Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/W8z9S8QtBUCeZ_NQsASDqsKIc6M.roa
File: W8z9S8QtBUCeZ_NQsASDqsKIc6M.roa (raw, json)
Hash identifier: SEmazhtZ1c7lbFB7Fo9A1+qiNIkAL7QH6sPNtt7j0sA=
Subject key identifier: 5B:CC:FD:4B:C4:2D:05:40:9E:67:F3:50:B0:04:83:AA:C2:88:73:A3
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 019E1B0A8DC85A2FB432559CD5BF663609D8
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/W8z9S8QtBUCeZ_NQsASDqsKIc6M.roa
Signing time: Tue 12 May 2026 07:15:36 +0000
ROA not before: Tue 12 May 2026 07:15:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58087
IP address blocks: 5.253.247.0/24 maxlen: 24
37.221.93.0/24 maxlen: 24
45.10.21.0/24 maxlen: 24
45.11.229.0/24 maxlen: 24
45.13.225.0/24 maxlen: 24
45.13.236.0/24 maxlen: 24
45.13.237.0/24 maxlen: 24
45.13.238.0/24 maxlen: 24
45.13.239.0/24 maxlen: 24
45.86.155.0/24 maxlen: 24
45.90.98.0/23 maxlen: 23
45.131.64.0/24 maxlen: 24
45.133.74.0/24 maxlen: 24
92.118.206.0/24 maxlen: 24
109.71.252.0/24 maxlen: 24
194.15.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 16:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:0a:8d:c8:5a:2f:b4:32:55:9c:d5:bf:66:36:09:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: May 12 07:15:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5bccfd4bc42d05409e67f350b00483aac28873a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1e:f1:7b:40:fb:39:4e:32:8d:91:be:09:4e:
ee:bf:c5:e0:2b:4a:58:0f:e8:ba:40:ae:cb:7a:61:
47:d8:81:72:fd:4a:c7:96:e9:56:6a:35:9d:89:d1:
af:21:1e:e3:55:e8:c6:ec:2c:6b:1d:15:00:30:2f:
77:ca:2a:a1:6f:57:4b:e8:85:b0:3b:8c:bc:a6:1b:
71:23:84:65:d4:e8:e3:17:c0:d9:ee:cc:2c:19:3a:
6c:98:c5:36:f9:08:09:c9:3b:22:27:cd:b1:5a:26:
74:c0:8a:63:ee:f5:67:71:61:8a:66:20:07:6d:ca:
93:df:db:1c:ea:51:eb:36:40:53:ba:b6:7b:5f:f7:
23:11:c7:c8:40:5b:8c:46:c4:6c:e0:f6:96:61:36:
59:57:b2:d5:03:3b:fd:07:5f:df:ce:01:45:ef:56:
f6:85:fa:59:b4:a5:90:98:fc:0a:32:4c:fa:ff:02:
20:46:99:8e:07:94:d5:e2:4f:13:4c:de:dc:0c:4e:
7a:c9:7b:8d:00:66:d6:b2:d4:02:55:15:a9:77:53:
84:b3:0a:23:96:a7:13:ff:d0:f1:2c:b9:e5:3b:9e:
5b:eb:ca:3c:1c:d4:ac:37:36:13:d4:7c:2b:ea:0f:
d7:55:48:d3:08:97:6c:03:53:a8:78:2b:ea:26:88:
83:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:CC:FD:4B:C4:2D:05:40:9E:67:F3:50:B0:04:83:AA:C2:88:73:A3
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/W8z9S8QtBUCeZ_NQsASDqsKIc6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.247.0/24
37.221.93.0/24
45.10.21.0/24
45.11.229.0/24
45.13.225.0/24
45.13.236.0/22
45.86.155.0/24
45.90.98.0/23
45.131.64.0/24
45.133.74.0/24
92.118.206.0/24
109.71.252.0/24
194.15.36.0/24
Signature Algorithm: sha256WithRSAEncryption
04:59:1f:6f:45:12:ba:2f:54:1b:f1:2a:ad:08:7a:90:3a:66:
b4:1a:ae:b6:db:1f:70:22:90:56:52:45:dd:0b:d8:ee:5b:f7:
38:d5:81:45:61:77:a3:e3:3f:e3:94:ad:36:d3:d3:0a:6d:d7:
3b:27:39:68:ef:f0:85:34:f9:98:55:4e:02:86:5c:68:56:4a:
eb:78:05:1c:28:3c:80:87:71:11:68:11:e9:56:1e:a7:b6:3d:
41:ec:65:b3:97:17:38:15:35:9a:af:68:75:ef:b9:f5:81:76:
85:4d:e4:9f:03:fa:13:cf:00:83:8c:6c:51:72:f5:0f:5d:63:
d9:23:0b:c9:f9:b5:1b:58:2d:2e:50:d3:39:62:ee:cb:af:53:
8f:85:f0:66:34:94:ae:7f:a4:e4:8e:ee:ed:56:25:f8:20:5a:
a2:a0:b5:d3:b7:2c:ca:d8:24:f1:d1:e0:5d:61:b1:1c:86:76:
84:6a:94:de:f4:4f:b2:4b:57:55:c9:89:21:c2:55:2c:5f:5e:
6d:cc:bd:a8:15:46:52:50:7a:9b:c3:45:7e:7e:58:91:5c:6e:
6b:14:7c:2d:88:52:9d:cc:43:5b:bd:37:2b:1a:97:04:18:0d:
26:41:1f:94:3b:98:c2:ec:d6:31:37:9a:6e:3f:c1:e0:a9:10:
c8:c1:c8:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:37:43 2026 by rpki-client