Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p2vBXL83K12YhhjJ-sZztFHqzjs.roa
File: p2vBXL83K12YhhjJ-sZztFHqzjs.roa (raw, json)
Hash identifier: 1BEA0r0EF8SUJnS/2J0T94XypvH6Ue7ARXAM2lOw5Wk=
Subject key identifier: A7:6B:C1:5C:BF:37:2B:5D:98:86:18:C9:FA:C6:73:B4:51:EA:CE:3B
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019E04037A1BDBB56E49F841E083E942DE8F
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p2vBXL83K12YhhjJ-sZztFHqzjs.roa
Signing time: Thu 07 May 2026 19:56:37 +0000
ROA not before: Thu 07 May 2026 19:56:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58061
IP address blocks: 5.182.117.0/24 maxlen: 24
31.40.250.0/24 maxlen: 24
45.129.197.0/24 maxlen: 24
62.204.52.0/24 maxlen: 24
77.83.193.0/24 maxlen: 24
78.142.238.0/24 maxlen: 24
91.242.234.0/24 maxlen: 24
130.255.172.0/24 maxlen: 24
130.255.175.0/24 maxlen: 24
185.251.22.0/24 maxlen: 24
185.253.4.0/24 maxlen: 24
193.42.119.0/24 maxlen: 24
194.69.164.0/24 maxlen: 24
195.64.127.0/24 maxlen: 24
212.24.120.0/24 maxlen: 24
212.52.18.0/24 maxlen: 24
212.107.26.0/24 maxlen: 24
213.109.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:04:03:7a:1b:db:b5:6e:49:f8:41:e0:83:e9:42:de:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 7 19:56:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a76bc15cbf372b5d988618c9fac673b451eace3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:22:be:b9:07:1e:94:64:e0:f8:5c:13:df:5f:
4f:a4:c2:1d:c3:cb:b2:58:21:f2:b8:5c:c1:ea:81:
5f:ab:6d:97:1e:e9:4c:4f:ec:4a:63:06:ab:e4:2d:
27:5a:ca:59:5f:0f:4a:26:b4:90:6a:12:50:33:b3:
58:fb:2f:44:d7:6c:6d:64:10:0e:c4:9a:76:1b:3f:
fc:02:b3:9c:ad:87:2d:df:21:95:01:b7:4a:1d:d0:
1d:cf:bd:ba:68:ac:f4:b1:0e:41:33:23:58:59:11:
ec:95:1d:22:a1:f7:41:0e:c6:be:b9:79:d2:d1:ac:
21:56:af:26:e9:a3:cc:4e:94:62:4a:be:b5:0c:9c:
75:49:52:7f:73:7b:c1:27:be:10:96:cb:1c:f4:b0:
36:e1:e1:3b:03:cc:df:9b:11:a1:9b:ef:28:6d:5e:
49:f1:f6:da:9b:c7:0e:c6:25:b6:22:d9:e8:21:85:
4c:c7:99:e3:7b:8b:4d:e0:55:49:53:b4:5b:1f:8b:
17:af:b3:fa:d6:41:69:f9:dc:75:be:c2:d9:84:7f:
81:03:f1:07:db:84:51:32:9a:9e:c0:7a:40:e3:83:
c1:fe:76:ef:f4:91:ed:0a:eb:3a:80:b3:99:05:32:
37:ae:33:bf:c6:8e:2b:84:ab:64:d6:2f:09:03:88:
ee:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6B:C1:5C:BF:37:2B:5D:98:86:18:C9:FA:C6:73:B4:51:EA:CE:3B
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/p2vBXL83K12YhhjJ-sZztFHqzjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.117.0/24
31.40.250.0/24
45.129.197.0/24
62.204.52.0/24
77.83.193.0/24
78.142.238.0/24
91.242.234.0/24
130.255.172.0/24
130.255.175.0/24
185.251.22.0/24
185.253.4.0/24
193.42.119.0/24
194.69.164.0/24
195.64.127.0/24
212.24.120.0/24
212.52.18.0/24
212.107.26.0/24
213.109.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:1c:fb:62:18:6b:f6:a8:ee:60:26:c6:90:90:76:85:35:f2:
06:8c:f0:90:9a:2e:72:cb:c3:04:b6:93:c8:85:1e:37:d8:13:
98:26:b3:8c:19:c0:5e:83:ce:38:91:8c:11:26:c7:c8:03:17:
de:93:bb:8a:4c:16:50:0c:2d:4d:2e:ab:90:4c:f0:c2:ff:a5:
03:af:d7:67:8f:75:74:9f:62:46:34:58:f5:c6:ae:8c:06:e3:
3b:0e:fc:40:ca:c0:74:ad:54:c2:22:b7:00:48:e7:23:93:c0:
58:32:b4:a5:d0:e5:dc:35:14:47:f1:3d:40:bb:98:03:e9:a1:
67:5a:02:67:66:6e:51:e7:d1:fa:15:3e:b3:81:11:ec:73:da:
66:e5:40:72:ec:01:70:c1:9a:3f:42:a6:9d:de:1e:95:ba:b3:
f7:17:05:77:8f:52:b1:91:c5:25:e1:53:9f:2f:35:e3:40:e1:
49:6e:f3:e3:e2:40:c4:57:cc:60:ee:5f:f0:85:93:5b:17:6c:
db:86:5a:30:62:5c:ff:a2:dc:29:67:e9:65:6f:6b:38:cb:51:
00:3b:2b:67:a2:ca:ba:30:3a:50:80:75:2c:cb:99:81:fa:30:
18:13:27:cb:35:70:dd:71:6a:35:63:da:d7:bb:24:0a:19:6a:
b1:cf:21:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:35:32 2026 by rpki-client