Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/AcR-LCn2eluURRMr2rYBvL7oAJA.roa
File: AcR-LCn2eluURRMr2rYBvL7oAJA.roa (raw, json)
Hash identifier: LAuXZwxgXX5fTUZngPNSnF9N/6HReElOcEngOcsqgMQ=
Subject key identifier: 01:C4:7E:2C:29:F6:7A:5B:94:45:13:2B:DA:B6:01:BC:BE:E8:00:90
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 019DE3C2B3D24A3538F854C1398E131527BD
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/AcR-LCn2eluURRMr2rYBvL7oAJA.roa
Signing time: Fri 01 May 2026 13:38:01 +0000
ROA not before: Fri 01 May 2026 13:38:01 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204104
IP address blocks: 5.57.33.0/24 maxlen: 24
37.32.43.0/24 maxlen: 24
185.26.32.0/24 maxlen: 24
185.212.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e3:c2:b3:d2:4a:35:38:f8:54:c1:39:8e:13:15:27:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: May 1 13:38:01 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=01c47e2c29f67a5b9445132bdab601bcbee80090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fa:26:2b:59:ed:f8:04:3b:24:30:ac:6c:ff:
41:e4:b5:f6:c6:f8:ae:76:62:b1:de:16:29:80:a5:
23:3f:91:04:52:a1:79:7d:6f:25:87:1b:45:5d:8b:
9a:56:bf:5f:ac:96:9c:88:de:4e:49:cf:58:4d:95:
97:49:ed:99:72:39:ab:c1:6b:20:38:ba:f6:12:47:
d3:fe:76:92:00:91:56:8f:9f:de:69:49:16:9e:63:
e4:b9:0a:fb:3b:fd:dc:fe:d6:2e:3d:c3:b1:08:b6:
3e:c3:cc:8a:3b:43:44:1f:7a:1e:ef:d7:7f:58:a8:
df:24:f8:79:2f:b2:56:f8:25:50:ef:4f:7f:b7:6a:
76:93:f6:04:a9:b1:00:d9:b4:05:48:0a:ae:b9:dc:
78:e0:2e:43:ac:90:d4:ef:50:0c:22:8d:c3:f6:8d:
31:ea:54:5d:2c:a1:e1:e8:9a:cf:e6:b3:c9:4d:01:
a6:3f:86:8f:96:4c:91:bc:75:8a:36:92:00:1c:32:
fc:5e:02:b6:3d:03:b0:ce:b7:cf:32:12:ba:b3:63:
f1:49:50:af:40:03:db:e6:71:9d:7c:60:34:aa:05:
50:c4:06:35:ac:46:2e:e8:c4:f6:e3:2b:5f:2c:2b:
9e:96:b7:a7:3a:f3:69:d8:39:d2:29:51:49:74:80:
95:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C4:7E:2C:29:F6:7A:5B:94:45:13:2B:DA:B6:01:BC:BE:E8:00:90
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/AcR-LCn2eluURRMr2rYBvL7oAJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.33.0/24
37.32.43.0/24
185.26.32.0/24
185.212.49.0/24
Signature Algorithm: sha256WithRSAEncryption
04:27:c1:72:3d:f5:ce:05:e3:df:2f:bf:f8:1a:f1:36:13:f9:
ac:10:dd:3e:ea:34:14:e2:d3:37:85:c7:70:1a:ec:21:38:c8:
fc:71:72:1d:a5:83:01:36:a6:04:ea:6d:ed:05:30:f2:de:ff:
b4:d8:ab:4e:b3:25:d1:ee:49:98:3d:31:26:e6:f1:6e:1f:de:
b3:18:33:5c:06:62:d2:bf:88:f5:4f:d6:79:78:c1:63:e7:8c:
e2:08:91:13:9b:ae:d6:26:d4:f6:cf:b0:71:2d:ad:2a:43:90:
f2:50:45:a6:bb:19:35:27:74:41:f6:6b:d9:33:e8:0c:37:9e:
b9:ce:8b:19:0d:15:90:8e:18:e2:0c:2c:76:6e:63:e2:9b:45:
f5:dc:c8:7c:b3:08:5e:56:05:d9:35:c2:95:af:45:43:0f:ae:
0a:55:49:bc:2f:27:cf:05:23:b7:86:47:95:9d:46:e0:15:dd:
97:a0:70:61:ad:8b:52:f6:57:e1:e9:db:82:bc:55:af:2e:8e:
36:b4:52:78:59:dc:2c:47:11:98:cf:fe:ec:21:e9:16:60:d0:
bd:48:49:41:57:97:a2:b5:e3:46:5d:d8:7b:ba:e0:9a:32:fd:
0a:b0:12:fc:81:f7:85:0d:f2:db:a4:43:7b:21:db:3c:7c:41:
c6:19:15:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:38:21 2026 by rpki-client