Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/6x7BJ0F-meGk9fhXJNWGJnuegOw.roa
File: 6x7BJ0F-meGk9fhXJNWGJnuegOw.roa (raw, json)
Hash identifier: ejX+MPtDK3gTtFG1432bC6M7t7QPNbrVRz6iGDt2Hfo=
Subject key identifier: EB:1E:C1:27:41:7E:99:E1:A4:F5:F8:57:24:D5:86:26:7B:9E:80:EC
Certificate issuer: /CN=54adbbcf9260432abee2013033d4eb95f3bdabd6
Certificate serial: 019D0880DE714C67BC3D1D3935C5C5694F92
Authority key identifier: 54:AD:BB:CF:92:60:43:2A:BE:E2:01:30:33:D4:EB:95:F3:BD:AB:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VK27z5JgQyq-4gEwM9TrlfO9q9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/6x7BJ0F-meGk9fhXJNWGJnuegOw.roa
Signing time: Thu 19 Mar 2026 23:49:16 +0000
ROA not before: Thu 19 Mar 2026 23:49:16 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 54253
IP address blocks: 158.178.160.0/22 maxlen: 24
158.178.164.0/23 maxlen: 24
158.178.168.0/21 maxlen: 24
158.178.176.0/21 maxlen: 24
158.178.253.0/24 maxlen: 24
158.179.2.0/23 maxlen: 24
158.179.197.0/24 maxlen: 24
158.180.160.0/22 maxlen: 24
158.180.164.0/23 maxlen: 24
158.180.168.0/21 maxlen: 24
158.180.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/VK27z5JgQyq-4gEwM9TrlfO9q9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/VK27z5JgQyq-4gEwM9TrlfO9q9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/VK27z5JgQyq-4gEwM9TrlfO9q9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:08:80:de:71:4c:67:bc:3d:1d:39:35:c5:c5:69:4f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54adbbcf9260432abee2013033d4eb95f3bdabd6
Validity
Not Before: Mar 19 23:49:16 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eb1ec127417e99e1a4f5f85724d586267b9e80ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:94:42:f6:76:f5:42:ec:dd:c7:8d:b4:49:d7:
03:c2:83:b5:92:ce:f8:20:fc:3a:a1:fb:0f:4a:f1:
48:8d:17:44:b2:18:c0:b5:64:c3:5d:14:52:53:d9:
bd:ab:19:d4:ed:66:66:dd:ce:f8:0f:3a:66:d4:3e:
e6:76:cd:14:ed:26:93:0c:3c:e7:77:d2:5a:d5:80:
69:7d:17:ed:80:77:1f:af:72:a7:6f:d3:10:56:4d:
5f:e6:c2:48:29:43:dc:73:6c:08:87:e2:bc:21:12:
16:ec:ca:59:70:4a:17:29:c9:28:b9:a3:46:82:35:
f1:92:7a:83:ae:f5:47:72:02:7c:00:e1:4f:67:bb:
e1:1a:ac:85:a3:70:af:34:db:c1:2e:f6:57:88:cc:
06:32:13:18:00:e4:93:cc:44:eb:7c:8b:b3:a6:4a:
5e:89:df:6c:38:e1:d1:6f:56:01:8a:eb:44:f0:19:
37:68:ad:df:f2:d7:50:05:46:3d:ef:6a:17:3d:36:
b7:33:58:f7:63:d6:c8:d8:2e:cc:4a:77:2b:f0:98:
b2:fc:f3:fe:63:2f:6e:4f:2a:f8:47:34:2c:b2:f0:
3e:0b:aa:df:17:b4:1b:ea:52:f1:9f:a5:e5:11:88:
c4:a7:7a:e2:55:ad:ee:f2:ae:2e:f6:45:42:af:73:
0b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1E:C1:27:41:7E:99:E1:A4:F5:F8:57:24:D5:86:26:7B:9E:80:EC
X509v3 Authority Key Identifier:
keyid:54:AD:BB:CF:92:60:43:2A:BE:E2:01:30:33:D4:EB:95:F3:BD:AB:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VK27z5JgQyq-4gEwM9TrlfO9q9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/6x7BJ0F-meGk9fhXJNWGJnuegOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/340e56-6492-47e2-99dc-142537de948e/1/VK27z5JgQyq-4gEwM9TrlfO9q9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.178.160.0-158.178.165.255
158.178.168.0-158.178.183.255
158.178.253.0/24
158.179.2.0/23
158.179.197.0/24
158.180.160.0-158.180.165.255
158.180.168.0-158.180.183.255
Signature Algorithm: sha256WithRSAEncryption
89:9e:d5:d3:65:95:0d:d4:db:f3:66:69:78:e1:63:95:6f:2b:
6b:86:03:72:43:e4:25:f7:2c:f0:6e:48:8e:fb:22:b9:05:85:
ae:d9:c4:2d:67:bc:08:c0:0a:30:c2:c6:37:f7:92:83:f2:15:
6a:19:b7:e1:60:05:8b:e6:f9:c4:b8:39:17:8b:4b:b8:21:74:
af:c4:8c:d7:45:56:df:a3:7c:3c:ee:4e:62:5f:4f:fc:75:4e:
1d:a7:d9:e4:02:16:b1:af:c1:19:a9:4c:5b:22:d9:95:2a:09:
7f:f6:d1:1f:c0:03:eb:a4:41:c1:9f:f1:bf:e0:05:5e:bb:f3:
52:83:89:b9:46:71:57:8d:c1:98:88:df:36:a1:a7:db:be:ba:
ed:a2:12:65:b7:bf:e3:05:39:55:e7:9b:cf:fd:3b:9a:7a:08:
6a:36:91:e1:ed:be:ce:ab:ff:8f:9c:40:46:17:d6:e7:d5:1f:
6b:e3:92:12:e7:1a:4d:2b:a0:25:ae:02:cd:93:8d:b8:14:7f:
28:5d:7d:d8:77:8c:41:5e:85:80:3a:3c:01:fb:3f:44:a5:dd:
4a:b9:f8:f6:f0:cc:bc:3b:12:a7:8d:af:4e:c1:ef:57:a1:ae:
9c:b8:b8:68:5a:cb:92:5c:88:c7:0b:bc:b7:f7:97:d8:f7:e1:
bc:7e:b1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:07:38 2026 by rpki-client