Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/AkvQldLQY58hrMuy5JJUpN5DWNI.roa
File: AkvQldLQY58hrMuy5JJUpN5DWNI.roa (raw, json)
Hash identifier: afG9+wD4QhYrt7Kw2LgpaOdHZKEw2Hl0r195C8kvfAc=
Subject key identifier: 02:4B:D0:95:D2:D0:63:9F:21:AC:CB:B2:E4:92:54:A4:DE:43:58:D2
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 019E1697A2C5001C3170A39A02C77CFF3AE7
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/AkvQldLQY58hrMuy5JJUpN5DWNI.roa
Signing time: Mon 11 May 2026 10:31:36 +0000
ROA not before: Mon 11 May 2026 10:31:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 17025
IP address blocks: 79.141.45.0/24 maxlen: 24
94.31.10.0/23 maxlen: 24
94.31.12.0/24 maxlen: 24
213.152.239.0/24 maxlen: 24
213.152.252.0/24 maxlen: 24
213.152.253.0/24 maxlen: 24
2a00:16f8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:16:97:a2:c5:00:1c:31:70:a3:9a:02:c7:7c:ff:3a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: May 11 10:31:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=024bd095d2d0639f21accbb2e49254a4de4358d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:31:50:c6:d1:dc:ae:0f:88:b1:7c:df:97:
a3:99:36:06:ae:aa:bf:34:84:2b:db:41:91:1c:25:
95:12:03:5a:32:19:62:b3:33:28:f8:13:12:3c:e4:
a1:40:4a:67:a8:82:3b:c4:5d:16:43:c9:98:dd:1f:
76:7b:85:e2:1e:6d:f2:b8:23:60:a0:18:7d:15:98:
86:9e:a6:59:9c:d4:4b:b6:e8:b5:4b:b8:b7:89:bf:
81:0e:83:e4:36:e5:36:03:48:06:89:3d:24:cd:a4:
c5:b5:b3:11:91:9b:6c:da:07:5e:68:8c:77:3c:d3:
8f:13:96:17:ab:62:ae:c5:3d:c5:53:4c:85:66:05:
66:8a:b3:85:34:95:59:ce:54:82:87:68:a2:09:2f:
07:67:b5:6f:1a:94:31:e3:e3:8d:1d:a5:96:0c:45:
3b:d3:74:93:ad:a0:3c:5c:19:70:41:52:b6:cd:84:
29:6e:aa:53:74:5e:77:ab:c0:22:72:3b:79:f5:78:
c0:63:cd:14:b5:00:71:54:88:f3:db:fb:30:59:bb:
42:48:e4:55:61:af:b4:0f:70:82:85:10:74:27:67:
b0:3a:22:46:e1:4e:eb:51:16:f3:46:28:f1:6a:92:
61:2d:79:ad:d0:e0:c9:25:08:08:c8:16:84:c5:15:
7a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4B:D0:95:D2:D0:63:9F:21:AC:CB:B2:E4:92:54:A4:DE:43:58:D2
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/AkvQldLQY58hrMuy5JJUpN5DWNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.45.0/24
94.31.10.0-94.31.12.255
213.152.239.0/24
213.152.252.0/23
IPv6:
2a00:16f8::/48
Signature Algorithm: sha256WithRSAEncryption
42:d0:72:59:af:50:79:94:96:46:e4:e5:ce:1c:bb:56:1a:9c:
96:0a:17:3a:97:3a:f9:ca:d6:c6:0f:8c:7b:34:06:f4:57:0a:
78:6e:21:81:a8:08:b5:27:38:14:f1:4d:1c:e0:17:2a:54:70:
55:d3:a2:e8:24:be:f4:f3:b2:fa:c0:d6:cb:f6:99:85:8e:9a:
ce:ef:b9:49:d7:db:ca:cc:cc:a4:59:ce:27:91:99:eb:a9:ec:
bf:7e:fc:6d:51:b0:9e:96:89:30:b1:78:da:b3:57:89:69:78:
a7:82:1b:3e:2b:fa:18:7a:35:bc:31:10:5f:49:d3:97:cb:0d:
b6:3d:0d:93:b3:1b:d7:8f:ec:f8:7e:c4:ff:78:32:b4:70:43:
64:51:d8:63:77:29:41:4c:92:4f:ae:b4:fd:2d:0a:15:18:49:
eb:13:1a:b8:3a:a3:59:78:7c:56:55:c1:81:18:4f:b0:0d:39:
bd:54:5b:5d:a6:f7:3d:38:95:bf:d9:c6:8f:d6:75:dc:ef:be:
48:a7:3b:3b:2e:19:f9:81:6b:e1:e6:b2:7a:8a:86:42:0e:a3:
49:cb:3d:88:c7:c9:92:5d:3e:55:f4:2a:57:ed:a6:8b:50:db:
c7:3b:f3:f0:5b:04:a4:a9:60:c2:c3:57:23:ce:a0:4d:83:cd:
d9:a5:33:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:11:55 2026 by rpki-client