Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/lUd06kQpoW5nfYhYcM6nwVQlEjY.roa
File: lUd06kQpoW5nfYhYcM6nwVQlEjY.roa (raw, json)
Hash identifier: FWfFs3qvgwrMZB3rJxZVbtjwXzoEtzkV0Otm3X/Dk4Q=
Subject key identifier: 95:47:74:EA:44:29:A1:6E:67:7D:88:58:70:CE:A7:C1:54:25:12:36
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019E093C265CF2F126E74EB2E1BE67EA780F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/lUd06kQpoW5nfYhYcM6nwVQlEjY.roa
Signing time: Fri 08 May 2026 20:16:37 +0000
ROA not before: Fri 08 May 2026 20:16:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215365
IP address blocks: 5.231.118.0/24 maxlen: 24
5.231.119.0/24 maxlen: 24
77.90.15.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.60.0/24 maxlen: 24
77.90.61.0/24 maxlen: 24
77.90.63.0/24 maxlen: 24
94.249.186.0/24 maxlen: 24
94.249.187.0/24 maxlen: 24
94.249.188.0/24 maxlen: 24
185.129.84.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:48:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:09:3c:26:5c:f2:f1:26:e7:4e:b2:e1:be:67:ea:78:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 8 20:16:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=954774ea4429a16e677d885870cea7c154251236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:41:07:e7:b3:76:6c:68:7b:b1:31:90:96:4a:
2b:c7:56:a8:9c:06:c3:21:57:25:76:bd:b7:d3:c8:
cf:85:00:b6:6d:16:6b:7b:82:a9:7f:f8:47:2b:82:
81:89:04:b8:81:68:39:6b:24:0b:9e:43:bd:cc:ee:
14:b8:82:c1:a5:f3:aa:12:e9:f7:43:be:f0:99:67:
17:7a:3b:80:7f:16:72:26:3d:9b:b6:4c:51:0d:40:
91:bb:f3:09:bb:b6:d0:ce:2a:6f:84:98:48:cd:11:
69:e6:db:07:b3:cb:36:34:d9:7d:ed:33:8a:7e:dd:
cc:3c:e3:e2:e1:ad:b0:89:a6:b5:f6:49:6e:b3:17:
bf:78:cd:59:4f:eb:f1:53:fc:ee:56:3c:7e:c9:af:
61:2e:07:5f:d6:76:9c:a8:d5:3e:de:78:ee:8a:24:
0b:cc:86:6d:2b:e6:f5:27:a5:3f:fd:c3:68:c9:f0:
ee:d0:5a:5d:f5:4b:21:fa:b5:c7:e4:e4:8f:21:4f:
2c:7a:ce:eb:d8:da:a8:31:c3:53:bb:cc:6b:17:de:
f2:bb:15:14:ec:11:7a:d9:7d:15:26:2d:de:27:8b:
88:ac:0d:e6:81:3c:c3:e4:91:a8:c7:9e:f8:a5:bb:
b9:e2:1e:bd:b4:ae:ea:3f:3e:5f:c4:7a:32:66:d1:
dc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:47:74:EA:44:29:A1:6E:67:7D:88:58:70:CE:A7:C1:54:25:12:36
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/lUd06kQpoW5nfYhYcM6nwVQlEjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.118.0/23
77.90.15.0/24
77.90.52.0/24
77.90.60.0/23
77.90.63.0/24
94.249.186.0-94.249.188.255
185.129.84.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:df:26:d2:79:a3:30:25:eb:02:0c:ce:66:1c:03:a6:d3:a7:
02:c1:99:0c:c6:aa:f1:1e:63:94:54:94:ee:90:6b:9e:ca:1a:
69:e0:d3:9e:3c:89:fc:e0:dd:b2:b1:b2:2b:c7:4f:42:d3:44:
15:e8:37:17:d4:bb:84:33:1e:ff:55:ea:f8:fc:f8:04:6b:58:
65:ae:0a:ac:d3:e1:f4:af:e4:d2:d3:98:30:be:e3:76:20:13:
bc:bf:c4:58:63:7d:fb:fd:f7:80:bc:6b:2e:2f:05:c2:49:04:
a0:42:76:0f:9f:22:7c:f9:47:ee:b5:99:fc:ed:25:02:9e:2b:
88:c8:7f:49:8f:4e:de:7b:53:e6:0a:06:e4:49:c8:01:e4:c2:
78:72:32:9d:f7:f9:39:b7:11:eb:e0:3b:df:86:d9:da:77:f8:
16:62:49:22:1f:fc:58:81:d7:e0:e9:8c:be:86:21:a5:89:9f:
47:77:05:3d:a3:4c:65:6d:74:80:b3:3b:a2:a2:58:27:94:bc:
13:11:6b:64:06:9b:df:65:39:96:7f:cc:36:83:33:c3:45:c6:
09:d3:89:c1:b9:66:73:1b:9f:92:55:a2:d3:0c:8b:ce:5a:bb:
4e:8b:1e:d8:34:1e:d1:18:23:1d:39:38:99:50:c9:f8:f1:1f:
6d:6a:39:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:54:23 2026 by rpki-client