Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5wnHyaJlLMBZIaBtVqJWfIQClf4.roa
File: 5wnHyaJlLMBZIaBtVqJWfIQClf4.roa (raw, json)
Hash identifier: u88qANKO8ySbEtcZi6onSB0+3AUFL6EPbZlfQfAbl/8=
Subject key identifier: E7:09:C7:C9:A2:65:2C:C0:59:21:A0:6D:56:A2:56:7C:84:02:95:FE
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 019DCDF8CA375AF79E15235AEEF252514E01
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5wnHyaJlLMBZIaBtVqJWfIQClf4.roa
Signing time: Mon 27 Apr 2026 08:05:27 +0000
ROA not before: Mon 27 Apr 2026 08:05:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207353
IP address blocks: 31.184.228.0/23 maxlen: 24
46.161.42.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f8:ca:37:5a:f7:9e:15:23:5a:ee:f2:52:51:4e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Apr 27 08:05:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e709c7c9a2652cc05921a06d56a2567c840295fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:5c:14:0a:b4:af:fc:7a:b2:b4:96:84:10:
f1:84:f5:73:3c:1b:69:4a:b3:d3:ca:e8:5d:c1:d1:
b0:29:22:a7:15:ca:f7:d2:03:20:cf:05:b1:3a:25:
44:a5:36:e8:92:03:57:a6:e3:3d:51:32:37:43:a2:
bf:70:2d:28:29:41:a9:a8:1d:c5:f6:d0:b4:bb:d9:
55:a0:ca:40:f7:e9:05:b5:7d:0f:1e:3a:d0:83:48:
13:b5:26:fe:bb:f7:72:15:d5:9f:7a:bc:14:77:31:
82:96:63:4c:ba:ad:77:12:71:51:b6:de:0c:09:32:
ec:c6:84:f9:17:a2:7a:4d:ec:5f:84:03:9b:a3:30:
92:92:69:1a:a8:c1:88:74:a7:82:9e:6e:4e:7f:97:
40:bd:8a:f8:8e:37:36:f7:18:4a:19:98:de:25:cc:
13:4f:57:9a:4e:ee:fc:07:35:e4:f5:a3:25:da:d4:
e7:a4:33:0d:e5:4f:7a:62:f5:c6:0c:bf:80:6a:d4:
00:ce:b6:a8:2e:44:ae:2a:4f:7f:50:ec:03:99:f6:
ce:20:22:1f:e6:97:99:f7:ba:51:db:5a:6c:20:09:
d6:80:6e:2f:bc:98:c0:59:33:71:59:d2:ed:2e:24:
32:c7:5e:5e:a1:dd:17:02:2c:a6:7c:07:ad:07:81:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:09:C7:C9:A2:65:2C:C0:59:21:A0:6D:56:A2:56:7C:84:02:95:FE
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5wnHyaJlLMBZIaBtVqJWfIQClf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.228.0/23
46.161.42.0/23
Signature Algorithm: sha256WithRSAEncryption
45:ca:68:3e:f8:17:11:94:e0:a7:13:5f:47:7f:69:fe:7b:d8:
6d:35:9a:57:2f:f6:f1:51:fe:7b:8e:f1:6e:5b:ef:c0:93:5a:
b1:49:85:08:63:37:8c:b6:5b:b4:b3:0f:55:b5:61:fa:18:be:
9f:04:54:fc:a1:f3:73:16:b5:8c:6d:77:8a:c8:09:91:c1:1f:
bf:e8:39:3c:2b:3a:9d:d6:a8:45:6c:49:de:ec:c4:36:2e:a6:
e0:f2:26:d4:e1:bd:70:e4:2e:6b:44:2c:0b:a8:89:e4:0c:17:
43:3f:77:60:52:bd:2b:35:bc:5e:7a:79:43:1f:e2:0f:07:b2:
fa:f6:b4:b4:c2:32:fd:6c:cd:90:48:78:90:16:a2:2e:53:4c:
f8:74:7d:21:64:37:31:db:30:d4:fc:ae:fc:68:33:53:ad:c1:
71:cd:fa:31:af:98:10:4f:74:65:ed:d5:f6:3d:39:24:27:a5:
52:34:a4:55:58:56:38:62:db:a0:02:12:36:97:d0:d5:c2:e0:
69:fe:6d:08:72:24:c7:b5:3a:40:84:9f:f7:57:09:e0:0d:79:
b3:96:1e:88:71:54:2b:97:08:71:bd:10:96:8a:cf:9c:cc:01:
56:53:bf:8f:e5:34:ff:87:b7:e5:bc:ae:97:32:be:c4:02:b0:
5f:23:a4:a0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZ3N+Mo3WveeFSNa7vJSUU4BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjYwNDI3MDgwNTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzA5YzdjOWEyNjUyY2MwNTkyMWEwNmQ1NmEyNTY3Yzg0MDI5NWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywVcFAq0r/x6srSWhBDxhPVzPBtp
SrPTyuhdwdGwKSKnFcr30gMgzwWxOiVEpTbokgNXpuM9UTI3Q6K/cC0oKUGpqB3F
9tC0u9lVoMpA9+kFtX0PHjrQg0gTtSb+u/dyFdWferwUdzGClmNMuq13EnFRtt4M
CTLsxoT5F6J6TexfhAObozCSkmkaqMGIdKeCnm5Of5dAvYr4jjc29xhKGZjeJcwT
T1eaTu78BzXk9aMl2tTnpDMN5U96YvXGDL+AatQAzraoLkSuKk9/UOwDmfbOICIf
5peZ97pR21psIAnWgG4vvJjAWTNxWdLtLiQyx15eod0XAiymfAetB4HzAwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOcJx8miZSzAWSGgbVaiVnyEApX+MB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvNXduSHlhSmxMTUJaSWFCdFZxSldmSVFDbGY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBH7jkAwQB
LqEqMA0GCSqGSIb3DQEBCwUAA4IBAQBFymg++BcRlOCnE19Hf2n+e9htNZpXL/bx
Uf57jvFuW+/Ak1qxSYUIYzeMtlu0sw9VtWH6GL6fBFT8ofNzFrWMbXeKyAmRwR+/
6Dk8Kzqd1qhFbEne7MQ2Lqbg8ibU4b1w5C5rRCwLqInkDBdDP3dgUr0rNbxeenlD
H+IPB7L69rS0wjL9bM2QSHiQFqIuU0z4dH0hZDcx2zDU/K78aDNTrcFxzfoxr5gQ
T3Rl7dX2PTkkJ6VSNKRVWFY4YtugAhI2l9DVwuBp/m0IciTHtTpAhJ/3VwngDXmz
lh6IcVQrlwhxvRCWis+czAFWU7+P5TT/h7flvK6XMr7EArBfI6Sg
-----END CERTIFICATE-----
Generated at Wed May 13 02:26:31 2026 by rpki-client