Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/VRYYPCmkzyrbez332rVg7hYMNdI.roa
File: VRYYPCmkzyrbez332rVg7hYMNdI.roa (raw, json)
Hash identifier: unjtMkXlkjfQ+ehO+RZ9u2PDtDTjwCJDtzudvzOBmho=
Subject key identifier: 55:16:18:3C:29:A4:CF:2A:DB:7B:3D:F7:DA:B5:60:EE:16:0C:35:D2
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 019E16C829A7D3A9F7F9F7BC8316BC279DFC
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/VRYYPCmkzyrbez332rVg7hYMNdI.roa
Signing time: Mon 11 May 2026 11:24:37 +0000
ROA not before: Mon 11 May 2026 11:24:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 59711
IP address blocks: 62.192.96.0/23 maxlen: 23
135.196.23.0/24 maxlen: 24
135.196.27.0/24 maxlen: 24
135.196.35.0/24 maxlen: 24
135.196.98.0/24 maxlen: 24
135.196.105.0/24 maxlen: 24
135.196.116.0/24 maxlen: 24
135.196.186.0/23 maxlen: 23
213.169.226.0/23 maxlen: 23
213.169.244.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:44:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:16:c8:29:a7:d3:a9:f7:f9:f7:bc:83:16:bc:27:9d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: May 11 11:24:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5516183c29a4cf2adb7b3df7dab560ee160c35d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:c9:cc:4e:7d:55:9f:95:af:8c:ab:d7:8f:
e9:ad:37:7b:01:08:fa:00:4f:b1:4c:86:5b:45:e5:
79:b0:8e:a1:f6:8d:97:89:9d:8b:3c:ff:2e:72:0a:
f5:8c:13:8e:5d:42:d1:61:9f:cf:73:62:06:fe:0a:
13:49:84:5f:66:ae:46:7a:dd:21:f8:15:d6:c1:8b:
ce:c2:22:0a:d3:6c:c5:8e:4a:89:32:39:45:b0:43:
c5:f3:0a:bb:eb:1e:c5:49:50:7e:d6:22:c7:a2:f0:
89:ad:5b:a5:43:9c:3d:f3:89:72:7a:6d:a5:37:44:
39:75:18:b3:a5:5a:d3:1d:85:b6:10:d1:b3:4f:6d:
1c:79:f0:e1:36:ee:b1:47:29:d2:0f:e8:e9:db:b7:
81:9f:02:b5:c4:b9:b7:63:97:96:fb:5b:26:5b:b0:
86:3b:1a:30:08:67:99:4c:fc:ca:38:84:98:9a:c7:
b7:fc:7f:31:15:2f:1e:c8:0d:71:c0:16:c9:5d:f6:
83:47:5b:77:eb:9f:51:5c:13:20:52:2b:6e:ef:ff:
fd:70:96:df:c4:c9:9e:02:e4:6b:97:cf:d7:52:e9:
33:4d:19:84:0b:08:ff:46:ca:c0:fc:0b:94:05:68:
01:cf:19:fe:81:97:3a:7c:27:66:e2:24:63:8b:ff:
51:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:16:18:3C:29:A4:CF:2A:DB:7B:3D:F7:DA:B5:60:EE:16:0C:35:D2
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/VRYYPCmkzyrbez332rVg7hYMNdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.96.0/23
135.196.23.0/24
135.196.27.0/24
135.196.35.0/24
135.196.98.0/24
135.196.105.0/24
135.196.116.0/24
135.196.186.0/23
213.169.226.0/23
213.169.244.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:3c:8b:43:26:96:7a:54:e4:cc:3e:79:b5:dc:5c:82:95:14:
99:de:c1:1a:08:af:27:6b:d8:c0:79:ae:83:2a:a2:f6:d4:8c:
82:aa:f0:5b:20:4a:54:78:60:99:e3:1d:d5:57:5d:50:e9:83:
c0:38:79:1d:f9:6d:7d:02:d6:13:f7:a3:ef:99:83:a2:25:38:
27:23:c9:14:71:d2:bd:90:18:30:d3:42:82:26:a9:64:c7:f6:
c3:d1:c4:52:66:3a:2d:af:a4:b7:0f:c5:79:3d:91:40:62:b2:
f1:40:ff:a4:a6:1b:05:a3:f5:f7:54:83:9d:42:e8:ff:aa:3d:
dc:7c:13:e1:00:49:f4:53:a1:3c:d8:83:cf:d4:a4:52:37:ef:
5c:aa:30:b7:69:fc:70:24:67:d1:2f:99:c1:ca:2d:12:3f:87:
72:d0:97:a3:6b:ae:79:cc:40:e4:91:e1:5a:4b:61:06:19:7d:
da:af:4c:b3:f7:bf:3d:ee:44:06:39:4f:b8:77:28:81:b7:c9:
f2:70:b6:cf:b4:a2:62:46:51:00:43:e4:59:0d:9e:3c:04:54:
7b:e0:10:26:6c:fc:f8:77:75:f5:7a:c5:08:03:72:02:b6:0b:
ef:90:96:31:5c:82:05:6c:42:ab:82:33:63:65:f1:31:fa:09:
fe:7f:74:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:27:00 2026 by rpki-client