Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/V1usao3qpDqGVLySpvKXUHdcIbE.roa
File: V1usao3qpDqGVLySpvKXUHdcIbE.roa (raw, json)
Hash identifier: C0T6PXVa6jhzx1rVw+/pXz+xTGVYgTQEzHJN5tSVk6w=
Subject key identifier: 57:5B:AC:6A:8D:EA:A4:3A:86:54:BC:92:A6:F2:97:50:77:5C:21:B1
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 019D00B7F827C86A6617059F110A8FF5CB8B
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/V1usao3qpDqGVLySpvKXUHdcIbE.roa
Signing time: Wed 18 Mar 2026 11:32:29 +0000
ROA not before: Wed 18 Mar 2026 11:32:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 2856
IP address blocks: 46.248.96.0/22 maxlen: 22
46.248.102.0/23 maxlen: 24
46.248.104.0/23 maxlen: 24
46.248.106.0/23 maxlen: 23
46.248.108.0/22 maxlen: 24
46.248.116.0/22 maxlen: 24
46.248.120.0/22 maxlen: 24
46.248.124.0/23 maxlen: 23
46.248.126.0/23 maxlen: 23
82.136.26.0/24 maxlen: 24
82.136.30.0/23 maxlen: 24
82.136.43.0/24 maxlen: 24
82.136.47.0/24 maxlen: 24
82.136.48.0/22 maxlen: 24
82.136.52.0/24 maxlen: 24
82.136.54.0/23 maxlen: 24
82.136.56.0/22 maxlen: 24
85.116.0.0/23 maxlen: 23
85.116.2.0/23 maxlen: 23
85.116.4.0/23 maxlen: 23
85.116.6.0/23 maxlen: 23
85.116.11.0/24 maxlen: 24
85.116.16.0/21 maxlen: 21
85.116.24.0/24 maxlen: 24
85.116.25.0/24 maxlen: 24
85.116.26.0/24 maxlen: 24
85.116.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:00:b7:f8:27:c8:6a:66:17:05:9f:11:0a:8f:f5:cb:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Mar 18 11:32:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=575bac6a8deaa43a8654bc92a6f29750775c21b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a9:22:8f:fa:03:36:de:74:44:fb:a9:c9:3a:
58:56:62:99:f8:8b:38:55:91:ad:ea:1a:45:03:4c:
6c:0b:a1:d3:c1:d1:21:69:e3:45:7d:dd:71:da:fb:
9a:01:d7:ba:da:19:79:b9:26:01:6b:06:f4:e9:8f:
5c:94:49:a1:a0:7c:98:64:cf:79:da:d9:d4:8a:f7:
29:4e:23:44:ee:95:45:c4:ce:ae:d9:53:b1:17:ac:
b4:81:24:2b:00:16:f8:bf:ec:f2:d1:40:fb:35:d1:
c0:9b:40:24:d2:26:6c:20:78:0a:cb:f9:73:8e:2e:
73:51:a2:bd:e0:5c:b6:4e:f5:c1:1e:8a:5f:f7:01:
92:4f:9e:15:56:68:7c:6b:d6:f2:78:3b:2b:28:78:
7d:c8:67:01:39:ea:14:40:b5:1a:74:7f:f3:aa:ce:
d0:89:f8:d0:e0:ad:b6:9c:34:94:55:ce:29:ee:bb:
1e:4f:f7:aa:74:7d:b4:9e:27:a6:8c:dc:6f:30:ca:
18:2e:87:c6:82:f1:3b:60:19:10:87:a2:d6:63:b8:
86:63:7a:96:93:ff:ec:1f:b2:76:68:b6:ce:8c:86:
58:ac:bb:77:4c:7c:b0:43:1f:0e:9a:21:8a:59:21:
7f:8c:37:55:38:ff:26:6d:2e:e0:d7:f0:51:c8:35:
57:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:5B:AC:6A:8D:EA:A4:3A:86:54:BC:92:A6:F2:97:50:77:5C:21:B1
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/V1usao3qpDqGVLySpvKXUHdcIbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.248.96.0/22
46.248.102.0-46.248.111.255
46.248.116.0-46.248.127.255
82.136.26.0/24
82.136.30.0/23
82.136.43.0/24
82.136.47.0-82.136.52.255
82.136.54.0-82.136.59.255
85.116.0.0/21
85.116.11.0/24
85.116.16.0-85.116.27.255
Signature Algorithm: sha256WithRSAEncryption
8b:42:a1:9d:b0:4d:0c:42:e4:54:13:71:6c:fb:98:43:49:66:
62:12:90:9d:6a:fd:83:ab:2e:e7:6c:1a:04:7f:50:58:13:a6:
e9:2a:31:b7:83:29:b0:25:f7:bd:96:47:a5:0d:89:e0:03:03:
d3:0a:24:93:36:a8:69:5b:da:9a:63:4e:0c:cf:eb:af:2d:89:
6f:ce:db:b6:b0:d4:41:6e:9e:57:cf:d3:89:61:c6:8c:79:67:
3b:a1:9f:0b:63:d9:eb:b7:fd:18:96:f1:4d:c9:c1:dc:b2:6e:
df:46:51:c3:4e:10:8a:1d:a5:60:67:22:d8:ab:16:a7:be:08:
2c:bf:51:33:41:cd:f5:91:da:8e:86:c0:04:be:5f:32:97:b8:
8a:a5:54:9b:d3:de:1d:04:d1:fb:c1:3b:ab:66:06:97:ff:87:
35:e6:8f:c0:51:af:00:5b:46:bf:d6:d1:91:0c:cf:af:6c:f4:
db:4e:c5:bc:02:f7:bb:9b:ee:89:2f:d8:5f:6d:33:3f:6a:59:
89:e3:fe:37:c6:48:f6:65:00:6f:fb:c0:29:ab:60:65:12:b5:
05:1b:ae:31:34:84:60:77:4a:b1:44:98:c0:7b:36:8c:3f:4f:
b6:33:a7:9f:07:5e:0e:ca:c7:9e:e3:98:52:7f:03:ce:e2:0d:
99:42:09:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:37:05 2026 by rpki-client