Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/s6RbrOiv79C1FCcXGZ-6ibKds9w.roa
File: s6RbrOiv79C1FCcXGZ-6ibKds9w.roa (raw, json)
Hash identifier: YVXe8UDetDFnTa7IWwXWmLacDEAD4CTRQlOV1qsy3JU=
Subject key identifier: B3:A4:5B:AC:E8:AF:EF:D0:B5:14:27:17:19:9F:BA:89:B2:9D:B3:DC
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019D236081A47C68CB8390D79ADEF4B8C449
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/s6RbrOiv79C1FCcXGZ-6ibKds9w.roa
Signing time: Wed 25 Mar 2026 05:03:40 +0000
ROA not before: Wed 25 Mar 2026 05:03:40 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 211066
IP address blocks: 5.83.134.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.175.192.0/24 maxlen: 24
5.175.221.0/24 maxlen: 24
85.93.31.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.73.0/24 maxlen: 24
89.106.75.0/24 maxlen: 24
89.106.82.0/24 maxlen: 24
89.106.86.0/24 maxlen: 24
94.249.243.0/24 maxlen: 24
94.249.246.0/24 maxlen: 24
94.249.247.0/24 maxlen: 24
94.249.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:23:60:81:a4:7c:68:cb:83:90:d7:9a:de:f4:b8:c4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 25 05:03:40 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b3a45bace8afefd0b5142717199fba89b29db3dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:aa:c6:d5:6b:2a:81:cb:f7:c7:30:bd:44:
74:0f:bf:fe:ec:44:85:2c:1b:82:a0:cc:10:a2:90:
e7:17:65:1a:6e:8b:a3:ca:7f:b4:a3:75:0e:33:34:
ad:95:04:85:43:4b:05:9b:86:92:0a:f1:92:aa:92:
c2:3b:73:60:8a:4d:b3:28:c2:08:c3:e4:19:cd:6b:
64:6b:e7:e9:8b:b6:8a:ad:9e:23:2a:c3:6e:85:e3:
92:55:63:56:19:d5:bf:42:41:73:92:d6:aa:bf:08:
b3:29:79:75:b0:cd:78:49:04:98:92:a8:a4:9e:01:
87:c6:c1:c8:38:09:50:17:90:01:93:13:8b:54:f4:
69:d5:84:a1:b9:bd:d6:fe:98:48:65:a8:9a:14:ba:
4d:31:1e:c1:84:e9:f3:bf:c9:94:57:44:c4:a9:b5:
b5:19:55:78:3c:ef:c3:ba:bb:d3:cf:da:6f:18:8b:
98:d0:e0:f8:34:76:57:90:17:2d:a5:d2:17:64:d8:
d6:52:72:23:20:3c:2b:93:44:1e:e5:b0:f1:90:92:
34:bc:69:d9:58:51:52:76:37:e2:87:4f:01:25:76:
4a:cb:ba:63:1c:d3:2b:ed:73:af:00:e8:37:4d:44:
8d:75:d7:21:ab:8c:51:80:2e:4c:63:da:66:d1:8d:
1b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A4:5B:AC:E8:AF:EF:D0:B5:14:27:17:19:9F:BA:89:B2:9D:B3:DC
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/s6RbrOiv79C1FCcXGZ-6ibKds9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.134.0/24
5.175.140.0/24
5.175.192.0/24
5.175.221.0/24
85.93.31.0/24
87.239.131.0/24
89.106.73.0/24
89.106.75.0/24
89.106.82.0/24
89.106.86.0/24
94.249.243.0/24
94.249.246.0/23
94.249.249.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:e5:e1:5a:78:b9:0f:48:bd:fb:8b:53:0a:ae:bc:a8:3b:24:
e2:5e:74:73:64:47:55:d6:9d:73:06:d6:45:1c:1f:ac:20:27:
b0:88:e4:ed:13:77:03:64:87:1a:98:03:4a:f7:fe:25:41:52:
14:14:cf:d6:48:97:eb:0b:57:f5:37:af:ed:ba:1e:27:fa:4c:
13:42:6c:0f:5c:a1:ec:43:13:6f:a5:76:ea:42:c7:af:17:2b:
d2:09:21:11:42:c6:ac:07:e7:e7:3f:67:87:34:82:a9:5f:a3:
6f:83:73:c1:92:be:9e:2d:ee:cc:df:fc:45:5f:f3:83:9a:20:
9a:04:f0:69:88:69:5d:6d:74:e0:3e:6b:0d:8a:07:94:b9:93:
84:53:d6:37:32:e2:93:c3:aa:28:d5:8f:7d:0d:fd:57:c9:f1:
50:98:4d:ae:9d:45:22:68:5a:e5:97:db:1f:27:f9:c3:05:05:
0f:23:84:25:f4:c1:a0:c3:27:1c:80:d0:35:7f:38:2a:be:dd:
cd:e9:c7:ea:6a:a3:77:c2:80:81:ff:2f:eb:39:51:14:29:1d:
a5:78:e5:d8:43:50:5c:2d:fc:ff:8a:16:cf:12:54:6d:1a:e9:
81:78:dd:cd:ae:b1:3e:1c:2d:23:5d:77:6e:ff:33:a7:14:c5:
49:65:d4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:46:58 2026 by rpki-client