Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKvswGKAeu_DovIoiTq28LTn8Og.roa
File: dKvswGKAeu_DovIoiTq28LTn8Og.roa (raw, json)
Hash identifier: WVzkN0Evqa/r7vX/3/prAxL2pb/W0bpuRziRVOtOoks=
Subject key identifier: 74:AB:EC:C0:62:80:7A:EF:C3:A2:F2:28:89:3A:B6:F0:B4:E7:F0:E8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019EBAA454E6502E553B1F52BDABDD76CCD1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKvswGKAeu_DovIoiTq28LTn8Og.roa
Signing time: Fri 12 Jun 2026 07:03:12 +0000
ROA not before: Fri 12 Jun 2026 07:03:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 44559
IP address blocks: 192.124.188.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:a4:54:e6:50:2e:55:3b:1f:52:bd:ab:dd:76:cc:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 12 07:03:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=74abecc062807aefc3a2f228893ab6f0b4e7f0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e0:4e:42:68:58:c6:fb:96:1d:76:4c:69:15:
38:ea:38:4e:1f:ce:95:df:0e:37:2f:c6:9b:e9:32:
dd:ce:6d:44:19:4c:a4:c7:bd:4b:9c:bf:db:d7:71:
b1:e6:f3:00:28:6b:cf:ee:2c:41:58:3c:65:08:18:
c7:80:65:a4:06:1f:33:78:f0:f1:da:84:61:a0:0e:
5e:e4:34:72:fa:7b:bd:93:01:99:6c:84:1e:86:be:
e6:e5:e3:5f:53:53:ae:ff:8f:04:2e:7d:62:c2:5d:
94:25:7d:2f:78:fe:70:82:0a:b8:06:7b:74:d6:0a:
2e:05:05:9f:05:d3:43:61:59:1b:17:9e:8d:5c:1e:
0e:73:2b:b3:81:ba:9a:2d:99:d0:75:14:dd:c9:4a:
02:89:1a:c7:0e:a8:c1:76:b3:fd:02:97:20:0c:05:
b3:a0:f7:2a:da:6d:27:25:97:e7:0a:d1:f1:3b:85:
50:ef:bb:0f:01:c4:4a:2b:da:99:c1:8c:d1:f2:c6:
73:9a:57:ea:7b:45:47:81:f9:b5:84:94:94:04:0b:
87:6d:64:e6:22:e1:bc:e3:8e:ff:3e:7b:c1:54:b9:
00:8b:b6:32:f7:b1:a8:07:fa:3c:4f:88:b7:bc:28:
87:fe:2f:18:4b:e7:08:12:d6:63:7f:38:f0:aa:5d:
f2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AB:EC:C0:62:80:7A:EF:C3:A2:F2:28:89:3A:B6:F0:B4:E7:F0:E8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKvswGKAeu_DovIoiTq28LTn8Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.188.0/24
193.124.8.0/24
193.124.94.0/24
194.58.43.0/24
194.87.3.0/24
194.87.6.0/23
194.87.34.0/24
194.87.36.0/24
194.87.42.0/24
194.87.63.0/24
194.87.116.0/23
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.177.0/24
194.87.180.0-194.87.182.255
195.58.56.0/24
195.58.59.0/24
195.58.62.0/24
195.133.56.0/24
195.133.60.0/23
195.133.80.0/24
195.133.82.0/24
212.193.10.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f5:88:89:58:3f:59:c0:ce:7c:98:71:09:3a:f7:2a:56:a6:
82:70:d7:32:d2:49:a1:72:4a:ec:f5:99:52:c4:7b:b4:e6:97:
46:3e:7e:91:8d:bb:c1:e4:dd:63:cf:e5:9e:a8:6c:79:46:bb:
f1:31:fd:34:54:70:32:91:97:cb:29:a4:6a:5f:d4:86:47:40:
b0:46:da:96:42:5d:30:16:7e:80:c2:e8:bf:94:f5:ca:16:f8:
39:31:4a:e6:0e:7d:fb:9e:6e:3b:b0:b3:fc:ba:85:82:03:68:
03:61:91:d9:10:32:33:6c:93:b6:8c:b0:bb:6d:02:da:6b:59:
ee:54:ce:dc:4e:5a:df:00:50:24:0d:01:9f:74:93:12:ab:ee:
5a:07:07:f2:91:47:3b:e4:7f:79:dd:ab:c5:94:98:f1:fb:47:
73:6a:b5:0c:e8:ad:15:be:3e:39:a5:56:28:37:93:7c:23:6b:
99:21:85:c1:91:1f:4f:82:b3:0a:46:35:18:4a:d0:aa:17:b4:
fb:c6:77:fd:bd:61:44:9e:6e:a9:9c:33:db:e4:5a:12:ef:4f:
92:ea:c0:fc:06:e7:47:e3:b0:8a:f0:4f:8c:3f:7d:28:ea:f5:
d8:a9:11:e8:f6:a7:18:1c:50:60:e4:5c:48:7e:1b:ba:ca:cc:
78:a8:c3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:14:42 2026 by rpki-client