Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/W72f-6BELHQfo_ElqKHZcZbMH1E.roa
File: W72f-6BELHQfo_ElqKHZcZbMH1E.roa (raw, json)
Hash identifier: vuVlL9kggODDrKP4UZaYQUBnZcAyLs+lKp2eQ9UaNjw=
Subject key identifier: 5B:BD:9F:FB:A0:44:2C:74:1F:A3:F1:25:A8:A1:D9:71:96:CC:1F:51
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019CCF27A8BC172BA65055593B7E91FAFB23
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/W72f-6BELHQfo_ElqKHZcZbMH1E.roa
Signing time: Sun 08 Mar 2026 20:33:28 +0000
ROA not before: Sun 08 Mar 2026 20:33:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9457
IP address blocks: 151.246.129.0/24 maxlen: 24
151.247.79.0/24 maxlen: 24
151.247.111.0/24 maxlen: 24
151.247.180.0/24 maxlen: 24
151.247.237.0/24 maxlen: 24
151.247.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:cf:27:a8:bc:17:2b:a6:50:55:59:3b:7e:91:fa:fb:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Mar 8 20:33:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5bbd9ffba0442c741fa3f125a8a1d97196cc1f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d4:b6:73:20:4a:d1:dc:c8:5d:87:e1:e2:e6:
de:b1:5c:84:f6:54:d4:91:2f:c6:fa:3e:21:0f:a3:
75:81:d1:0a:c7:fc:44:1f:ac:64:15:83:2b:b0:6a:
5f:b1:42:fc:62:f5:a7:22:37:73:e1:b6:ec:f9:20:
42:aa:cd:fa:66:3d:df:0e:59:56:c6:ad:0a:14:40:
60:b0:2c:79:68:dd:94:0d:0e:9c:7e:be:46:ef:58:
5a:88:38:0d:54:fb:b7:f9:d4:eb:1f:43:e4:68:f1:
31:94:d8:ae:56:a6:b0:03:98:75:54:a4:e9:35:04:
23:68:19:51:7b:0a:2a:be:7f:af:19:4f:50:7d:de:
99:12:76:c8:7b:d8:bb:85:1c:ed:7d:89:75:0e:40:
02:36:ad:87:c4:10:9d:a6:3c:3d:5c:69:14:4f:83:
2c:5f:e4:20:de:cb:1e:fe:9f:b5:aa:03:54:bd:1e:
ed:97:67:32:9f:89:0a:19:24:e0:f5:70:85:33:54:
a8:2f:12:04:b5:55:7e:b3:e7:67:99:e7:c6:33:3a:
8c:6d:7d:ee:ae:02:37:cc:c6:13:3f:c7:8d:d3:9b:
2a:6e:7d:f1:53:c2:86:65:12:6b:6b:11:70:40:0e:
58:a8:27:64:57:cb:ea:e7:21:e8:77:89:b3:2e:ac:
85:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BD:9F:FB:A0:44:2C:74:1F:A3:F1:25:A8:A1:D9:71:96:CC:1F:51
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/W72f-6BELHQfo_ElqKHZcZbMH1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.246.129.0/24
151.247.79.0/24
151.247.111.0/24
151.247.180.0/24
151.247.237.0/24
151.247.251.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c2:a2:51:91:19:72:e7:22:e0:98:e4:70:04:c7:71:ca:b1:
40:6d:69:c7:85:37:4c:56:bd:de:de:bb:58:e6:80:d7:09:cf:
b2:e7:b2:25:02:55:51:9d:b8:e0:07:ab:18:4c:3f:1f:74:d4:
1f:71:91:3e:d4:5e:ea:86:c1:02:79:0f:76:78:7e:01:5c:89:
db:94:19:da:93:e9:1b:c7:87:d6:81:ad:e6:17:38:28:2a:ba:
60:dd:b1:8a:cb:e6:46:d0:a7:2e:08:a5:f1:b5:bf:04:a2:5d:
aa:75:4c:a8:0c:c5:60:eb:28:36:78:3e:5c:74:bf:3b:d8:69:
0b:8c:b1:d9:3d:dd:f6:15:c5:f3:78:1b:be:3a:f0:99:d9:9b:
98:e3:7d:1c:9d:ea:14:07:02:53:8e:68:22:fc:30:19:71:fa:
7e:f6:79:47:83:8d:41:5b:9e:72:55:d4:74:98:17:2a:78:f9:
2e:87:a8:22:bb:19:99:6d:70:df:45:b8:86:e5:14:28:3a:0a:
74:17:f7:ab:3d:7d:9d:e0:f8:c9:40:4e:9e:dc:fe:52:2b:e9:
d7:47:d2:6a:48:1f:3f:93:e3:2f:1c:d3:69:65:5f:b7:55:96:
b4:10:62:14:92:36:a4:5f:e5:64:22:b1:88:d8:71:84:bc:c1:
eb:d2:aa:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:18:13 2026 by rpki-client