Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/J61HX0TwkHzr4Ixj1VTbuFUkJaY.roa
File: J61HX0TwkHzr4Ixj1VTbuFUkJaY.roa (raw, json)
Hash identifier: 7LeZ6VBOSqJjB0AcjoRalXILZSM+Ekt3XAFbD6A8+8M=
Subject key identifier: 27:AD:47:5F:44:F0:90:7C:EB:E0:8C:63:D5:54:DB:B8:55:24:25:A6
Certificate issuer: /CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Certificate serial: 019E1BE96E12B93FCCDA84E31E83927A7562
Authority key identifier: 55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/J61HX0TwkHzr4Ixj1VTbuFUkJaY.roa
Signing time: Tue 12 May 2026 11:19:03 +0000
ROA not before: Tue 12 May 2026 11:19:03 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 83.147.194.0/24 maxlen: 24
91.186.194.0/24 maxlen: 24
91.186.210.0/23 maxlen: 24
91.186.214.0/23 maxlen: 24
178.253.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:e9:6e:12:b9:3f:cc:da:84:e3:1e:83:92:7a:75:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Validity
Not Before: May 12 11:19:03 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=27ad475f44f0907cebe08c63d554dbb8552425a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e0:89:0e:28:db:b1:de:d3:b2:2e:96:fa:b5:
d4:47:35:3e:19:81:bc:f1:a1:ea:ce:47:44:8a:3c:
6d:76:0c:e9:b8:fb:a8:d5:37:03:c5:32:7e:9c:c7:
1e:d6:4f:36:6f:27:b7:10:3a:39:48:4a:0b:b7:a7:
85:0e:e0:30:f9:38:ca:c1:f5:a1:ca:d6:c0:96:3a:
ca:49:6b:e0:15:3a:1b:42:1c:26:03:19:a4:68:d7:
81:3d:15:a5:83:79:ba:72:e3:db:f6:af:52:1b:8e:
77:e8:86:60:58:0b:79:d0:f6:45:e6:71:48:6c:ac:
57:c3:20:97:ad:73:c1:aa:92:29:e8:78:8e:99:92:
6f:6f:3f:ec:ee:e3:86:43:92:e3:13:a3:19:a0:48:
0a:bf:9d:80:00:5a:67:05:11:ec:1a:6b:42:b2:08:
01:d8:a4:96:12:be:df:76:1c:15:4d:fb:d8:0b:38:
66:99:61:f0:99:25:b8:49:1b:3e:a3:12:80:6a:3b:
20:f9:e3:14:bb:d5:0f:72:7b:e3:e0:e3:69:26:53:
36:3a:33:e7:85:fc:3f:c6:32:65:59:ab:18:1e:8b:
bf:b6:d2:c1:95:ba:64:76:41:13:96:85:73:81:f2:
9d:6b:fd:91:73:8f:53:67:e7:de:0d:f7:ff:0c:99:
05:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AD:47:5F:44:F0:90:7C:EB:E0:8C:63:D5:54:DB:B8:55:24:25:A6
X509v3 Authority Key Identifier:
keyid:55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/J61HX0TwkHzr4Ixj1VTbuFUkJaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.194.0/24
91.186.194.0/24
91.186.210.0/23
91.186.214.0/23
178.253.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:60:59:ea:2e:78:12:49:76:d5:0e:76:4f:ab:81:5c:1d:93:
b2:68:67:72:a8:9b:4b:35:2d:b9:0d:66:43:56:aa:d7:29:e9:
4f:29:7e:e6:d0:a7:85:f4:ef:29:40:1d:57:ca:04:c0:d0:d5:
c6:c6:82:79:01:8b:ec:8c:0e:71:03:f7:a2:9b:ea:31:27:d5:
a1:b0:12:df:3d:96:9b:d1:bc:14:08:49:25:08:34:33:48:a9:
13:14:ad:fd:7c:b8:ba:62:26:03:4f:29:26:19:55:4c:f9:a7:
5a:91:99:47:17:eb:42:03:1e:df:a3:a9:e1:ed:71:2e:2f:7a:
f5:e0:a8:f0:43:2b:86:ea:ef:2e:db:f0:4f:99:ff:b3:fc:4b:
8a:45:b5:01:78:1f:70:88:50:02:78:ea:e6:52:86:27:53:94:
a0:5f:85:bd:df:12:83:c0:19:ec:9e:b2:ba:51:21:4f:d5:62:
41:fd:8c:ae:84:7e:b6:d8:be:03:88:2e:d3:fe:51:f5:ac:32:
28:44:f1:73:98:1a:9a:ba:58:81:ea:8b:f9:ad:a4:d6:cf:b1:
88:57:88:ca:4b:5c:0a:bf:30:0b:bc:ff:2e:63:e1:d6:37:a8:
b6:0a:81:9a:f2:5b:82:88:60:8b:b6:dc:47:63:33:70:d2:8b:
63:43:90:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:16:51 2026 by rpki-client