Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zSrCJ0ydUMelsxSy_zVhcNiNgMo.roa
File: zSrCJ0ydUMelsxSy_zVhcNiNgMo.roa (raw, json)
Hash identifier: HwsDv37lhYQBux14Lzp104rxT5O4XdtIL7VAiW1an38=
Subject key identifier: CD:2A:C2:27:4C:9D:50:C7:A5:B3:14:B2:FF:35:61:70:D8:8D:80:CA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 019D2A271782D5BB73EDE1ACBDD12A343BB9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zSrCJ0ydUMelsxSy_zVhcNiNgMo.roa
Signing time: Thu 26 Mar 2026 12:38:18 +0000
ROA not before: Thu 26 Mar 2026 12:38:18 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 16276
IP address blocks: 163.5.62.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:27:17:82:d5:bb:73:ed:e1:ac:bd:d1:2a:34:3b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 26 12:38:18 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cd2ac2274c9d50c7a5b314b2ff356170d88d80ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:41:5c:4a:16:04:f6:fd:48:a9:ac:4e:29:
85:c5:9d:cb:14:15:bd:bd:ae:5c:ed:b7:24:dd:5d:
7f:ae:a5:dd:d2:35:17:4f:fb:61:9a:09:6e:da:69:
0b:3b:b6:21:0a:72:aa:a3:34:39:d4:cb:5d:4c:0d:
d1:fb:5b:14:fb:f2:a3:9e:dc:c5:9d:2a:cb:c1:31:
10:cf:d2:e6:ed:85:1e:d3:6d:26:08:4c:38:d7:e9:
aa:d8:36:3b:e5:1a:9c:46:aa:73:63:e9:4b:7e:2b:
b3:2e:67:7f:d9:fd:c7:63:62:a4:5a:44:ea:50:0e:
7b:69:10:24:08:83:d3:5b:bf:09:01:9f:04:f8:ee:
15:97:19:11:6c:7d:07:b5:e5:ac:a6:0b:d4:18:9e:
2d:cf:bb:ca:56:c5:8a:7a:4f:7e:b7:d6:e4:8e:49:
93:db:6c:03:eb:1b:60:ed:f8:c2:ca:a9:d5:93:10:
d6:3d:47:db:b3:32:c4:7f:de:35:70:d2:46:6d:7e:
44:16:54:50:d9:60:19:0d:8f:32:b9:7d:87:87:57:
aa:15:f1:aa:4b:f4:2a:bd:f3:6e:ec:f5:2f:06:45:
4d:ec:d2:1b:2d:ff:62:b0:fb:26:81:92:85:d6:df:
02:96:ec:d6:1d:77:c3:a7:1b:ca:14:1d:fc:58:22:
92:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2A:C2:27:4C:9D:50:C7:A5:B3:14:B2:FF:35:61:70:D8:8D:80:CA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zSrCJ0ydUMelsxSy_zVhcNiNgMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.62.0/24
163.5.131.0/24
163.5.149.0/24
163.5.187.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e3:89:70:e4:55:4d:35:61:d5:fd:ba:b8:41:b6:73:25:79:
3f:07:7c:60:87:88:9a:17:42:96:43:b9:ab:4d:f9:1f:1c:23:
68:4f:5d:1c:e3:64:2e:8d:fd:eb:65:c3:6d:03:9e:16:ff:14:
d8:76:54:6e:65:33:1e:5f:e9:77:49:a1:3f:55:cf:02:4c:c1:
e3:49:e3:97:5f:69:01:65:81:32:b4:b5:14:db:85:da:16:aa:
77:38:af:e7:92:cd:a5:49:23:b4:9e:50:d2:90:9d:7c:89:77:
f1:65:49:30:46:ff:b9:05:8d:bf:38:60:35:1e:ab:c1:ca:23:
91:34:f8:45:2e:95:e1:83:10:e5:4f:b4:7c:0d:3d:04:45:d3:
ee:5b:b4:6b:a3:7e:04:18:2f:9c:9f:b7:91:64:e4:45:d6:89:
a2:22:8e:82:a0:96:eb:f8:72:5c:5c:81:6b:c0:e8:69:60:b3:
37:03:2a:cf:91:3b:dc:74:67:27:ee:28:d7:00:68:e1:de:fd:
2f:a7:a7:16:4d:66:95:57:c5:ce:60:9f:05:34:eb:cb:63:b6:
aa:8b:de:47:ee:ab:b6:3d:57:f3:2c:9a:ba:0b:c4:31:20:19:
ee:07:d5:a8:eb:21:e9:d0:a9:c9:4b:ce:47:d9:32:b3:8b:0b:
30:05:75:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:27:27 2026 by rpki-client