Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/6m3pa9Ng-lepr-XcBTqn1gqY_DY.roa
File: 6m3pa9Ng-lepr-XcBTqn1gqY_DY.roa (raw, json)
Hash identifier: iDACbKqYbxyRt0xcPBz5G+LTNPwkr4+BIktwxOzGi4w=
Subject key identifier: EA:6D:E9:6B:D3:60:FA:57:A9:AF:E5:DC:05:3A:A7:D6:0A:98:FC:36
Certificate issuer: /CN=5dc28dd5d0ce18e212c69b0a0251e9d61571cac6
Certificate serial: 019B7758C5C0A763C1B727ED9251DD5B64E5
Authority key identifier: 5D:C2:8D:D5:D0:CE:18:E2:12:C6:9B:0A:02:51:E9:D6:15:71:CA:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/6m3pa9Ng-lepr-XcBTqn1gqY_DY.roa
Signing time: Thu 01 Jan 2026 02:17:44 +0000
ROA not before: Thu 01 Jan 2026 02:17:44 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51336
IP address blocks: 178.214.64.0/20 maxlen: 20
178.214.80.0/23 maxlen: 23
178.214.82.0/23 maxlen: 23
178.214.84.0/23 maxlen: 23
178.214.86.0/23 maxlen: 23
178.214.88.0/24 maxlen: 24
178.214.89.0/24 maxlen: 24
178.214.91.0/24 maxlen: 24
178.214.92.0/24 maxlen: 24
178.214.93.0/24 maxlen: 24
178.214.94.0/24 maxlen: 24
178.214.95.0/24 maxlen: 24
178.215.208.0/21 maxlen: 21
178.215.211.0/24 maxlen: 24
178.215.216.0/22 maxlen: 22
178.215.220.0/23 maxlen: 23
178.215.222.0/24 maxlen: 24
178.215.223.0/24 maxlen: 24
185.61.200.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:77:58:c5:c0:a7:63:c1:b7:27:ed:92:51:dd:5b:64:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc28dd5d0ce18e212c69b0a0251e9d61571cac6
Validity
Not Before: Jan 1 02:17:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ea6de96bd360fa57a9afe5dc053aa7d60a98fc36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:88:5e:9a:2d:65:ad:47:3c:fc:94:a4:0b:71:
bb:11:1b:4d:4c:69:12:b9:16:d5:3e:c6:e7:61:a8:
65:1a:7d:7e:17:13:11:8f:59:f2:3b:f6:20:e2:c5:
43:c6:96:e2:69:63:21:6b:13:d0:ef:27:e7:20:c9:
14:d8:66:cb:e7:1b:3e:69:a8:9d:8e:8e:6a:fa:53:
9c:47:ac:17:03:12:90:44:4c:52:f1:67:35:03:a9:
20:20:f7:52:42:3e:20:e0:b2:16:28:c7:03:e9:39:
2c:ab:37:ba:bd:1e:7b:21:16:28:d4:3d:ff:b5:26:
f2:da:92:3f:1f:a5:8f:d1:e6:eb:4c:4a:f1:20:38:
55:d9:40:46:e7:8b:7a:ad:ef:a6:24:c8:38:35:6e:
5c:6e:e9:24:1c:7d:1f:d7:63:c3:b5:0e:c5:52:8f:
02:4b:10:2e:ae:25:5c:d4:46:3a:b3:98:09:88:c0:
3c:be:8d:b5:1f:f4:b6:84:79:a5:62:19:09:78:26:
6e:82:53:89:d5:b7:e0:b7:3e:36:0d:37:e6:89:38:
91:06:0d:ad:7e:bd:b9:67:d4:52:2d:f1:ab:26:57:
e1:71:44:e0:2e:c4:56:4e:e6:5f:69:b1:9a:47:8d:
0e:a5:e3:6a:44:16:5f:e8:a0:6f:b6:d9:bb:35:0e:
1f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6D:E9:6B:D3:60:FA:57:A9:AF:E5:DC:05:3A:A7:D6:0A:98:FC:36
X509v3 Authority Key Identifier:
keyid:5D:C2:8D:D5:D0:CE:18:E2:12:C6:9B:0A:02:51:E9:D6:15:71:CA:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/6m3pa9Ng-lepr-XcBTqn1gqY_DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.64.0-178.214.89.255
178.214.91.0-178.214.95.255
178.215.208.0/20
185.61.200.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:47:95:c7:d7:f0:74:88:0e:b1:d8:55:ec:e0:fb:67:35:14:
d5:c8:5d:94:73:7e:5b:ca:12:02:4b:c3:38:23:33:ad:7d:23:
fe:66:f6:43:e7:a5:83:62:43:37:79:e8:2b:46:64:7e:a7:28:
74:d5:ee:f5:2f:82:cb:0e:99:4b:9a:f0:a6:c0:ae:72:96:30:
f3:8a:b7:63:9c:cf:65:5a:32:9f:1a:1d:02:e1:f8:78:b3:84:
e4:56:fa:96:5d:e1:0a:10:92:3d:ec:42:01:a6:e8:b3:5e:12:
39:ac:6a:55:a5:cf:52:98:a9:c5:58:7e:a3:2c:a6:02:7c:fd:
8f:df:4d:af:44:f8:84:16:17:00:f4:f7:c6:2e:ac:a0:a6:a7:
2a:5d:1d:a4:21:53:f5:43:21:f1:20:02:4e:dc:f0:2d:ad:a5:
51:d6:20:ee:65:b3:7b:26:60:28:63:90:dd:21:a9:a1:9e:fe:
36:2c:4d:21:3e:49:f8:50:0f:42:60:10:0f:62:3b:06:34:6f:
65:ca:c7:13:0e:2b:88:ee:39:b8:23:44:46:70:9e:9a:da:22:
af:ac:12:06:c0:13:3e:05:d8:51:82:df:22:97:6a:08:d2:2b:
c8:87:a4:47:51:bc:93:8f:ec:54:ae:0c:f5:27:c2:45:f3:16:
86:8f:a7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:34:25 2026 by rpki-client