Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/50cYFeNeT0Yd1j4ro2mOsPzf4X4.roa
File: 50cYFeNeT0Yd1j4ro2mOsPzf4X4.roa (raw, json)
Hash identifier: 7AQkcd/UU85hRIZKnjD/KJ/Eur7i6Qzty6jzNVlIqXA=
Subject key identifier: E7:47:18:15:E3:5E:4F:46:1D:D6:3E:2B:A3:69:8E:B0:FC:DF:E1:7E
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019E1EF25194DD0DDB1AB696E7E01D7D795A
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/50cYFeNeT0Yd1j4ro2mOsPzf4X4.roa
Signing time: Wed 13 May 2026 01:27:37 +0000
ROA not before: Wed 13 May 2026 01:27:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203048
IP address blocks: 212.134.159.0/24 maxlen: 24
212.134.161.0/24 maxlen: 24
212.134.175.0/24 maxlen: 24
212.134.204.0/24 maxlen: 24
212.134.244.0/24 maxlen: 24
212.135.17.0/24 maxlen: 24
212.135.140.0/24 maxlen: 24
212.135.149.0/24 maxlen: 24
212.135.151.0/24 maxlen: 24
212.135.156.0/24 maxlen: 24
212.135.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:f2:51:94:dd:0d:db:1a:b6:96:e7:e0:1d:7d:79:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: May 13 01:27:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e7471815e35e4f461dd63e2ba3698eb0fcdfe17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:a2:8a:f7:e6:65:92:a7:d9:ef:3b:13:51:
88:b6:01:8a:38:fe:d3:d4:29:bb:6d:6f:51:d7:18:
3b:14:ba:ea:7e:37:9f:26:20:a2:b0:ab:11:65:a3:
11:b5:cc:df:af:99:60:ce:b8:13:df:a2:70:a5:98:
42:91:d0:48:8c:95:fb:ee:f3:51:f4:89:19:24:e7:
65:87:21:04:e6:0a:cd:a6:3e:74:64:93:74:05:dc:
38:09:e2:88:ab:b8:e5:2f:de:6d:64:ce:c4:7c:73:
b0:c9:33:d8:64:97:df:17:69:ad:ee:65:70:78:3f:
99:1a:93:84:bb:ed:f6:f9:0d:11:03:a4:ec:27:3d:
50:f8:b9:b8:56:10:3c:94:82:ed:38:5a:d7:61:8a:
ac:2c:3c:1d:65:7e:7d:d6:52:2c:40:a9:91:1e:ef:
7f:4f:f4:39:67:ee:b8:60:7f:1c:aa:1a:4b:ad:48:
30:81:ff:69:43:db:c4:9c:1c:e8:06:54:ef:55:8c:
bb:2e:54:56:28:b8:27:17:2d:26:aa:cb:87:21:cb:
3b:c2:b6:5c:59:66:f5:53:2e:97:ea:45:6f:a7:c8:
29:f1:7f:ed:ce:cc:26:f8:8c:3b:0b:a3:a4:7e:fd:
41:2d:55:be:ba:84:b4:c8:7f:28:d4:a0:e8:cf:91:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:47:18:15:E3:5E:4F:46:1D:D6:3E:2B:A3:69:8E:B0:FC:DF:E1:7E
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/50cYFeNeT0Yd1j4ro2mOsPzf4X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.134.159.0/24
212.134.161.0/24
212.134.175.0/24
212.134.204.0/24
212.134.244.0/24
212.135.17.0/24
212.135.140.0/24
212.135.149.0/24
212.135.151.0/24
212.135.156.0/23
Signature Algorithm: sha256WithRSAEncryption
71:04:a2:2c:3b:42:05:cd:94:a1:61:53:cc:f1:c5:8e:b1:f7:
0c:71:33:75:54:50:58:55:d4:e9:e0:a1:4d:68:6f:44:4b:f5:
8e:b7:0f:e7:e9:4b:cf:41:ef:73:7e:c5:a4:14:91:cd:0f:7a:
d1:28:d2:d2:0e:16:2f:6f:0d:68:e7:06:d0:39:eb:5f:49:d2:
56:60:4f:bf:6a:36:25:1c:4c:88:09:b9:f4:1a:5f:1d:be:49:
74:a6:1d:81:76:5d:d9:d2:ca:41:80:f6:bd:05:bd:e3:9a:79:
a2:a1:3b:f1:ef:31:ee:9a:a5:dd:11:69:78:36:85:5d:0b:98:
3c:99:bc:28:1a:f4:f1:b2:60:c9:66:7d:54:84:cd:d1:c4:94:
1c:fc:35:b7:6a:3b:b7:e7:8b:ff:d4:d1:df:77:e7:2e:42:15:
8d:bd:2b:df:c0:87:00:ac:b6:42:72:ff:01:eb:a4:17:ff:88:
aa:d4:76:5c:61:77:5a:f6:37:18:da:07:12:2d:a3:37:23:0c:
02:97:fd:c0:5e:46:be:9a:1f:57:6f:0f:18:6a:d7:6e:22:10:
9e:bd:1c:ec:bd:d8:f6:71:87:08:76:ac:89:ab:41:21:a8:15:
32:17:a1:39:3b:3f:5c:7b:90:04:96:8c:71:e8:f4:2f:ba:88:
00:2b:2a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:26:02 2026 by rpki-client