Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/27SRv4kmqs6pneHFx0Jvv7-afbs.roa
File: 27SRv4kmqs6pneHFx0Jvv7-afbs.roa (raw, json)
Hash identifier: GdoyF3TCd32qIt/ZdGo18CsxbH4m2C2R+bXGYdNvXFg=
Subject key identifier: DB:B4:91:BF:89:26:AA:CE:A9:9D:E1:C5:C7:42:6F:BF:BF:9A:7D:BB
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 019D0615430BB013F7A7DAA6A0EC1BB9EB29
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/27SRv4kmqs6pneHFx0Jvv7-afbs.roa
Signing time: Thu 19 Mar 2026 12:32:29 +0000
ROA not before: Thu 19 Mar 2026 12:32:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 30870
IP address blocks: 213.247.55.0/24 maxlen: 24
213.247.57.0/24 maxlen: 24
213.247.62.0/23 maxlen: 23
2001:16f8:15::/48 maxlen: 48
2001:16f8:666::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:06:15:43:0b:b0:13:f7:a7:da:a6:a0:ec:1b:b9:eb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Mar 19 12:32:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=dbb491bf8926aacea99de1c5c7426fbfbf9a7dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:cb:24:54:10:e7:73:39:7b:65:e7:df:8a:
95:b6:0d:40:66:8a:8f:56:02:91:f4:8b:45:e5:62:
24:02:02:d6:cb:61:d7:bf:4c:a8:27:f1:c9:c8:07:
ee:ba:a3:5a:e1:6a:7e:b1:3f:00:e7:71:47:e7:f8:
72:72:39:b2:6e:87:bd:8c:33:04:60:93:f5:2e:e9:
f8:da:60:11:fb:df:7c:0e:e7:24:54:7f:25:a3:c5:
74:40:d8:75:21:64:72:0a:92:9b:20:cf:05:16:33:
fe:53:4e:ba:ed:b4:28:4e:a8:ac:0a:1e:f2:66:93:
d5:53:5e:ef:fa:b9:cf:36:cd:0e:42:c2:cf:f0:5b:
4c:b4:2c:e6:7b:27:b8:6b:80:a3:16:c8:c0:01:a6:
cf:c4:b4:80:62:15:4a:4d:af:ab:03:37:c1:e7:e8:
25:5c:58:ab:99:1d:7b:51:c0:3f:84:0e:26:17:32:
7d:13:f5:31:cd:4c:b2:28:28:75:9f:6d:67:38:59:
f0:7d:55:57:19:e1:38:b7:84:c4:7c:67:12:76:0b:
b9:49:40:a6:80:f4:18:f1:31:eb:31:af:91:d1:f4:
a5:51:17:86:d4:dc:b5:ce:7d:ad:7d:02:e3:ed:e2:
9d:d7:88:a4:61:d5:13:9f:7b:a3:60:e1:87:86:03:
0b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B4:91:BF:89:26:AA:CE:A9:9D:E1:C5:C7:42:6F:BF:BF:9A:7D:BB
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/27SRv4kmqs6pneHFx0Jvv7-afbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.247.55.0/24
213.247.57.0/24
213.247.62.0/23
IPv6:
2001:16f8:15::/48
2001:16f8:666::/48
Signature Algorithm: sha256WithRSAEncryption
b7:b1:72:29:07:99:76:80:05:b4:80:53:a6:18:f2:51:86:10:
74:ec:fd:3d:04:25:9f:4f:6d:73:5c:41:f6:23:05:c9:74:82:
9b:96:04:fc:1d:5d:22:ad:4e:93:7d:d4:31:c7:16:d6:db:b0:
1f:49:da:4a:89:87:55:c9:89:41:d8:bd:e2:32:f7:bf:1c:64:
25:2b:c5:a5:fd:87:9e:bb:cf:6d:f2:08:40:76:67:61:bc:09:
55:e2:c3:19:7f:f5:8f:df:51:8a:a0:ac:0b:46:9e:e2:67:01:
d9:10:3c:30:95:68:a8:f6:cd:37:45:37:d9:e2:33:d2:88:7f:
bb:17:0c:fd:e8:54:d5:8b:f2:d4:d3:10:5c:ae:e8:e2:d3:ec:
33:95:26:ba:61:99:df:ff:35:7c:8c:3b:59:ae:09:1d:99:7c:
fa:4c:f0:04:9d:a2:8f:82:f4:83:27:70:67:18:5a:3e:83:13:
d3:0a:25:b1:81:14:c0:f9:85:12:73:8b:a4:64:ba:a7:fe:3f:
7b:90:a1:fb:67:0d:03:d5:cc:53:13:e8:7a:cd:83:ca:47:68:
d7:8a:ec:d8:d5:e9:48:35:0b:c7:c5:44:ba:e4:0e:78:2c:d9:
32:a7:56:dd:0a:0f:f8:3c:0b:3e:5b:37:40:3e:94:a2:de:5a:
b0:57:2b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:56:34 2026 by rpki-client