Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/iNg_c-CfOC92tOM1l9NX1aHGBcE.roa
File: iNg_c-CfOC92tOM1l9NX1aHGBcE.roa (raw, json)
Hash identifier: S6ilU7cZs9nHF8afuNO9l5+AXij1afMkASuHEvG633E=
Subject key identifier: 88:D8:3F:73:E0:9F:38:2F:76:B4:E3:35:97:D3:57:D5:A1:C6:05:C1
Certificate issuer: /CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465
Certificate serial: 019DFC1C152F9F2D3FDE4649ABD629CAD146
Authority key identifier: 48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/iNg_c-CfOC92tOM1l9NX1aHGBcE.roa
Signing time: Wed 06 May 2026 07:06:32 +0000
ROA not before: Wed 06 May 2026 07:06:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 43395
IP address blocks: 45.9.144.0/24 maxlen: 24
45.9.145.0/24 maxlen: 24
45.9.146.0/24 maxlen: 24
45.9.147.0/24 maxlen: 24
45.86.4.0/24 maxlen: 24
45.86.5.0/24 maxlen: 24
45.86.6.0/24 maxlen: 24
45.86.7.0/24 maxlen: 24
45.148.248.0/24 maxlen: 24
45.148.249.0/24 maxlen: 24
45.148.250.0/24 maxlen: 24
45.148.251.0/24 maxlen: 24
95.130.225.0/24 maxlen: 24
185.140.232.0/24 maxlen: 24
185.140.233.0/24 maxlen: 24
185.140.234.0/24 maxlen: 24
185.140.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:1c:15:2f:9f:2d:3f:de:46:49:ab:d6:29:ca:d1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465
Validity
Not Before: May 6 07:06:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=88d83f73e09f382f76b4e33597d357d5a1c605c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2a:2e:01:83:cd:8e:c7:ca:8c:1f:db:91:a6:
85:01:42:e2:11:19:1d:31:03:4e:df:4b:d4:ff:10:
d8:a0:11:42:87:9f:e0:d3:05:b0:12:30:e7:13:42:
22:1f:4c:cf:ff:ed:f5:aa:61:e9:e4:8b:0f:fe:fb:
d8:26:1e:0d:b8:36:8f:2b:88:aa:2c:a8:d9:55:a9:
99:c7:47:b1:a4:5c:fc:e7:e6:64:7d:47:7d:4e:0d:
59:ee:c6:89:5b:29:75:80:fc:e9:39:5a:38:70:b8:
ef:38:2a:da:bb:2f:d6:b2:63:12:65:f0:40:cd:30:
cc:c5:f0:a2:bd:2c:61:ce:ed:3a:be:8f:6c:22:fc:
c3:9a:08:9e:3a:00:90:0c:c5:37:9c:57:55:83:ee:
24:05:a5:6a:e1:eb:2a:f2:67:a2:90:87:9f:72:c9:
9b:b7:a5:d3:a6:39:89:45:64:87:e0:89:d3:d1:9f:
b2:2f:be:c3:cb:41:62:96:3c:a2:3e:a8:8a:49:23:
70:f0:10:29:d5:50:ad:47:82:15:be:ea:f2:dd:eb:
d4:2b:64:a8:54:30:c2:09:c9:ae:6e:25:60:6d:aa:
f3:6a:bd:0b:0f:91:54:a8:16:4b:13:ae:bb:e6:eb:
d2:fa:90:30:82:f2:49:b9:ae:f3:58:03:90:d5:90:
ef:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D8:3F:73:E0:9F:38:2F:76:B4:E3:35:97:D3:57:D5:A1:C6:05:C1
X509v3 Authority Key Identifier:
keyid:48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/iNg_c-CfOC92tOM1l9NX1aHGBcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.144.0/22
45.86.4.0/22
45.148.248.0/22
95.130.225.0/24
185.140.232.0/22
Signature Algorithm: sha256WithRSAEncryption
03:41:e1:af:3d:7d:ec:64:73:92:80:bb:76:4d:6b:2a:dc:d9:
e9:eb:5d:0d:6b:4a:fb:88:ca:a7:bc:15:5e:fb:f1:35:35:21:
7a:18:33:d2:fc:5d:6b:11:da:16:10:47:a1:bb:70:cd:8b:f0:
bb:12:1a:47:b5:7f:61:af:1f:af:b7:e5:70:ab:c3:07:40:00:
54:7d:6d:30:7e:2f:89:85:c4:46:fb:3e:05:c1:2d:89:5d:b5:
8b:f0:5d:38:17:06:bb:6c:d9:c9:39:64:73:29:6b:26:d4:bb:
ae:aa:29:4b:09:db:1f:bc:4d:ed:1a:58:d2:7b:31:cb:ae:47:
2b:d1:a5:2a:cd:39:81:97:c8:2e:96:27:08:d9:10:44:60:55:
b2:17:7c:db:bf:ea:3e:27:00:70:ce:4e:99:84:11:e4:8a:66:
34:10:3d:05:97:d8:be:34:cd:58:f0:12:ed:26:2e:ab:70:d5:
26:24:56:7d:02:da:0a:8a:8a:4a:a1:4a:24:79:d9:4b:24:cd:
30:1a:34:c7:d1:f0:e7:0b:8f:16:75:5f:7b:97:28:e3:d3:89:
19:6e:45:91:1b:58:4f:df:bb:a0:47:b7:36:24:04:33:12:a8:
0d:55:fc:d9:5b:11:35:d6:bf:a7:99:50:43:70:fe:e9:3b:bd:
a3:0a:51:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:20:57 2026 by rpki-client