Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/79Vc7vTsRCa1PZvTN6Jz9dhwP7k.roa
File: 79Vc7vTsRCa1PZvTN6Jz9dhwP7k.roa (raw, json)
Hash identifier: Ji3qmDD0mJg/OUaa/lFMg45lxBljLTasPlgIuObovxI=
Subject key identifier: EF:D5:5C:EE:F4:EC:44:26:B5:3D:9B:D3:37:A2:73:F5:D8:70:3F:B9
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 019E0CD26B63CF878BE58AB1104D0AD097D0
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/79Vc7vTsRCa1PZvTN6Jz9dhwP7k.roa
Signing time: Sat 09 May 2026 12:59:37 +0000
ROA not before: Sat 09 May 2026 12:59:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208555
IP address blocks: 62.220.122.0/23 maxlen: 24
62.220.124.0/23 maxlen: 24
62.220.126.0/23 maxlen: 24
81.12.24.0/22 maxlen: 24
81.12.30.0/23 maxlen: 24
87.107.6.0/23 maxlen: 24
87.107.8.0/23 maxlen: 24
87.107.108.0/23 maxlen: 24
87.107.110.0/23 maxlen: 24
87.107.110.0/24 maxlen: 24
87.107.111.0/24 maxlen: 24
87.107.144.0/24 maxlen: 24
87.107.152.0/23 maxlen: 24
87.107.166.0/23 maxlen: 24
87.107.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0c:d2:6b:63:cf:87:8b:e5:8a:b1:10:4d:0a:d0:97:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 9 12:59:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=efd55ceef4ec4426b53d9bd337a273f5d8703fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b9:89:72:91:a9:81:e6:34:09:db:e3:13:34:
34:19:b9:a5:86:e0:6c:d0:7a:32:33:d8:bc:4b:6c:
f7:71:8c:ab:a1:54:2b:ba:45:23:0d:d0:e5:44:f7:
e5:04:fa:a1:aa:4d:66:76:2e:5f:20:2d:67:7f:cf:
b0:f4:5d:4a:65:2d:02:da:7c:3e:93:9b:36:4b:f1:
cd:53:fe:09:71:08:c6:00:bc:f7:d7:90:ac:e8:59:
61:c4:fb:db:ba:43:46:8e:5f:0c:81:ae:0d:18:13:
2c:c8:e2:62:94:dc:13:de:8f:d4:38:34:5e:ce:2c:
d1:92:9c:94:2f:0c:9f:36:a2:13:1a:34:e5:95:3d:
92:72:c1:1d:9b:0e:e2:b0:13:06:8e:fd:8c:8d:9c:
2e:ad:15:28:25:47:c8:08:08:bf:c6:16:d7:b6:a3:
fe:3f:5a:9f:64:cf:e2:17:46:87:46:cf:fe:1e:ac:
64:a8:9d:48:6c:c4:26:82:62:24:d3:b0:9e:bc:55:
c9:70:89:76:07:b0:38:d1:9e:a1:e3:d8:d8:81:37:
9d:e3:10:b9:19:b6:c8:f2:59:6b:60:cf:05:ce:b4:
2f:bf:50:21:e5:5a:9d:53:e7:bc:43:11:e7:bd:cc:
2a:96:bd:03:8e:fa:c4:69:78:61:77:7f:e6:2c:b2:
bb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D5:5C:EE:F4:EC:44:26:B5:3D:9B:D3:37:A2:73:F5:D8:70:3F:B9
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/79Vc7vTsRCa1PZvTN6Jz9dhwP7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.122.0-62.220.127.255
81.12.24.0/22
81.12.30.0/23
87.107.6.0-87.107.9.255
87.107.108.0/22
87.107.144.0/24
87.107.152.0/23
87.107.166.0/23
87.107.174.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:b5:19:d2:ed:f7:b1:ff:8d:05:ef:bd:df:1d:b1:20:fa:8b:
26:a0:60:93:ff:43:5f:7a:d5:e9:bb:76:33:2e:80:49:af:15:
4f:11:65:a9:44:70:54:9c:b8:11:7f:01:1a:db:91:42:a0:a4:
c8:85:d9:dc:06:31:07:9b:9b:20:40:e4:d2:cf:10:31:f7:bf:
67:6a:e6:53:42:28:27:da:71:a0:b5:04:45:af:39:7c:a4:68:
4d:c3:37:8b:41:98:a1:3f:b9:8c:f1:79:1f:24:e8:7c:b0:b1:
50:6d:4f:81:d0:94:50:93:08:90:de:b8:83:c3:bc:31:fb:da:
ae:47:87:72:b8:be:c5:92:9e:56:95:3f:62:38:71:ef:ef:36:
c7:41:9f:de:95:38:ed:37:da:f9:cf:7d:d4:d7:1d:b1:4a:a1:
86:8e:b3:63:22:d0:4d:36:81:df:af:df:7c:23:5c:3f:d9:c2:
fe:52:8c:48:d8:f5:b4:af:ec:10:43:f8:45:5b:a7:c6:6d:bb:
53:62:a3:b2:71:e5:a6:cd:6e:42:05:53:db:92:8a:c7:10:5a:
c3:f4:9e:14:04:d1:49:c3:ec:9a:47:dd:96:76:b1:02:a0:0a:
1d:1c:2c:2c:ce:27:8f:bb:d6:66:00:86:23:bc:2a:08:71:78:
25:fa:73:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:03:35 2026 by rpki-client