Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Uxztf7U023GXGEUScmTqEO_gfGo.roa
File: Uxztf7U023GXGEUScmTqEO_gfGo.roa (raw, json)
Hash identifier: gGrsr7XyuRi6jd4l0HrWabkhCAVylFI6zYe23gYxDXw=
Subject key identifier: 53:1C:ED:7F:B5:34:DB:71:97:18:45:12:72:64:EA:10:EF:E0:7C:6A
Certificate issuer: /CN=a7436375fb0322756b55daff64e265ef72c0da52
Certificate serial: 019DB53954F832D5D68A7C6C03355C205D6B
Authority key identifier: A7:43:63:75:FB:03:22:75:6B:55:DA:FF:64:E2:65:EF:72:C0:DA:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0NjdfsDInVrVdr_ZOJl73LA2lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Uxztf7U023GXGEUScmTqEO_gfGo.roa
Signing time: Wed 22 Apr 2026 12:45:26 +0000
ROA not before: Wed 22 Apr 2026 12:45:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206575
IP address blocks: 80.253.160.0/22 maxlen: 22
80.253.160.0/24 maxlen: 24
85.155.232.0/21 maxlen: 21
85.155.232.0/24 maxlen: 24
85.155.233.0/24 maxlen: 24
85.155.234.0/24 maxlen: 24
85.155.235.0/24 maxlen: 24
85.155.236.0/24 maxlen: 24
85.155.237.0/24 maxlen: 24
85.155.238.0/24 maxlen: 24
85.155.239.0/24 maxlen: 24
86.54.32.0/21 maxlen: 21
86.54.32.0/24 maxlen: 24
86.54.33.0/24 maxlen: 24
185.155.224.0/23 maxlen: 23
194.5.68.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/p0NjdfsDInVrVdr_ZOJl73LA2lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/p0NjdfsDInVrVdr_ZOJl73LA2lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/p0NjdfsDInVrVdr_ZOJl73LA2lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b5:39:54:f8:32:d5:d6:8a:7c:6c:03:35:5c:20:5d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7436375fb0322756b55daff64e265ef72c0da52
Validity
Not Before: Apr 22 12:45:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=531ced7fb534db71971845127264ea10efe07c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9a:95:ed:b4:f5:bd:d7:fd:15:0e:b4:80:c5:
bb:74:77:fe:9d:fd:62:f6:df:3d:90:78:3c:4d:5f:
a4:f3:ee:3b:91:78:41:06:9d:1d:29:86:bb:7d:e8:
a6:88:93:9b:3b:66:ac:30:2e:08:28:5c:2f:45:58:
41:64:e4:05:96:d6:c7:c7:be:c9:72:1a:5d:a3:f1:
f5:2d:45:55:8c:ed:ae:5e:a9:79:09:6d:03:3d:52:
de:3a:52:4e:74:e1:a5:f8:fa:4d:79:a2:e8:d4:67:
13:2b:ac:01:02:e7:fc:6f:0c:53:12:d5:76:f2:33:
6f:0e:40:1b:5c:fd:ab:33:58:f7:41:c9:5c:6a:aa:
68:06:48:fb:c1:86:1a:cb:61:f2:fd:c7:9a:cc:3d:
15:5c:f2:dc:a4:6d:1c:ae:93:ff:64:d2:be:f6:0f:
f6:b0:2b:0c:9d:b4:8e:3d:eb:d6:7f:1f:41:26:b1:
54:ef:ae:eb:c7:5e:81:40:d2:c4:63:f5:df:0f:8d:
c6:91:56:b8:e7:95:ab:0e:b6:57:27:5b:84:aa:4a:
6e:d7:58:90:eb:77:ef:69:81:fd:65:48:7d:8f:72:
ae:63:1e:90:ae:a2:a5:08:6c:da:89:54:17:1f:7a:
d0:94:c0:ce:02:55:f6:52:e5:42:61:85:9d:22:22:
7c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1C:ED:7F:B5:34:DB:71:97:18:45:12:72:64:EA:10:EF:E0:7C:6A
X509v3 Authority Key Identifier:
keyid:A7:43:63:75:FB:03:22:75:6B:55:DA:FF:64:E2:65:EF:72:C0:DA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0NjdfsDInVrVdr_ZOJl73LA2lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/Uxztf7U023GXGEUScmTqEO_gfGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e5e3fa-99ee-45cf-bd9a-0e6c1fe9d015/1/p0NjdfsDInVrVdr_ZOJl73LA2lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.160.0/22
85.155.232.0/21
86.54.32.0/21
185.155.224.0/23
194.5.68.0/22
Signature Algorithm: sha256WithRSAEncryption
12:1e:0e:a7:e6:c1:89:ea:c3:76:7d:96:88:ec:a3:81:f4:98:
23:17:5a:c4:db:3c:b3:16:7c:2f:eb:b2:8b:41:14:18:81:5c:
a0:c5:5a:8a:00:92:3e:41:4c:18:b0:fa:ea:a3:d9:67:34:36:
d0:94:17:02:9e:83:9e:83:f2:c8:73:a4:81:d9:9f:b9:b4:29:
9f:d5:80:87:69:1d:36:b0:41:59:73:a4:a0:fc:e1:67:5a:92:
60:cd:aa:55:9a:d8:78:86:65:de:c3:02:d8:39:92:75:de:5c:
b9:d2:13:fd:de:be:07:ba:cf:ec:75:8a:f8:61:2f:fb:69:0d:
68:dc:81:aa:64:b5:4e:a9:ea:c7:d3:a5:cd:48:72:c9:d0:06:
e2:d2:aa:ec:b7:f4:5d:4a:d3:49:17:90:d2:15:75:ea:05:b1:
df:dc:c8:1b:f4:0f:41:ea:16:e4:3d:dc:35:dd:04:e2:8c:13:
bd:4a:1a:ac:b2:31:87:b0:01:1a:9a:5d:1d:2c:8d:57:c0:0b:
50:8e:64:ed:33:f8:93:cf:6c:28:c4:5f:1f:2a:ef:9c:56:db:
ce:6c:5b:dc:df:f9:26:b2:fb:eb:2f:d3:c7:80:18:1b:00:04:
33:87:52:34:24:ae:52:2b:98:1f:94:43:df:1d:04:c1:09:c5:
28:f3:20:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:13 2026 by rpki-client