Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/WwkncKL5VRC13xPV2ZE_H9se7W8.roa
File: WwkncKL5VRC13xPV2ZE_H9se7W8.roa (raw, json)
Hash identifier: BknD8zU7XCC2nFHasTpI89u/51fYeUQLrTGPpyLxToE=
Subject key identifier: 5B:09:27:70:A2:F9:55:10:B5:DF:13:D5:D9:91:3F:1F:DB:1E:ED:6F
Certificate issuer: /CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Certificate serial: 019DFBF94AB034A65B0CE0A1FD915E021676
Authority key identifier: DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/WwkncKL5VRC13xPV2ZE_H9se7W8.roa
Signing time: Wed 06 May 2026 06:28:31 +0000
ROA not before: Wed 06 May 2026 06:28:31 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215013
IP address blocks: 89.223.9.0/24 maxlen: 32
188.72.103.0/24 maxlen: 32
188.72.104.0/24 maxlen: 32
188.72.105.0/24 maxlen: 32
188.72.110.0/24 maxlen: 32
188.72.111.0/24 maxlen: 32
188.72.112.0/24 maxlen: 32
188.72.113.0/24 maxlen: 32
2a0d:d6c7:10::/48 maxlen: 48
2a0d:d6c7:11::/48 maxlen: 48
2a0d:d6c7:12::/48 maxlen: 48
2a0d:d6c7:13::/48 maxlen: 48
2a0d:d6c7:14::/48 maxlen: 48
2a0d:d6c7:15::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fb:f9:4a:b0:34:a6:5b:0c:e0:a1:fd:91:5e:02:16:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Validity
Not Before: May 6 06:28:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5b092770a2f95510b5df13d5d9913f1fdb1eed6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:75:a3:20:ba:0e:25:c8:f1:52:0e:dc:99:
b7:8f:8f:ff:6d:1b:de:61:13:00:32:6b:c4:70:96:
cb:2f:66:b9:14:77:ed:fc:73:d6:65:ba:f0:ca:13:
79:3b:6d:cc:6b:f8:70:f8:4a:bb:73:d9:73:aa:42:
e5:4a:05:25:f6:63:41:96:e3:fc:59:22:a3:88:9f:
51:96:c5:14:39:20:4b:de:e4:15:0b:47:5c:7b:46:
79:a0:3a:a9:a9:e4:98:83:d8:6b:2f:c2:31:8e:5c:
e7:65:ba:8a:1c:24:47:d4:96:13:87:b1:c3:c6:46:
da:f8:61:64:cc:62:ba:88:19:9e:2f:a8:d1:ac:fe:
36:c8:0a:6f:50:04:70:6f:0f:d6:2c:8a:1a:24:a9:
e2:4d:d8:47:2f:98:cd:3f:8a:42:d0:c6:04:37:4f:
e6:d3:11:27:2e:03:c0:5b:27:1d:1e:f2:85:6c:c6:
57:49:b5:31:86:7a:c9:63:48:2d:12:62:98:f7:2d:
cb:7c:d7:d9:e2:04:f5:76:df:a3:c7:8a:92:31:56:
58:16:2d:82:f5:c5:53:28:4a:9b:47:c2:09:c3:7b:
f0:3a:72:b3:9a:d2:40:c5:fd:e0:ab:b6:2d:d0:ae:
83:20:6d:b2:b1:00:58:6d:ea:af:35:ad:ae:50:9a:
52:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:09:27:70:A2:F9:55:10:B5:DF:13:D5:D9:91:3F:1F:DB:1E:ED:6F
X509v3 Authority Key Identifier:
keyid:DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/WwkncKL5VRC13xPV2ZE_H9se7W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.223.9.0/24
188.72.103.0-188.72.105.255
188.72.110.0-188.72.113.255
IPv6:
2a0d:d6c7:10::-2a0d:d6c7:15:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
18:34:1e:fc:4c:93:24:fc:33:bf:52:25:84:c0:ed:f0:b7:0a:
b5:73:79:0e:2f:41:11:87:23:61:1a:8d:e9:d0:68:98:16:d8:
ec:ec:ac:80:95:68:b9:87:b0:d0:ad:bf:02:8d:a2:94:23:de:
ac:e4:c4:fc:ba:ea:bf:53:67:ec:e9:a4:00:ba:6a:95:bb:3f:
83:ea:4f:07:95:1e:90:4d:3f:f8:ed:b5:c2:12:a3:25:bc:f4:
c5:e9:dd:3c:13:52:f1:6f:c3:2a:dc:a0:35:f4:a3:92:5b:b9:
1e:28:11:33:4a:12:0e:c3:b5:1a:b6:0d:88:23:5d:c6:02:b6:
91:02:8e:e0:bf:d9:e3:79:27:9a:5d:63:2a:31:6c:b6:83:61:
25:13:fc:13:81:d1:ce:47:b0:a7:54:f1:84:b0:61:3f:1e:e2:
06:df:9a:66:8e:30:2d:ac:3b:aa:20:39:93:1d:cc:47:72:3f:
80:96:35:18:a9:3f:bf:f0:b3:78:05:50:90:bf:c7:58:5f:ec:
6a:a3:a4:4d:88:83:a6:4a:c7:b9:6e:24:09:06:99:96:71:f7:
38:d7:f2:51:ed:00:4d:d8:1c:19:50:52:36:2c:f3:0a:49:17:
75:a3:9b:15:31:81:c3:f2:4b:45:cd:f8:e4:65:93:45:34:fc:
cc:f9:f6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:10:26 2026 by rpki-client