Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZUySxHUWpwg7AFb3_t1EFEwg5wI.roa
File: ZUySxHUWpwg7AFb3_t1EFEwg5wI.roa (raw, json)
Hash identifier: R989nj62D7gQzgF/bYMaIgsUtZejFao4coB7POFvIWw=
Subject key identifier: 65:4C:92:C4:75:16:A7:08:3B:00:56:F7:FE:DD:44:14:4C:20:E7:02
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019E0AE89FB6449BFD7AD4666240EB522941
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZUySxHUWpwg7AFb3_t1EFEwg5wI.roa
Signing time: Sat 09 May 2026 04:04:37 +0000
ROA not before: Sat 09 May 2026 04:04:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 209874
IP address blocks: 5.83.142.0/24 maxlen: 24
5.83.150.0/24 maxlen: 24
5.175.174.0/24 maxlen: 24
5.175.217.0/24 maxlen: 24
5.231.25.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.129.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
94.103.167.0/24 maxlen: 24
94.249.150.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.180.0/24 maxlen: 24
94.249.197.0/24 maxlen: 24
94.249.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0a:e8:9f:b6:44:9b:fd:7a:d4:66:62:40:eb:52:29:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 9 04:04:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=654c92c47516a7083b0056f7fedd44144c20e702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:22:a1:76:4f:5f:8c:97:62:87:c8:ad:c5:
10:36:36:64:92:b8:7d:64:6a:85:fe:14:c6:6c:e3:
09:ab:41:33:95:e0:22:c4:47:b5:06:c5:0e:76:59:
2b:f5:7d:70:5d:8c:fc:2e:ad:c3:6e:f3:2d:74:52:
ed:6d:f6:b3:65:e0:6b:ea:d4:51:26:df:3b:0c:27:
e0:47:76:bf:da:d3:60:1c:40:9f:38:43:4f:e1:70:
38:dd:ee:dc:47:b2:18:b6:4b:5a:ab:0e:e1:ac:c6:
6e:bb:f6:8c:e8:64:fc:65:67:5c:ac:99:d4:90:49:
6a:ac:07:e3:e6:f2:d4:74:9d:06:6e:c7:be:ea:2e:
71:31:32:85:42:d0:a7:f2:ae:77:d9:34:53:a4:f6:
fa:5b:6e:0b:f4:8d:35:81:b2:82:71:9b:fb:69:32:
a5:7c:c6:3e:38:92:03:b8:10:90:ec:e1:55:82:a9:
fb:3e:7f:a2:80:23:d0:fd:50:fd:92:e2:67:50:31:
35:d6:87:78:eb:e2:c7:02:58:39:24:f3:81:51:f1:
96:cc:c2:bb:38:ee:8d:1e:81:73:55:58:2b:25:38:
5d:ac:4d:d2:5c:06:cb:47:a3:6b:f0:d8:01:71:ed:
b9:ef:15:6e:0d:a8:e8:1c:36:2f:15:9b:fd:3c:e4:
fa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4C:92:C4:75:16:A7:08:3B:00:56:F7:FE:DD:44:14:4C:20:E7:02
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZUySxHUWpwg7AFb3_t1EFEwg5wI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.142.0/24
5.83.150.0/24
5.175.174.0/24
5.175.217.0/24
5.231.25.0/24
5.231.82.0/24
5.231.96.0/24
77.90.39.0/24
85.118.162.0/24
87.239.129.0/24
89.144.18.0/24
94.103.167.0/24
94.249.150.0/24
94.249.153.0/24
94.249.180.0/24
94.249.197.0/24
94.249.202.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:03:18:b8:91:29:bf:d9:69:b9:3e:97:1b:ba:6a:cf:de:a0:
24:a6:a3:b7:91:ad:a2:60:ba:45:78:3e:36:9d:b5:14:69:0d:
03:79:42:c3:88:9b:d2:73:02:a2:2f:56:e2:4e:fd:4f:3d:ed:
bc:54:00:b4:b8:44:f2:7b:7d:1d:c4:79:28:57:9d:c9:24:6d:
77:40:c4:f8:4c:3d:a7:05:15:58:fa:7a:b8:fc:68:b2:d5:dc:
70:77:9c:fa:e0:57:1a:7b:0b:ed:83:58:04:42:ac:60:ad:0e:
58:26:34:f0:2c:62:ff:39:be:d7:56:2d:0f:6d:b0:59:a5:20:
8e:c5:57:29:c8:6f:2e:f6:b8:29:d0:bc:b9:0a:ef:98:12:fd:
80:99:14:97:f7:87:b3:f6:58:1b:d4:40:54:28:80:94:46:b3:
ff:e8:08:3b:b1:61:bb:68:65:0e:aa:98:d8:7a:df:b1:48:f4:
c7:c7:3a:33:26:2e:d1:3f:8b:40:e2:e8:e8:19:12:05:9d:e6:
ae:a4:92:ff:97:dc:f2:da:2f:79:b8:b2:8d:65:3d:c3:8a:24:
2b:7b:d5:d6:cf:9d:6d:db:de:ff:95:f5:e0:2c:15:07:9a:87:
50:3b:bb:63:16:e6:3e:b8:77:56:51:8e:9f:2d:44:53:7c:32:
0e:06:5c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:50:42 2026 by rpki-client