Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/SaMF96xLyBtRjlXyqIBkI5Lo-HI.roa
File: SaMF96xLyBtRjlXyqIBkI5Lo-HI.roa (raw, json)
Hash identifier: 1jxriPcwCeY6MbbyRlMEMRxDnzF9Ffc0HNYjQkdX0Ww=
Subject key identifier: 49:A3:05:F7:AC:4B:C8:1B:51:8E:55:F2:A8:80:64:23:92:E8:F8:72
Certificate issuer: /CN=117f8c9a7fc7f13658d62afbeb6f39882da511cc
Certificate serial: 019E01379EE2E70A8EA523463D5D044C56B2
Authority key identifier: 11:7F:8C:9A:7F:C7:F1:36:58:D6:2A:FB:EB:6F:39:88:2D:A5:11:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-Mmn_H8TZY1ir76285iC2lEcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/SaMF96xLyBtRjlXyqIBkI5Lo-HI.roa
Signing time: Thu 07 May 2026 06:54:42 +0000
ROA not before: Thu 07 May 2026 06:54:42 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 59432
IP address blocks: 5.134.112.0/21 maxlen: 21
5.134.112.0/24 maxlen: 24
5.134.113.0/24 maxlen: 24
5.134.114.0/24 maxlen: 24
5.134.115.0/24 maxlen: 24
5.134.116.0/24 maxlen: 24
5.134.117.0/24 maxlen: 24
5.134.118.0/24 maxlen: 24
5.134.119.0/24 maxlen: 24
185.47.128.0/22 maxlen: 22
185.47.128.0/24 maxlen: 24
185.47.129.0/24 maxlen: 24
185.47.130.0/24 maxlen: 24
185.47.131.0/24 maxlen: 24
188.213.4.0/22 maxlen: 22
188.213.4.0/24 maxlen: 24
188.213.5.0/24 maxlen: 24
188.213.6.0/24 maxlen: 24
188.213.7.0/24 maxlen: 24
2a03:c7c0::/32 maxlen: 32
2a03:c7c1::/32 maxlen: 32
2a03:c7c2::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/EX-Mmn_H8TZY1ir76285iC2lEcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/EX-Mmn_H8TZY1ir76285iC2lEcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/EX-Mmn_H8TZY1ir76285iC2lEcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:01:37:9e:e2:e7:0a:8e:a5:23:46:3d:5d:04:4c:56:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f8c9a7fc7f13658d62afbeb6f39882da511cc
Validity
Not Before: May 7 06:54:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=49a305f7ac4bc81b518e55f2a880642392e8f872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:73:ed:f3:53:18:8f:52:6a:c8:63:db:e0:36:
ab:62:45:ca:54:64:1a:62:64:c0:fc:d4:78:20:99:
b2:0b:9f:4c:94:22:5e:7d:b8:54:b2:c0:13:40:ec:
2f:85:c2:5b:31:66:23:aa:fe:37:04:6d:61:a1:cb:
df:f6:b3:64:22:46:82:6e:62:98:c4:51:72:6c:d4:
fb:c9:d4:c9:02:78:39:99:ed:d1:77:d0:2d:cf:6d:
e9:91:a7:91:b4:45:ee:7c:76:c1:b1:bd:ee:7d:c0:
7e:e4:4e:2e:49:e6:29:05:6e:51:ee:87:df:23:aa:
37:62:94:6e:8f:f9:2e:2d:03:e8:1f:c0:5f:e1:76:
9c:6e:9d:bd:95:6f:c2:e4:98:fa:77:fb:24:ac:30:
f2:28:2d:69:73:4e:41:56:33:3d:e9:98:06:59:ea:
52:9e:d2:26:76:c8:bc:64:69:b1:2d:46:74:08:25:
50:ea:83:7d:46:c5:ac:83:92:a5:32:ef:3f:53:bc:
c2:b8:e6:9b:4f:56:86:c6:54:ef:85:f3:dd:96:e5:
da:83:3a:eb:79:3e:ff:7d:8d:bd:49:81:98:f9:e9:
fc:a9:12:76:fb:ae:b9:68:9a:a1:01:d6:15:16:78:
7f:f4:c4:62:2e:7d:ae:83:84:5c:e9:b2:e3:5d:9f:
ee:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A3:05:F7:AC:4B:C8:1B:51:8E:55:F2:A8:80:64:23:92:E8:F8:72
X509v3 Authority Key Identifier:
keyid:11:7F:8C:9A:7F:C7:F1:36:58:D6:2A:FB:EB:6F:39:88:2D:A5:11:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-Mmn_H8TZY1ir76285iC2lEcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/SaMF96xLyBtRjlXyqIBkI5Lo-HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/122b2d-5d87-478c-8522-89d66ac72e02/1/EX-Mmn_H8TZY1ir76285iC2lEcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.112.0/21
185.47.128.0/22
188.213.4.0/22
IPv6:
2a03:c7c0::-2a03:c7c2:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
41:fb:c0:a1:ab:50:28:5a:4c:fd:b3:4e:f1:58:6f:4d:cd:37:
d1:0d:d7:5c:97:d9:08:09:ff:6f:29:01:b4:54:14:ef:ec:9a:
2e:5c:75:17:d9:19:b7:55:5d:d4:e6:0e:d1:e1:80:8a:d5:63:
85:be:d8:03:b9:41:aa:80:54:45:80:43:5a:62:ae:56:0f:30:
0e:8f:be:75:29:51:40:cd:33:20:ab:c6:ba:61:1c:c2:4a:e0:
e8:37:73:5c:a7:22:14:83:d8:26:50:b5:d6:b0:df:73:e1:98:
ac:89:6c:d3:0b:97:e5:bc:a2:5e:5e:4c:77:de:ce:8e:5b:e7:
52:61:9d:e2:00:8b:3b:53:68:bd:9a:c6:af:73:c8:b6:1b:8f:
16:1c:ae:21:65:cb:da:80:ff:27:b3:db:64:6e:bf:00:e2:4c:
3a:3c:11:f5:70:66:4a:46:e2:0a:76:35:26:ee:9f:c3:29:79:
0b:f6:5a:55:08:f5:39:a6:0c:31:f7:3e:08:0d:14:9e:09:8e:
79:ae:9f:53:72:e5:3f:96:a0:9d:ea:e8:09:a4:4d:4b:2a:cc:
02:72:ce:4a:af:77:c3:14:93:72:83:f7:72:a8:2b:07:d1:2c:
36:ab:20:d8:15:fe:ec:11:70:7d:c6:ab:e7:a2:79:68:2d:3c:
e0:0b:b1:92
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZ4BN57i5wqOpSNGPV0ETFayMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExN2Y4YzlhN2ZjN2YxMzY1OGQ2MmFmYmViNmYzOTg4MmRh
NTExY2MwHhcNMjYwNTA3MDY1NDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWEzMDVmN2FjNGJjODFiNTE4ZTU1ZjJhODgwNjQyMzkyZThmODcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5nPt81MYj1JqyGPb4DarYkXKVGQa
YmTA/NR4IJmyC59MlCJefbhUssATQOwvhcJbMWYjqv43BG1hocvf9rNkIkaCbmKY
xFFybNT7ydTJAng5me3Rd9Atz23pkaeRtEXufHbBsb3ufcB+5E4uSeYpBW5R7off
I6o3YpRuj/kuLQPoH8Bf4Xacbp29lW/C5Jj6d/skrDDyKC1pc05BVjM96ZgGWepS
ntImdsi8ZGmxLUZ0CCVQ6oN9RsWsg5KlMu8/U7zCuOabT1aGxlTvhfPdluXagzrr
eT7/fY29SYGY+en8qRJ2+665aJqhAdYVFnh/9MRiLn2ug4Rc6bLjXZ/uqQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFEmjBfesS8gbUY5V8qiAZCOS6PhyMB8GA1UdIwQY
MBaAFBF/jJp/x/E2WNYq++tvOYgtpRHMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVgtTW1uX0g4VFpZMWlyNzYyODVpQzJsRWN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8xMjJiMmQtNWQ4Ny00NzhjLTg1MjIt
ODlkNjZhYzcyZTAyLzEvU2FNRjk2eEx5QnRSamxYeXFJQmtJNUxvLUhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8xMjJiMmQtNWQ4Ny00NzhjLTg1MjItODlkNjZhYzcyZTAy
LzEvRVgtTW1uX0g4VFpZMWlyNzYyODVpQzJsRWN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAYBAIAATASAwQDBYZwAwQC
uS+AAwQCvNUEMBYEAgACMBAwDgMFBioDx8ADBQAqA8fCMA0GCSqGSIb3DQEBCwUA
A4IBAQBB+8Chq1AoWkz9s07xWG9NzTfRDddcl9kICf9vKQG0VBTv7JouXHUX2Rm3
VV3U5g7R4YCK1WOFvtgDuUGqgFRFgENaYq5WDzAOj751KVFAzTMgq8a6YRzCSuDo
N3NcpyIUg9gmULXWsN9z4ZisiWzTC5flvKJeXkx33s6OW+dSYZ3iAIs7U2i9msav
c8i2G48WHK4hZcvagP8ns9tkbr8A4kw6PBH1cGZKRuIKdjUm7p/DKXkL9lpVCPU5
pgwx9z4IDRSeCY55rp9TcuU/lqCd6ugJpE1LKswCcs5Kr3fDFJNyg/dyqCsH0Sw2
qyDYFf7sEXB9xqvnonloLTzgC7GS
-----END CERTIFICATE-----
Generated at Wed May 13 07:15:35 2026 by rpki-client