Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/W9WQP84D-TXkFOPdOtgKBiViDq4.roa
File: W9WQP84D-TXkFOPdOtgKBiViDq4.roa (raw, json)
Hash identifier: lYuSzYOMpzV32Ks7iGE6hO7adb5RwkRPCjvYKgY4pXM=
Subject key identifier: 5B:D5:90:3F:CE:03:F9:35:E4:14:E3:DD:3A:D8:0A:06:25:62:0E:AE
Certificate issuer: /CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Certificate serial: 019E1B920C311C0EC98429C23E9B296FD783
Authority key identifier: E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/W9WQP84D-TXkFOPdOtgKBiViDq4.roa
Signing time: Tue 12 May 2026 09:43:36 +0000
ROA not before: Tue 12 May 2026 09:43:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216129
IP address blocks: 81.30.105.0/24 maxlen: 24
95.215.56.0/24 maxlen: 24
107.161.154.0/24 maxlen: 24
121.127.37.0/24 maxlen: 24
148.253.208.0/24 maxlen: 24
148.253.209.0/24 maxlen: 24
148.253.210.0/24 maxlen: 24
148.253.211.0/24 maxlen: 24
148.253.212.0/24 maxlen: 24
148.253.213.0/24 maxlen: 24
148.253.214.0/24 maxlen: 24
148.253.215.0/24 maxlen: 24
185.28.84.0/24 maxlen: 24
185.28.85.0/24 maxlen: 24
185.56.162.0/24 maxlen: 24
194.164.245.0/24 maxlen: 24
199.83.103.0/24 maxlen: 24
202.181.148.0/24 maxlen: 24
202.181.188.0/24 maxlen: 24
203.31.40.0/24 maxlen: 24
2a13:d200::/32 maxlen: 32
2a13:d200:6::/48 maxlen: 48
2a13:d200:7::/48 maxlen: 48
2a13:d200:8::/48 maxlen: 48
2a13:d200:9::/48 maxlen: 48
2a13:d200:10::/48 maxlen: 48
2a13:d200:11::/48 maxlen: 48
2a13:d200:14::/48 maxlen: 48
2a13:d200:15::/48 maxlen: 48
2a13:d201::/48 maxlen: 48
2a13:d201:1::/48 maxlen: 48
2a13:d201:2::/48 maxlen: 48
2a13:d201:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/6RbcnbTknecbL9CBna6FOusFOwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/6RbcnbTknecbL9CBna6FOusFOwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:92:0c:31:1c:0e:c9:84:29:c2:3e:9b:29:6f:d7:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Validity
Not Before: May 12 09:43:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5bd5903fce03f935e414e3dd3ad80a0625620eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2f:ec:2b:fe:62:36:87:cb:63:7b:2d:13:ee:
2b:7c:99:20:ea:01:bf:09:04:40:09:a5:13:0a:0b:
06:d0:e6:0b:18:a1:d3:7f:22:a3:0e:3d:f8:91:35:
c1:02:69:2b:c4:64:2a:20:43:4d:bc:5e:10:a9:1d:
5d:4c:01:26:11:0a:48:a4:5a:2d:12:63:5a:2a:4f:
73:b0:77:18:db:4a:68:81:26:8e:31:80:5d:64:18:
c0:cb:6d:1c:d3:39:f0:22:36:75:65:4c:2f:f3:01:
d1:c8:1a:94:94:84:17:a7:9e:2b:99:07:1a:e9:55:
a1:42:d0:f7:3d:74:33:f2:cf:d1:e6:0a:a7:77:ca:
0a:d6:20:d3:9f:84:6d:95:9e:a3:03:b6:ac:22:40:
e9:36:21:29:52:83:7f:65:6c:51:27:7f:09:92:1d:
1a:33:12:89:82:d2:ee:bf:25:e8:27:67:ce:50:7c:
e8:6d:60:bb:07:72:9a:34:9a:56:46:cb:12:79:4c:
dd:e9:f8:c8:7a:3d:d4:f0:3a:67:2b:4a:cd:d5:f8:
44:e4:0e:12:3f:c6:24:90:9f:25:db:45:22:b3:e6:
bf:16:45:7f:e2:0b:e0:75:5b:80:da:50:be:39:c7:
df:24:61:ca:39:ef:12:df:e0:88:60:22:e3:9a:d3:
92:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D5:90:3F:CE:03:F9:35:E4:14:E3:DD:3A:D8:0A:06:25:62:0E:AE
X509v3 Authority Key Identifier:
keyid:E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/W9WQP84D-TXkFOPdOtgKBiViDq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/6RbcnbTknecbL9CBna6FOusFOwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.105.0/24
95.215.56.0/24
107.161.154.0/24
121.127.37.0/24
148.253.208.0/21
185.28.84.0/23
185.56.162.0/24
194.164.245.0/24
199.83.103.0/24
202.181.148.0/24
202.181.188.0/24
203.31.40.0/24
IPv6:
2a13:d200::-2a13:d201:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
14:c9:0e:f5:71:93:56:bc:e7:ff:d6:c8:76:0b:a2:cc:34:c7:
6c:03:40:a4:dc:d5:29:01:77:4d:b3:cf:3c:26:c6:2c:80:af:
c2:b7:d1:55:6e:5a:bf:bc:ca:8d:de:71:88:9c:6b:c4:f7:95:
7e:7e:2e:0a:85:91:29:35:1d:7b:0d:5f:d6:f4:1d:ab:6e:b7:
75:2f:ae:03:6b:ee:27:8c:fb:80:cc:c6:c6:91:69:5b:31:35:
12:56:81:d4:5a:85:3a:14:40:77:21:70:bb:27:a9:69:5a:84:
da:29:fa:a6:bb:86:07:aa:9e:8e:36:c8:75:b9:c7:14:6c:b1:
e7:31:e9:01:25:3e:f7:62:14:41:37:e7:41:54:a7:4e:88:12:
50:96:2e:51:0a:2f:a1:57:bd:8c:67:04:55:34:c0:0e:7b:55:
57:23:d2:6d:a8:b0:8f:c8:8d:6c:23:ca:fc:8b:06:3c:5e:c6:
e7:89:4d:d1:98:c3:79:6e:30:c1:ee:ef:26:63:33:80:4d:2f:
01:cb:0d:3e:fa:90:b7:7e:42:e7:3c:2f:a4:51:67:09:56:8b:
0e:91:02:20:14:e5:c1:0f:b3:ed:a8:16:6e:0a:ff:8e:3d:cc:
cc:25:06:2c:4c:71:bd:01:18:9c:61:5b:f3:d0:73:31:d5:14:
d2:da:d5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:49:01 2026 by rpki-client