Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/pdwkIwadlN0-ZSqlnbhpCNgcjOI.roa
File: pdwkIwadlN0-ZSqlnbhpCNgcjOI.roa (raw, json)
Hash identifier: /0Hy2qmeek2FQsSytTPO7DFgVQ0C851nswjVNfbYeIg=
Subject key identifier: A5:DC:24:23:06:9D:94:DD:3E:65:2A:A5:9D:B8:69:08:D8:1C:8C:E2
Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Certificate serial: 019D9D3839021AFF48B7F233EE47CBDB8328
Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/pdwkIwadlN0-ZSqlnbhpCNgcjOI.roa
Signing time: Fri 17 Apr 2026 20:53:20 +0000
ROA not before: Fri 17 Apr 2026 20:53:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199428
IP address blocks: 2a14:c380:280::/44 maxlen: 44
2a14:c380:d60::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:38:39:02:1a:ff:48:b7:f2:33:ee:47:cb:db:83:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Validity
Not Before: Apr 17 20:53:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a5dc2423069d94dd3e652aa59db86908d81c8ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:0e:62:f5:36:a3:f3:c2:22:04:bd:9e:7b:75:
f9:41:a9:e0:e5:98:7f:47:40:f4:43:70:28:a2:24:
e7:75:1f:41:32:a0:93:e1:a4:e9:e7:5b:f1:1d:38:
6a:e1:74:34:66:04:9b:e0:65:0e:7e:da:b8:4a:89:
d3:86:1f:1e:32:f7:6f:d1:4b:45:ba:70:48:b7:f6:
24:1d:29:13:dc:9d:b3:ac:d4:2e:e5:4b:ab:a2:d6:
ff:86:14:23:d8:4e:97:a7:83:32:98:81:c8:4a:a8:
c0:45:18:1b:90:c6:6f:ac:45:28:fc:20:4f:eb:fe:
ed:f8:cc:c3:0d:f3:9f:87:ae:1f:e9:ca:0f:c1:90:
71:30:80:fe:1e:f6:96:c7:15:9c:f8:a4:dd:ac:ca:
c2:08:8f:9c:44:a2:3e:8f:99:f3:c3:3a:a5:4f:69:
87:c1:47:04:3c:02:ea:4a:36:19:c5:6c:b9:3e:64:
71:0f:28:40:11:ff:71:4a:63:0c:46:3c:74:ac:d8:
25:f5:6a:19:53:66:30:08:72:57:00:8b:d4:5c:12:
7b:a0:6e:82:ad:60:64:90:79:1d:29:ba:68:aa:37:
2b:e6:a7:72:09:ba:60:8a:52:0c:dd:bd:9f:fb:2a:
48:a0:e2:08:40:b9:c9:a5:3c:9b:27:76:bd:aa:23:
ad:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DC:24:23:06:9D:94:DD:3E:65:2A:A5:9D:B8:69:08:D8:1C:8C:E2
X509v3 Authority Key Identifier:
keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/pdwkIwadlN0-ZSqlnbhpCNgcjOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c380:280::/44
2a14:c380:d60::/44
Signature Algorithm: sha256WithRSAEncryption
32:52:2b:75:e5:34:8c:b9:e5:f4:f7:cb:f5:21:72:d6:ec:d3:
f6:12:8e:50:4b:27:02:4f:0b:f1:65:bb:80:db:9c:36:ed:c7:
5d:7c:e4:67:5e:d8:40:d9:39:9e:f6:14:00:12:c1:56:17:5f:
de:f4:aa:9d:9b:1d:1c:f6:80:49:8c:ff:cb:86:50:80:c2:cc:
72:99:cd:c8:ac:f7:d4:b9:a3:03:f6:78:80:96:cb:cb:7c:d5:
8e:2a:0e:91:0f:c1:b3:0e:fd:c4:fb:d9:d6:4c:4f:63:0b:40:
a7:44:8e:fc:ef:1f:17:bd:72:ec:4a:1c:2b:48:79:c6:13:15:
2a:f1:7d:b6:ed:5f:3c:56:59:b1:e8:04:79:00:d7:3f:ac:a3:
f8:bf:6a:4b:59:79:0f:e0:16:dc:eb:e0:18:27:b3:3f:04:ef:
83:d7:7f:ef:f4:72:d8:a1:ec:18:0a:09:a1:ca:50:ed:71:37:
18:33:89:3b:40:77:e7:c7:52:70:4d:a5:d5:ab:ba:82:06:60:
7a:16:19:2f:fc:01:fe:b0:61:06:48:64:78:86:68:d1:e1:a1:
f2:d6:44:24:d1:b9:dc:98:36:f6:51:ae:43:d0:c3:7f:f9:2f:
ed:18:83:87:e2:1d:36:06:d0:a3:b0:24:2f:72:da:02:4e:9e:
8c:8b:c6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:20:15 2026 by rpki-client