Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/5sY2jMQw3hU0nnKTmsxgGbuqD3g.roa
File: 5sY2jMQw3hU0nnKTmsxgGbuqD3g.roa (raw, json)
Hash identifier: jMwlcoJulqzeIz1OtKe6Zwe9UdRyY986jiRsw+Gvc5M=
Subject key identifier: E6:C6:36:8C:C4:30:DE:15:34:9E:72:93:9A:CC:60:19:BB:AA:0F:78
Certificate issuer: /CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Certificate serial: 019DFCCDB487E8EA962B4BE11BF2AB363801
Authority key identifier: 57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/5sY2jMQw3hU0nnKTmsxgGbuqD3g.roa
Signing time: Wed 06 May 2026 10:20:32 +0000
ROA not before: Wed 06 May 2026 10:20:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212147
IP address blocks: 217.179.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.mft
rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:cd:b4:87:e8:ea:96:2b:4b:e1:1b:f2:ab:36:38:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Validity
Not Before: May 6 10:20:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e6c6368cc430de15349e72939acc6019bbaa0f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:70:e9:db:d9:e6:ce:95:5c:a6:13:f9:f1:
55:0b:be:5b:3a:2e:b6:e1:3d:9c:13:da:17:41:e4:
84:24:4a:97:e8:38:51:41:5b:af:5b:22:64:4a:bd:
64:0b:71:ee:dc:22:ff:22:a9:54:40:9a:98:2a:0a:
6c:ea:96:75:e0:d7:ef:cc:ff:cb:14:23:1a:2b:6d:
d5:57:78:07:67:60:ad:92:37:c8:1b:f9:ef:80:a2:
bd:c4:e4:a2:82:c9:58:fa:28:e7:03:aa:31:a6:78:
bd:80:d6:77:46:a9:c8:5e:b4:70:b8:a3:2e:9c:ff:
e1:78:b0:c6:7e:9b:09:6b:fd:d3:a2:29:07:fe:90:
96:09:a1:53:e4:3e:27:f3:48:33:fd:92:ce:78:91:
8d:35:6e:ba:a6:46:98:ae:7a:bf:29:d2:ea:aa:ad:
b1:be:e0:7b:3d:ae:d2:c4:3f:3b:37:28:65:ab:a0:
87:37:63:dd:9f:18:70:96:94:b2:7f:ba:02:1b:40:
d0:60:e3:69:f4:a8:3a:ce:68:d8:c2:b1:65:91:b9:
29:02:86:10:17:23:9a:d4:9e:84:83:cb:5f:bf:c1:
3e:d1:df:f8:77:14:cf:ff:cd:5b:69:07:8f:fc:a6:
2b:67:70:da:87:5f:1b:ce:c4:56:8f:64:87:3d:0c:
23:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C6:36:8C:C4:30:DE:15:34:9E:72:93:9A:CC:60:19:BB:AA:0F:78
X509v3 Authority Key Identifier:
keyid:57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/5sY2jMQw3hU0nnKTmsxgGbuqD3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.179.230.0/24
Signature Algorithm: sha256WithRSAEncryption
30:90:ae:e5:b0:1f:dd:7a:7d:f3:6f:11:c8:9b:3a:f7:38:ee:
47:69:8a:93:15:e6:f1:ef:48:53:1c:0d:40:90:cd:30:0c:7f:
ee:97:c2:71:91:89:70:1e:d2:6c:ff:e3:a5:f1:79:a0:6a:35:
50:f4:3e:01:21:a5:d6:d6:86:62:36:18:0a:3f:fb:8e:6d:56:
9a:aa:88:45:3b:26:b1:4f:1c:e2:37:d1:50:bd:a2:5d:e8:8d:
65:8d:6f:cb:5b:c2:89:30:a7:c2:bf:dd:6f:c2:3f:46:31:b4:
dc:71:64:be:40:85:22:c5:54:94:00:01:b4:c9:66:a0:f4:ca:
0e:94:23:ec:7f:88:bd:bb:06:17:7c:f4:ab:7f:50:b0:99:9d:
c2:35:c1:f9:af:7b:c0:64:68:3c:6e:f6:f1:1f:4c:e2:24:2b:
ad:c9:1a:f8:0d:33:08:54:a4:5d:15:e1:97:35:5c:94:c9:7b:
6e:df:b7:2e:22:8c:56:2c:76:f2:31:31:18:8d:22:95:c5:c6:
6a:ba:84:f8:19:fe:39:c5:3a:02:03:cf:07:14:25:81:ce:d1:
55:df:90:92:cf:ed:20:bf:c3:33:56:54:dc:7d:8f:4b:ad:26:
ed:a8:9c:e9:2f:19:4b:08:d7:f2:43:c1:c0:dc:ce:74:3c:83:
e3:26:a1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:39:39 2026 by rpki-client