Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/W030VSgf_u7IUrqo4WvMuNuF10Y.roa
File: W030VSgf_u7IUrqo4WvMuNuF10Y.roa (raw, json)
Hash identifier: jxYngrdwQasrTF6f9QM2nJD1r15ZCX5dqoxB4Lp5YxA=
Subject key identifier: 5B:4D:F4:55:28:1F:FE:EE:C8:52:BA:A8:E1:6B:CC:B8:DB:85:D7:46
Certificate issuer: /CN=faa6e5e86023c9b314ee651291fafe8c6dd69a83
Certificate serial: 019E4ADFBB70BB1734BAB8BEC8EA8A566A4A
Authority key identifier: FA:A6:E5:E8:60:23:C9:B3:14:EE:65:12:91:FA:FE:8C:6D:D6:9A:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/W030VSgf_u7IUrqo4WvMuNuF10Y.roa
Signing time: Thu 21 May 2026 14:10:36 +0000
ROA not before: Thu 21 May 2026 14:10:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212994
IP address blocks: 185.39.28.0/23 maxlen: 24
185.39.28.0/24 maxlen: 24
185.39.29.0/24 maxlen: 24
185.237.216.0/24 maxlen: 24
185.237.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4a:df:bb:70:bb:17:34:ba:b8:be:c8:ea:8a:56:6a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa6e5e86023c9b314ee651291fafe8c6dd69a83
Validity
Not Before: May 21 14:10:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5b4df455281ffeeec852baa8e16bccb8db85d746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9d:e4:60:94:9a:06:c8:8c:71:42:5b:73:9b:
b5:01:f8:00:22:bc:95:d9:88:b9:cc:a7:ae:1b:52:
f7:96:78:5c:9d:cd:5c:f0:d8:f3:89:56:f8:38:80:
82:75:45:dd:fe:5f:4d:12:9e:a2:d6:e2:da:3f:fb:
a8:ed:c1:41:15:ae:f7:c0:25:74:68:b3:d2:3e:4e:
d2:44:dd:8d:41:49:bb:a1:24:a0:f4:a5:c0:80:b9:
45:2c:ea:a0:83:9c:bd:33:92:d2:72:a2:cc:ca:5a:
33:2c:88:73:62:c0:95:52:4f:3f:2c:11:16:67:1d:
8c:11:70:1a:29:6b:5f:62:83:cc:56:b0:40:e2:f8:
4e:4e:b2:87:4e:50:39:79:d2:02:38:f2:f7:28:a8:
d3:ef:68:6a:13:92:76:43:06:3d:fb:07:22:17:ba:
13:24:cd:0b:d5:04:a4:c7:22:ad:02:36:a4:46:af:
e8:41:60:65:79:df:2c:4f:55:69:55:47:34:bb:b4:
5c:c5:2e:b7:e2:c9:e7:92:83:80:ff:83:4d:35:7f:
0b:e5:91:39:21:53:3f:05:f0:9e:5a:44:9f:ba:83:
39:fd:27:72:0c:24:91:71:be:34:2c:ee:8a:4c:42:
76:e2:b4:96:be:7f:ae:ab:73:ff:f9:5a:14:4c:2a:
74:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4D:F4:55:28:1F:FE:EE:C8:52:BA:A8:E1:6B:CC:B8:DB:85:D7:46
X509v3 Authority Key Identifier:
keyid:FA:A6:E5:E8:60:23:C9:B3:14:EE:65:12:91:FA:FE:8C:6D:D6:9A:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qbl6GAjybMU7mUSkfr-jG3WmoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/W030VSgf_u7IUrqo4WvMuNuF10Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c04d99-de44-40ab-a2c0-08279455f941/1/1-qbl6GAjybMU7mUSkfr-jG3WmoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.28.0/23
185.237.216.0/23
Signature Algorithm: sha256WithRSAEncryption
91:3e:8e:db:db:bd:5c:e1:17:0e:59:92:ac:b7:24:f7:1c:56:
2f:17:e1:6c:0d:c8:9c:74:f9:b0:3c:bb:3e:6a:b4:43:66:22:
04:5c:b8:90:35:ae:d9:d0:d0:d5:7c:82:e8:b0:f4:d1:70:0b:
be:21:ba:ef:6e:98:e4:b0:62:6f:d0:bf:2c:34:dd:38:93:27:
24:e0:35:fa:b7:c8:30:ae:25:45:2a:3b:43:af:a1:f4:44:0c:
34:4a:2b:f7:77:3f:51:42:3a:83:3c:fc:6f:65:64:79:20:cc:
7e:52:10:37:16:ee:80:38:21:04:5f:43:46:e9:38:73:63:ef:
7e:c1:b7:2c:5b:39:54:02:4e:e1:1a:1a:1c:83:ab:ff:f1:c9:
d4:44:df:e5:3c:3c:0b:1a:14:66:c2:90:53:f5:39:ad:94:d3:
52:c1:9e:c7:db:37:6a:82:88:50:93:7a:97:3e:bb:f1:9d:65:
e9:9f:5b:11:d3:65:a3:b3:dd:32:d7:e0:be:63:1a:db:03:f3:
4e:c0:32:bb:d3:13:69:26:92:ae:c1:d3:48:0f:65:c5:a1:4e:
51:f2:94:49:53:36:cb:b1:49:9f:84:a5:29:53:18:9c:f3:39:
6e:5c:55:18:1b:57:ce:3b:91:31:87:e6:e8:ff:ff:0e:d2:ac:
e1:90:c5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:51:48 2026 by rpki-client