9:67:A7:FB:D0:65:FC:09:AF:ED:B2:4A
Certificate issuer: /CN=78d778fe5754dc3e16d92270424be21b9281ec72
Certificate serial: 019E401EDFE64375E4D1A956F7256C21D924
Authority key identifier: 78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/L1y1n7vwtV_ZZ6f70GX8Ca_tsko.roa
Signing time: Tue 19 May 2026 12:03:45 +0000
ROA not before: Tue 19 May 2026 12:03:45 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51018
IP address blocks: 95.159.64.0/18 maxlen: 18
95.159.64.0/20 maxlen: 20
95.159.64.0/24 maxlen: 24
95.159.65.0/24 maxlen: 24
95.159.66.0/24 maxlen: 24
95.159.67.0/24 maxlen: 24
95.159.68.0/24 maxlen: 24
95.159.69.0/24 maxlen: 24
95.159.70.0/24 maxlen: 24
95.159.71.0/24 maxlen: 24
95.159.72.0/24 maxlen: 24
95.159.73.0/24 maxlen: 24
95.159.74.0/24 maxlen: 24
95.159.75.0/24 maxlen: 24
95.159.76.0/24 maxlen: 24
95.159.77.0/24 maxlen: 24
95.159.78.0/24 maxlen: 24
95.159.79.0/24 maxlen: 24
95.159.80.0/20 maxlen: 20
95.159.80.0/22 maxlen: 22
95.159.80.0/23 maxlen: 23
95.159.80.0/24 maxlen: 24
95.159.81.0/24 maxlen: 24
95.159.82.0/23 maxlen: 23
95.159.82.0/24 maxlen: 24
95.159.83.0/24 maxlen: 24
95.159.84.0/22 maxlen: 22
95.159.84.0/23 maxlen: 23
95.159.84.0/24 maxlen: 24
95.159.85.0/24 maxlen: 24
95.159.86.0/23 maxlen: 23
95.159.86.0/24 maxlen: 24
95.159.87.0/24 maxlen: 24
95.159.88.0/22 maxlen: 22
95.159.88.0/23 maxlen: 23
95.159.88.0/24 maxlen: 24
95.159.89.0/24 maxlen: 24
95.159.90.0/24 maxlen: 24
95.159.91.0/24 maxlen: 24
95.159.92.0/24 maxlen: 24
95.159.93.0/24 maxlen: 24
95.159.94.0/24 maxlen: 24
95.159.95.0/24 maxlen: 24
95.159.96.0/20 maxlen: 20
95.159.96.0/24 maxlen: 24
95.159.97.0/24 maxlen: 24
95.159.98.0/24 maxlen: 24
95.159.99.0/24 maxlen: 24
95.159.100.0/24 maxlen: 24
95.159.101.0/24 maxlen: 24
95.159.102.0/24 maxlen: 24
95.159.103.0/24 maxlen: 24
95.159.104.0/22 maxlen: 22
95.159.104.0/24 maxlen: 24
95.159.105.0/24 maxlen: 24
95.159.106.0/24 maxlen: 24
95.159.107.0/24 maxlen: 24
95.159.108.0/24 maxlen: 24
95.159.109.0/24 maxlen: 24
95.159.110.0/24 maxlen: 24
95.159.111.0/24 maxlen: 24
95.159.112.0/20 maxlen: 20
95.159.112.0/21 maxlen: 21
95.159.112.0/24 maxlen: 24
95.159.113.0/24 maxlen: 24
95.159.114.0/24 maxlen: 24
95.159.115.0/24 maxlen: 24
95.159.116.0/24 maxlen: 24
95.159.117.0/24 maxlen: 24
95.159.118.0/24 maxlen: 24
95.159.119.0/24 maxlen: 24
95.159.120.0/21 maxlen: 21
95.159.120.0/24 maxlen: 24
95.159.121.0/24 maxlen: 24
95.159.122.0/24 maxlen: 24
95.159.123.0/24 maxlen: 24
95.159.124.0/24 maxlen: 24
95.159.125.0/24 maxlen: 24
95.159.126.0/24 maxlen: 24
95.159.127.0/24 maxlen: 24
178.22.32.0/21 maxlen: 21
178.22.32.0/22 maxlen: 22
178.22.36.0/22 maxlen: 22
194.180.40.0/22 maxlen: 22
194.180.40.0/23 maxlen: 23
194.180.40.0/24 maxlen: 24
194.180.41.0/24 maxlen: 24
2a01:58a0::/32 maxlen: 32
2a01:58a0::/40 maxlen: 40
2a01:58a0:100::/40 maxlen: 40
2a01:58a0:200::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/eNd4_ldU3D4W2SJwQkviG5KB7HI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/eNd4_ldU3D4W2SJwQkviG5KB7HI.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:1e:df:e6:43:75:e4:d1:a9:56:f7:25:6c:21:d9:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d778fe5754dc3e16d92270424be21b9281ec72
Validity
Not Before: May 19 12:03:45 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=2f5cb59fbbf0b55fd967a7fbd065fc09afedb24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bb:9d:a8:3d:4d:62:23:0e:4b:13:51:79:4e:
60:df:5d:a3:14:ca:2f:24:51:3b:cd:0b:37:77:7f:
0e:4d:15:85:24:c9:38:83:d0:74:6c:fc:b4:7f:20:
78:a7:b8:e7:aa:e9:c0:ba:f4:78:1d:99:d9:26:82:
fd:19:c4:0e:65:8c:3e:12:74:9f:b7:af:6a:f0:02:
ef:54:4c:e3:a3:36:5f:61:e1:2b:24:1d:87:a3:81:
1f:f1:2d:89:f5:4e:04:ff:c6:4f:0f:bb:28:81:bd:
e6:2e:40:58:5b:34:55:79:12:52:02:38:41:5d:59:
7c:1c:84:f2:f7:80:36:09:6a:79:4e:33:4c:82:9b:
bd:12:d2:15:95:aa:db:a7:97:e8:b1:94:6c:e4:39:
7d:7e:95:8e:35:d1:39:e9:4f:35:d4:47:49:09:39:
52:95:ee:08:f4:89:a7:39:5f:c7:65:24:47:41:fa:
fa:50:77:14:95:d4:e8:c6:1c:3f:ce:d9:f8:29:9d:
78:96:16:89:cd:84:19:c5:aa:3b:72:67:20:91:99:
ab:5b:55:b7:0d:ae:84:d0:00:64:d5:ac:53:f0:84:
23:45:38:04:5d:5d:cc:93:66:2b:5f:27:6c:4c:08:
28:a0:99:d7:54:dd:1d:0e:db:97:40:21:f8:17:da:
81:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:5C:B5:9F:BB:F0:B5:5F:D9:67:A7:FB:D0:65:FC:09:AF:ED:B2:4A
X509v3 Authority Key Identifier:
keyid:78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/L1y1n7vwtV_ZZ6f70GX8Ca_tsko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/eNd4_ldU3D4W2SJwQkviG5KB7HI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.159.64.0/18
178.22.32.0/21
194.180.40.0/22
IPv6:
2a01:58a0::/32
Signature Algorithm: sha256WithRSAEncryption
76:b8:7b:b0:e7:16:a9:29:37:33:12:8d:4e:d6:c5:8e:b6:50:
3d:ad:5a:53:51:04:85:2d:a4:19:61:bc:c0:5c:dd:58:31:67:
e9:30:02:fe:8b:fb:88:ac:0f:25:d6:66:65:28:f7:c0:be:bb:
05:66:0e:92:93:f4:42:3b:e0:4b:2d:23:bf:0c:e7:b3:76:a6:
4f:93:35:76:6e:6e:c4:79:47:70:02:2b:6c:01:dd:4f:6f:e4:
7e:ef:7d:ff:5f:a4:12:45:34:df:99:1f:f7:7f:19:60:67:be:
ca:75:09:9d:7f:c0:cc:b0:be:7a:7d:80:52:9c:cf:ef:e6:17:
76:5c:26:57:3e:02:1b:e4:c9:b9:3c:f5:82:6a:bb:1d:63:52:
4b:e0:9e:27:82:66:ad:7a:80:c4:fb:63:f6:c8:0c:71:91:eb:
66:64:0a:1a:68:f4:64:ed:2f:e3:7a:ea:8e:c3:5a:f6:9f:f4:
83:27:80:82:8c:63:d1:2f:dc:e6:fd:33:13:fd:03:19:f5:23:
7f:50:13:da:3e:ec:da:23:bf:1d:b5:a8:a1:a8:7a:df:13:4a:
76:14:f1:2b:61:21:7e:30:7f:30:79:57:64:8b:65:d5:99:e3:
bf:bf:fb:4a:8e:9a:17:a7:c0:9c:5c:a8:1c:d4:ce:16:bd:07:
b2:69:b5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:04:20 2026 by rpki-client