Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SllEqYTafno8DDixzbtUXGfrVhg.roa
File: SllEqYTafno8DDixzbtUXGfrVhg.roa (raw, json)
Hash identifier: 74WUat2f69sdXuu1RyM9J08U8xD6b5IHOFXbh1q5+44=
Subject key identifier: 4A:59:44:A9:84:DA:7E:7A:3C:0C:38:B1:CD:BB:54:5C:67:EB:56:18
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 019E81DCBAC9730F5B6F1FC5FF9844A0A2E7
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SllEqYTafno8DDixzbtUXGfrVhg.roa
Signing time: Mon 01 Jun 2026 06:26:26 +0000
ROA not before: Mon 01 Jun 2026 06:26:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 45.155.240.0/24 maxlen: 24
45.155.241.0/24 maxlen: 24
45.155.242.0/24 maxlen: 24
194.143.203.0/24 maxlen: 24
194.143.205.0/24 maxlen: 24
194.143.206.0/23 maxlen: 24
194.143.206.0/24 maxlen: 24
194.143.209.0/24 maxlen: 24
194.143.217.0/24 maxlen: 24
194.143.218.0/24 maxlen: 24
194.143.221.0/24 maxlen: 24
194.143.222.0/24 maxlen: 24
194.143.223.0/24 maxlen: 24
195.114.192.0/24 maxlen: 24
195.114.196.0/24 maxlen: 24
195.114.197.0/24 maxlen: 24
195.114.198.0/24 maxlen: 24
195.114.200.0/24 maxlen: 24
195.114.201.0/24 maxlen: 24
195.114.202.0/24 maxlen: 24
195.114.203.0/24 maxlen: 24
195.114.205.0/24 maxlen: 24
213.220.0.0/24 maxlen: 24
213.220.2.0/24 maxlen: 24
213.220.6.0/24 maxlen: 24
213.220.11.0/24 maxlen: 24
213.220.13.0/24 maxlen: 24
213.220.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:81:dc:ba:c9:73:0f:5b:6f:1f:c5:ff:98:44:a0:a2:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Jun 1 06:26:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4a5944a984da7e7a3c0c38b1cdbb545c67eb5618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2e:59:aa:41:15:ee:68:2b:d4:38:0d:32:c4:
cd:c3:cf:7e:2b:2b:90:0f:e3:33:ad:65:d0:2f:71:
f8:94:1f:9d:34:b4:ab:d5:1a:2d:db:f7:3b:5b:e1:
7a:1e:17:cc:f6:9c:84:db:e1:ba:c7:7e:6b:ae:f6:
47:82:99:8a:f8:35:92:0e:24:89:e2:6d:a3:32:3c:
05:25:80:18:e0:e6:c4:a0:bf:12:c6:df:14:20:73:
23:9d:6d:14:72:f3:10:d6:9f:dc:c2:20:a1:17:55:
11:ae:eb:8d:a3:b8:c7:51:ea:90:36:de:8a:58:50:
47:77:e9:9f:88:f6:6b:a3:f6:80:02:9c:1b:16:c4:
fa:6f:aa:24:1e:30:fd:aa:15:14:03:2c:a5:f1:93:
5a:a0:f5:a2:6d:9e:39:e0:ac:ac:60:9b:2b:82:fd:
4d:cd:fc:83:23:f3:71:a0:84:c9:ce:17:67:b9:80:
77:db:90:16:c6:bc:a9:3d:7d:a9:1c:34:be:0d:03:
03:ea:d2:34:96:4d:6e:44:10:b8:68:24:63:9d:d5:
3e:eb:b0:d6:37:79:35:74:5e:f7:22:6a:e1:41:1e:
99:b0:2f:80:28:1f:a3:d1:40:14:59:ed:c8:82:a8:
51:56:b8:09:ba:f6:85:0c:9a:0c:f5:98:05:13:da:
f2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:59:44:A9:84:DA:7E:7A:3C:0C:38:B1:CD:BB:54:5C:67:EB:56:18
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SllEqYTafno8DDixzbtUXGfrVhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.240.0-45.155.242.255
194.143.203.0/24
194.143.205.0-194.143.207.255
194.143.209.0/24
194.143.217.0-194.143.218.255
194.143.221.0-194.143.223.255
195.114.192.0/24
195.114.196.0-195.114.198.255
195.114.200.0/22
195.114.205.0/24
213.220.0.0/24
213.220.2.0/24
213.220.6.0/24
213.220.11.0/24
213.220.13.0-213.220.14.255
Signature Algorithm: sha256WithRSAEncryption
c0:a5:7f:e7:33:21:c5:9d:58:43:78:4b:d9:86:5c:f4:a5:38:
00:1a:ae:c5:0a:2e:18:30:0c:2c:c6:de:f9:0c:9e:e6:ac:63:
73:41:e1:92:76:12:c9:21:86:45:7a:f6:fb:b0:d7:e0:6f:b5:
3f:33:c7:41:f1:24:13:e2:a5:e6:c7:2a:d5:c6:29:b0:29:c4:
57:1d:46:85:5a:22:08:6a:59:0b:da:52:79:12:21:62:4c:cf:
25:23:21:84:8a:22:dc:d4:d5:39:70:4d:e3:1f:27:63:8c:b3:
e1:aa:10:85:d9:de:dd:f9:67:fd:b8:fc:63:56:fd:53:76:bd:
80:3e:4c:01:5e:c1:a7:ef:68:fc:a3:9c:6f:c7:93:8c:0f:9f:
8c:1b:9d:f7:79:65:42:fa:4c:c1:cf:91:b3:61:97:40:16:9f:
b0:d8:aa:a6:b2:cc:b9:a1:59:02:2c:4f:09:a1:db:aa:1d:19:
ad:bf:b1:a5:80:7c:b9:22:cf:93:7c:8e:d6:af:40:37:bc:00:
ad:0f:a3:c4:9d:d3:e9:f4:4f:63:8c:08:3f:a2:4e:2e:69:72:
24:76:90:15:cc:57:c1:59:0f:fa:6b:16:55:77:56:0a:ab:2a:
e7:68:f0:ce:7e:f6:8e:61:2e:3b:ce:7f:43:7d:4f:35:b8:3a:
fa:54:e8:c9
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAZ6B3LrJcw9bbx/F/5hEoKLnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjYwNjAxMDYyNjI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTU5NDRhOTg0ZGE3ZTdhM2MwYzM4YjFjZGJiNTQ1YzY3ZWI1NjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxS5ZqkEV7mgr1DgNMsTNw89+KyuQ
D+MzrWXQL3H4lB+dNLSr1Rot2/c7W+F6HhfM9pyE2+G6x35rrvZHgpmK+DWSDiSJ
4m2jMjwFJYAY4ObEoL8Sxt8UIHMjnW0UcvMQ1p/cwiChF1URruuNo7jHUeqQNt6K
WFBHd+mfiPZro/aAApwbFsT6b6okHjD9qhUUAyyl8ZNaoPWibZ454KysYJsrgv1N
zfyDI/NxoITJzhdnuYB325AWxrypPX2pHDS+DQMD6tI0lk1uRBC4aCRjndU+67DW
N3k1dF73ImrhQR6ZsC+AKB+j0UAUWe3IgqhRVrgJuvaFDJoM9ZgFE9rypwIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFEpZRKmE2n56PAw4sc27VFxn61YYMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvU2xsRXFZVGFmbm84RERpeHpidFVYR2ZyVmhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYowDAME
BC2b8AMEAC2b8gMEAMKPyzAMAwQAwo/NAwQEwo/AAwQAwo/RMAwDBADCj9kDBADC
j9owDAMEAMKP3QMEBcKPwAMEAMNywDAMAwQCw3LEAwQAw3LGAwQCw3LIAwQAw3LN
AwQA1dwAAwQA1dwCAwQA1dwGAwQA1dwLMAwDBADV3A0DBADV3A4wDQYJKoZIhvcN
AQELBQADggEBAMClf+czIcWdWEN4S9mGXPSlOAAarsUKLhgwDCzG3vkMnuasY3NB
4ZJ2EskhhkV69vuw1+BvtT8zx0HxJBPipebHKtXGKbApxFcdRoVaIghqWQvaUnkS
IWJMzyUjIYSKItzU1TlwTeMfJ2OMs+GqEIXZ3t35Z/24/GNW/VN2vYA+TAFewafv
aPyjnG/Hk4wPn4wbnfd5ZUL6TMHPkbNhl0AWn7DYqqayzLmhWQIsTwmh26odGa2/
saWAfLkiz5N8jtavQDe8AK0Po8Sd0+n0T2OMCD+iTi5pciR2kBXMV8FZD/prFlV3
VgqrKudo8M5+9o5hLjvOf0N9TzW4OvpU6Mk=
-----END CERTIFICATE-----
Generated at Thu Jun 4 09:01:20 2026 by rpki-client