Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/54-l6_WE4mpSzibcgvfylxURMs8.roa
File: 54-l6_WE4mpSzibcgvfylxURMs8.roa (raw, json)
Hash identifier: sePGTr5+yfqTzWvL3Wjt87hvin99jlrgLvtLsAD9+VQ=
Subject key identifier: E7:8F:A5:EB:F5:84:E2:6A:52:CE:26:DC:82:F7:F2:97:15:11:32:CF
Certificate issuer: /CN=36d6044966c57439aaf520310885f81d45275b2a
Certificate serial: 019DD70CBC09B145959D62CFEB3F8C099B28
Authority key identifier: 36:D6:04:49:66:C5:74:39:AA:F5:20:31:08:85:F8:1D:45:27:5B:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NtYESWbFdDmq9SAxCIX4HUUnWyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/54-l6_WE4mpSzibcgvfylxURMs8.roa
Signing time: Wed 29 Apr 2026 02:23:49 +0000
ROA not before: Wed 29 Apr 2026 02:23:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 142002
IP address blocks: 134.168.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/NtYESWbFdDmq9SAxCIX4HUUnWyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/NtYESWbFdDmq9SAxCIX4HUUnWyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NtYESWbFdDmq9SAxCIX4HUUnWyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d7:0c:bc:09:b1:45:95:9d:62:cf:eb:3f:8c:09:9b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36d6044966c57439aaf520310885f81d45275b2a
Validity
Not Before: Apr 29 02:23:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e78fa5ebf584e26a52ce26dc82f7f297151132cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1b:1e:a8:78:40:6e:b8:b0:49:7a:e9:67:e3:
6a:e5:18:f9:10:e3:b7:80:59:b0:18:54:3c:ac:3f:
4a:6b:a2:e6:67:72:7e:df:19:8a:7c:2f:c2:48:bc:
95:c8:6f:2b:17:22:68:73:ad:22:92:4f:ab:7b:af:
d7:3f:f9:a3:25:b6:6e:5a:d1:14:f1:40:66:d5:5a:
18:f3:1c:a5:d1:23:93:8b:b7:13:9f:ad:27:b9:6f:
97:c1:01:3a:c9:fe:7a:41:59:a0:50:56:e5:03:15:
01:08:d2:5b:7d:af:7f:67:47:56:5c:7b:24:23:5d:
36:93:20:0a:65:85:7d:e3:86:92:94:4a:dc:df:2f:
71:18:41:a6:16:26:73:05:8e:97:1b:f0:07:b9:9d:
b7:35:3d:30:ba:d5:e0:c6:52:dd:27:2f:48:cf:98:
a8:76:20:22:eb:c9:4a:d2:17:17:25:e9:43:a4:bb:
bd:41:7e:30:9a:5f:d7:e4:6a:93:0f:71:6e:f4:76:
4e:35:aa:2f:0c:d4:75:86:80:65:a9:65:be:2a:e8:
3d:92:cd:c2:04:6a:f1:e7:aa:dc:8c:dc:68:47:8c:
0b:bc:13:ab:7d:e0:3e:a5:36:cc:ac:13:97:e8:26:
c1:b2:18:d2:60:75:49:ef:11:8a:35:e2:78:65:f0:
3c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8F:A5:EB:F5:84:E2:6A:52:CE:26:DC:82:F7:F2:97:15:11:32:CF
X509v3 Authority Key Identifier:
keyid:36:D6:04:49:66:C5:74:39:AA:F5:20:31:08:85:F8:1D:45:27:5B:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NtYESWbFdDmq9SAxCIX4HUUnWyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/54-l6_WE4mpSzibcgvfylxURMs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/0543e3-1bf0-4db3-b01e-a1d6054350d2/1/NtYESWbFdDmq9SAxCIX4HUUnWyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.168.240.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:cd:63:fd:e2:f5:df:23:4d:2e:9a:8e:89:0e:65:c2:b0:ff:
13:93:ae:7d:9c:c5:2d:0d:87:93:df:a8:6a:a3:a7:96:b8:dd:
2f:e5:3b:99:c8:12:73:0f:2f:37:9f:37:46:ff:bd:5c:de:93:
ef:6b:10:57:68:44:08:7f:33:7b:30:d9:ce:0e:cb:4e:b6:a6:
31:f8:1a:af:5d:5a:d2:cb:82:35:2b:05:0a:84:31:91:f5:b8:
b5:82:b1:8d:7c:98:5e:be:24:e6:3d:07:4f:bf:b6:55:f3:ec:
43:5a:47:dc:e3:64:94:5a:e1:72:55:c5:aa:db:74:cd:d7:96:
09:56:ed:27:bb:a7:34:a4:aa:3c:dc:4d:1d:80:3c:cb:89:04:
90:f3:d2:81:be:e6:a7:eb:29:f4:1f:dd:86:cb:33:c3:35:db:
e1:ba:98:55:72:fa:42:60:e1:4b:a7:e1:e3:7a:f0:d4:99:70:
c3:75:66:d7:c1:65:51:42:0b:55:c6:78:9a:88:90:4f:34:e1:
8b:96:0a:13:9d:64:d9:68:68:79:55:c5:ee:0f:1b:75:82:79:
d6:f6:a6:a9:cf:e2:e2:01:0d:91:c1:e0:f8:4b:4d:4b:70:d1:
94:cc:ca:51:d5:04:15:44:95:65:d9:4d:00:8a:d3:3a:8a:1f:
d9:1d:27:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ3XDLwJsUWVnWLP6z+MCZsoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2ZDYwNDQ5NjZjNTc0MzlhYWY1MjAzMTA4ODVmODFkNDUy
NzViMmEwHhcNMjYwNDI5MDIyMzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzhmYTVlYmY1ODRlMjZhNTJjZTI2ZGM4MmY3ZjI5NzE1MTEzMmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhseqHhAbriwSXrpZ+Nq5Rj5EOO3
gFmwGFQ8rD9Ka6LmZ3J+3xmKfC/CSLyVyG8rFyJoc60ikk+re6/XP/mjJbZuWtEU
8UBm1VoY8xyl0SOTi7cTn60nuW+XwQE6yf56QVmgUFblAxUBCNJbfa9/Z0dWXHsk
I102kyAKZYV944aSlErc3y9xGEGmFiZzBY6XG/AHuZ23NT0wutXgxlLdJy9Iz5io
diAi68lK0hcXJelDpLu9QX4wml/X5GqTD3Fu9HZONaovDNR1hoBlqWW+Kug9ks3C
BGrx56rcjNxoR4wLvBOrfeA+pTbMrBOX6CbBshjSYHVJ7xGKNeJ4ZfA8+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOePpev1hOJqUs4m3IL38pcVETLPMB8GA1UdIwQY
MBaAFDbWBElmxXQ5qvUgMQiF+B1FJ1sqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnRZRVNXYkZkRG1xOVNBeENJWDRIVVVuV3lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8wNTQzZTMtMWJmMC00ZGIzLWIwMWUt
YTFkNjA1NDM1MGQyLzEvNTQtbDZfV0U0bXBTemliY2d2ZnlseFVSTXM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8wNTQzZTMtMWJmMC00ZGIzLWIwMWUtYTFkNjA1NDM1MGQy
LzEvTnRZRVNXYkZkRG1xOVNBeENJWDRIVVVuV3lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEhqjwMA0G
CSqGSIb3DQEBCwUAA4IBAQAvzWP94vXfI00umo6JDmXCsP8Tk659nMUtDYeT36hq
o6eWuN0v5TuZyBJzDy83nzdG/71c3pPvaxBXaEQIfzN7MNnODstOtqYx+BqvXVrS
y4I1KwUKhDGR9bi1grGNfJheviTmPQdPv7ZV8+xDWkfc42SUWuFyVcWq23TN15YJ
Vu0nu6c0pKo83E0dgDzLiQSQ89KBvuan6yn0H92GyzPDNdvhuphVcvpCYOFLp+Hj
evDUmXDDdWbXwWVRQgtVxniaiJBPNOGLlgoTnWTZaGh5VcXuDxt1gnnW9qapz+Li
AQ2RweD4S01LcNGUzMpR1QQVRJVl2U0AitM6ih/ZHScq
-----END CERTIFICATE-----
Generated at Wed May 13 06:04:38 2026 by rpki-client