Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/wLurCwynEuWvDI8phxMuxH32vG4.roa
File: wLurCwynEuWvDI8phxMuxH32vG4.roa (raw, json)
Hash identifier: vgLEs5OVQb+pIBZOh0c/HAonCj89mlbZyiURWUN4jgI=
Subject key identifier: C0:BB:AB:0B:0C:A7:12:E5:AF:0C:8F:29:87:13:2E:C4:7D:F6:BC:6E
Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c
Certificate serial: 019DE044F7BE52BDAA477BFE78D3B57A9A3B
Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/wLurCwynEuWvDI8phxMuxH32vG4.roa
Signing time: Thu 30 Apr 2026 21:21:49 +0000
ROA not before: Thu 30 Apr 2026 21:21:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214143
IP address blocks: 144.56.8.0/24 maxlen: 24
144.56.26.0/24 maxlen: 24
144.56.30.0/24 maxlen: 24
144.56.32.0/24 maxlen: 24
144.56.42.0/24 maxlen: 24
144.56.43.0/24 maxlen: 24
144.56.45.0/24 maxlen: 24
144.56.46.0/24 maxlen: 24
144.56.47.0/24 maxlen: 24
144.56.48.0/24 maxlen: 24
144.56.52.0/24 maxlen: 24
144.56.53.0/24 maxlen: 24
144.56.73.0/24 maxlen: 24
144.56.75.0/24 maxlen: 24
144.56.77.0/24 maxlen: 24
144.56.82.0/24 maxlen: 24
144.56.87.0/24 maxlen: 24
144.56.91.0/24 maxlen: 24
144.56.92.0/24 maxlen: 24
144.56.95.0/24 maxlen: 24
144.56.96.0/24 maxlen: 24
144.56.104.0/24 maxlen: 24
144.56.109.0/24 maxlen: 24
144.56.112.0/24 maxlen: 24
144.56.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e0:44:f7:be:52:bd:aa:47:7b:fe:78:d3:b5:7a:9a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16055801b775e774306321455fd463fbd9273c4c
Validity
Not Before: Apr 30 21:21:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c0bbab0b0ca712e5af0c8f2987132ec47df6bc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:e1:1a:74:0b:44:f1:91:db:2d:fb:17:b5:
41:2b:14:df:b9:9c:4b:7c:8a:96:94:02:5a:8a:db:
80:80:b8:03:fd:80:6e:6c:f3:5c:80:e1:56:ea:d8:
bf:3d:79:0f:a3:e4:56:3f:42:6a:a5:91:b5:53:64:
18:df:7b:4b:8c:dd:37:32:af:af:37:49:f8:81:cf:
3b:32:c4:17:8b:92:5c:94:85:84:be:4b:bb:bb:38:
e6:a0:3f:91:1d:23:4f:84:a4:ac:da:7a:16:5f:df:
d2:43:97:26:75:4e:3a:a0:39:f3:70:12:7e:b2:38:
15:4b:8b:c2:26:b7:33:ac:7b:e8:f7:e2:92:fc:d6:
b5:67:07:87:83:ca:05:3c:29:ea:ff:b2:00:4c:88:
91:f0:5b:94:4d:e4:f9:8c:1c:73:4f:60:91:02:73:
1b:56:f8:da:35:5f:46:ac:a0:88:52:06:de:d6:66:
fa:64:55:f0:32:2e:e7:35:6e:dc:dd:c1:4a:dd:1f:
4c:7f:fe:ed:a4:b0:3c:d8:c8:6f:27:c7:2b:6b:da:
86:be:29:18:23:65:d0:c6:0e:92:57:b6:ed:08:39:
d0:6f:36:8a:16:c4:b9:19:f8:65:96:cc:8f:a4:6f:
cb:07:1c:3c:ed:ad:0b:ae:56:81:fd:43:ec:20:7e:
0a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BB:AB:0B:0C:A7:12:E5:AF:0C:8F:29:87:13:2E:C4:7D:F6:BC:6E
X509v3 Authority Key Identifier:
keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/wLurCwynEuWvDI8phxMuxH32vG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.56.8.0/24
144.56.26.0/24
144.56.30.0/24
144.56.32.0/24
144.56.42.0/23
144.56.45.0-144.56.48.255
144.56.52.0/23
144.56.73.0/24
144.56.75.0/24
144.56.77.0/24
144.56.82.0/24
144.56.87.0/24
144.56.91.0-144.56.92.255
144.56.95.0-144.56.96.255
144.56.104.0/24
144.56.109.0/24
144.56.112.0/24
144.56.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:fa:d5:3c:17:1e:57:8a:2b:49:71:f3:59:29:b0:56:5f:4c:
2b:5c:8a:46:b8:84:ba:d3:66:b5:2a:56:83:21:fa:be:8f:73:
f6:52:ac:55:18:03:b4:c1:b0:dc:b7:6c:32:f8:35:bb:1b:94:
bd:d7:92:b1:9b:67:d1:4b:50:4c:01:69:fc:75:d7:ee:47:a7:
93:c7:08:65:6c:48:b4:5e:b5:b0:8d:c4:e4:10:9f:4e:42:58:
c2:3c:7c:10:19:cb:37:d1:dc:6b:2a:b6:e7:1f:6e:d8:ff:f0:
de:7c:14:70:52:b1:f6:7b:ff:89:94:50:2d:34:cf:64:13:01:
f2:4d:c4:47:e8:1a:60:f3:31:a9:aa:1b:e0:57:4c:68:25:c1:
96:8f:82:94:a3:b0:ca:8d:db:aa:da:63:09:12:16:66:aa:14:
96:8a:6b:5f:16:22:7b:2b:d6:7a:24:60:65:b6:6f:c4:5a:d9:
d5:c0:0e:14:2a:84:0a:a5:c5:99:27:b5:a0:39:ca:94:90:97:
44:1c:01:fb:54:3b:32:8f:7c:96:9d:18:4d:7b:84:29:53:bd:
3d:72:3a:dd:40:4d:5d:ea:18:54:2f:9e:5c:f1:5f:e4:8c:b5:
cf:19:11:c1:05:1f:d0:3d:42:e3:85:46:f7:92:23:5b:61:04:
05:e8:6c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:11:27 2026 by rpki-client