Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/5jOb8o1BbBXO52drtCV8RnZe9h0.roa
File: 5jOb8o1BbBXO52drtCV8RnZe9h0.roa (raw, json)
Hash identifier: fEi3qbuXq214iH/x1u07FGO1olTWt/av+qXuhlLn1AY=
Subject key identifier: E6:33:9B:F2:8D:41:6C:15:CE:E7:67:6B:B4:25:7C:46:76:5E:F6:1D
Certificate issuer: /CN=f219383a3e3f116a9bcc4769c8517cdce40765c7
Certificate serial: 01995EC48DAAC8C5297A07471C066B85F2B6
Authority key identifier: F2:19:38:3A:3E:3F:11:6A:9B:CC:47:69:C8:51:7C:DC:E4:07:65:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hk4Oj4_EWqbzEdpyFF83OQHZcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/5jOb8o1BbBXO52drtCV8RnZe9h0.roa
Signing time: Thu 18 Sep 2025 21:39:23 +0000
ROA not before: Thu 18 Sep 2025 21:39:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52048
IP address blocks: 46.183.216.0/21 maxlen: 21
46.183.216.0/24 maxlen: 24
46.183.217.0/24 maxlen: 24
46.183.218.0/24 maxlen: 24
46.183.219.0/24 maxlen: 24
46.183.220.0/24 maxlen: 24
46.183.221.0/24 maxlen: 24
46.183.222.0/24 maxlen: 24
46.183.223.0/24 maxlen: 24
84.38.130.0/24 maxlen: 24
84.38.132.0/24 maxlen: 24
84.38.134.0/24 maxlen: 24
84.38.135.0/24 maxlen: 24
185.28.47.0/24 maxlen: 24
2a02:4840::/48 maxlen: 48
2a02:4840:1::/48 maxlen: 48
2a02:4840:2::/48 maxlen: 48
2a02:4840:1000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/8hk4Oj4_EWqbzEdpyFF83OQHZcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/8hk4Oj4_EWqbzEdpyFF83OQHZcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hk4Oj4_EWqbzEdpyFF83OQHZcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5e:c4:8d:aa:c8:c5:29:7a:07:47:1c:06:6b:85:f2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f219383a3e3f116a9bcc4769c8517cdce40765c7
Validity
Not Before: Sep 18 21:39:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6339bf28d416c15cee7676bb4257c46765ef61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5f:7d:1c:90:8b:39:7d:5c:3d:c9:ce:e5:81:
7d:a1:ab:3d:1b:94:c2:78:74:b6:c7:f2:e4:c2:91:
b9:f5:fc:1e:99:a5:32:11:50:b9:e3:f8:76:94:b6:
81:0e:34:4f:6f:ba:f2:5b:96:09:de:a9:b5:6b:6f:
7a:da:d6:e5:d3:85:17:c3:28:8a:5e:0c:68:67:7d:
12:be:f2:50:52:8d:d1:25:01:e0:c9:69:77:b7:29:
19:0e:d9:46:fc:bf:10:4e:5d:da:67:cd:a2:27:6b:
c0:61:33:5f:c9:44:72:4b:e0:32:48:b5:5c:61:38:
58:20:71:89:14:a0:cd:8b:28:55:90:84:cf:00:99:
22:80:b0:1d:de:ca:66:be:a3:81:b3:0c:6d:f4:b5:
3f:06:e4:9d:65:2b:e3:38:c6:b0:72:74:da:26:3c:
fa:3d:2a:29:a2:9d:33:e1:1d:60:45:e8:d0:bc:44:
3b:e8:c2:e4:81:9c:7a:19:c1:6d:9b:fb:82:d7:07:
b7:04:f9:3a:2b:61:27:10:bd:28:0e:75:bd:10:e5:
85:f1:e3:d3:c8:3f:6b:10:61:49:61:92:96:36:2d:
cd:fa:03:1f:1a:bb:f3:fd:17:a0:dc:74:a8:25:20:
6a:38:82:c5:92:56:19:70:42:d1:d7:48:24:b8:d8:
df:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:33:9B:F2:8D:41:6C:15:CE:E7:67:6B:B4:25:7C:46:76:5E:F6:1D
X509v3 Authority Key Identifier:
keyid:F2:19:38:3A:3E:3F:11:6A:9B:CC:47:69:C8:51:7C:DC:E4:07:65:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hk4Oj4_EWqbzEdpyFF83OQHZcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/5jOb8o1BbBXO52drtCV8RnZe9h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7cf0b1-2298-4484-bd80-6cc9f6cbaac4/1/8hk4Oj4_EWqbzEdpyFF83OQHZcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.216.0/21
84.38.130.0/24
84.38.132.0/24
84.38.134.0/23
185.28.47.0/24
IPv6:
2a02:4840::-2a02:4840:2:ffff:ffff:ffff:ffff:ffff
2a02:4840:1000::/48
Signature Algorithm: sha256WithRSAEncryption
62:be:be:c9:f7:6f:fc:52:3c:55:93:65:78:7d:7a:1f:eb:bd:
ca:76:9a:bf:ac:22:38:db:36:62:b1:85:6f:e9:2f:40:75:c7:
c2:dd:c7:a6:84:a6:1d:ac:36:0e:60:30:c8:b0:75:db:9c:46:
9b:3e:12:6e:ac:77:f4:a2:92:a6:30:f6:c6:b1:8a:c9:4d:98:
cf:64:95:97:ab:33:a9:b4:78:1e:af:77:46:0c:4e:be:3a:cd:
24:ec:4b:09:b6:2e:9f:ec:15:4d:66:91:47:33:27:fb:ed:11:
65:68:62:8a:0b:4d:13:cc:3a:d0:02:c8:b1:21:fa:c2:4a:fa:
ab:21:8b:42:54:ab:75:6d:6f:5f:4d:e2:8a:29:77:ff:76:e7:
7a:80:1a:67:51:d3:b9:01:a3:77:10:87:4a:3a:1d:6a:4c:c1:
b8:6e:0f:1a:01:6f:7a:fa:f9:d8:cd:64:81:8f:48:a3:8e:d8:
93:88:11:25:ff:46:2a:92:5b:1f:2a:d0:94:98:6f:8d:de:8e:
95:d3:38:76:78:43:6d:ab:61:6f:9c:60:3a:f6:b2:2a:76:cf:
2c:f1:75:92:30:4c:2d:0a:38:7c:17:82:53:b8:de:1d:4c:c3:
fe:b4:43:d8:6a:ea:76:bf:01:f6:07:71:91:a8:61:06:50:45:
34:6b:1f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:01:25 2025 by rpki-client