Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/Re6kcIeN-4hkQVxG4gOhO3Qrp-I.roa
File: Re6kcIeN-4hkQVxG4gOhO3Qrp-I.roa (raw, json)
Hash identifier: GWBQxTwWiIlyqhk9YsLsOQtSxl34ku/q7Yhu4n7ku9U=
Subject key identifier: 45:EE:A4:70:87:8D:FB:88:64:41:5C:46:E2:03:A1:3B:74:2B:A7:E2
Certificate issuer: /CN=c65a1da1cb1c920ae2f9b748270fded8737a9184
Certificate serial: 019C8B416FB6EC3C3D34E62A0F26A4C1A9D4
Authority key identifier: C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/Re6kcIeN-4hkQVxG4gOhO3Qrp-I.roa
Signing time: Mon 23 Feb 2026 16:07:27 +0000
ROA not before: Mon 23 Feb 2026 16:07:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204610
IP address blocks: 153.80.239.0/24 maxlen: 24
153.80.240.0/24 maxlen: 24
153.80.241.0/24 maxlen: 24
153.80.242.0/24 maxlen: 24
153.80.243.0/24 maxlen: 24
153.80.244.0/24 maxlen: 24
153.80.245.0/24 maxlen: 24
153.80.246.0/24 maxlen: 24
153.80.247.0/24 maxlen: 24
153.80.248.0/24 maxlen: 24
153.80.249.0/24 maxlen: 24
153.80.250.0/24 maxlen: 24
153.80.251.0/24 maxlen: 24
153.80.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:8b:41:6f:b6:ec:3c:3d:34:e6:2a:0f:26:a4:c1:a9:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c65a1da1cb1c920ae2f9b748270fded8737a9184
Validity
Not Before: Feb 23 16:07:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=45eea470878dfb8864415c46e203a13b742ba7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:49:b9:8e:4c:6c:0c:4b:17:32:61:05:39:6c:
06:95:2f:75:37:c4:2b:38:08:cb:b4:00:95:b8:db:
e6:46:d1:88:1d:6a:83:1e:17:9a:f6:13:5b:fe:3e:
f8:61:6c:54:2d:11:eb:74:4d:00:05:3b:5b:95:d2:
be:9c:54:9c:85:90:2c:7e:9e:04:94:02:14:e8:14:
29:b0:91:ad:b6:90:c1:4d:ae:d6:92:a5:bc:de:8e:
2c:95:f8:3b:67:ba:86:3b:50:ee:05:ac:d2:6f:fe:
c1:28:45:0a:7a:1f:bf:33:10:ca:47:20:53:0d:34:
c2:e4:30:37:f9:9c:bd:af:b3:f2:ad:eb:a8:73:22:
9a:50:df:4e:20:2b:b6:ba:3d:fd:f0:4b:0b:f3:fc:
63:a6:96:c3:0c:a5:06:98:4c:da:45:8e:9b:9c:9f:
c1:fe:9c:ce:3d:0c:f9:c1:c2:ab:79:42:25:db:61:
21:e4:70:16:ad:ca:53:0d:ae:f4:11:b4:65:a9:8e:
32:e2:e5:34:c6:7f:d9:41:cf:a7:e3:a0:49:79:5b:
81:7b:14:ab:bd:d9:09:ab:79:93:c3:b1:8e:97:74:
91:fb:a7:e2:54:8e:90:4c:f5:94:b9:ad:e1:b4:3f:
d4:63:ed:82:c4:ca:ee:af:b2:5f:e2:85:51:08:09:
1f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EE:A4:70:87:8D:FB:88:64:41:5C:46:E2:03:A1:3B:74:2B:A7:E2
X509v3 Authority Key Identifier:
keyid:C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/Re6kcIeN-4hkQVxG4gOhO3Qrp-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.80.239.0-153.80.252.255
Signature Algorithm: sha256WithRSAEncryption
8a:5f:e1:56:7b:a2:b3:0b:8c:94:84:e0:50:f9:6e:44:8c:85:
fa:42:7c:b2:3e:d2:67:ef:1c:c0:53:94:b8:ab:73:e1:e5:25:
e4:a3:ee:1f:4b:5a:22:df:c5:64:c5:99:e3:cf:0a:7f:1b:ed:
bd:79:3e:cb:f4:35:50:8c:6f:d9:24:19:52:0f:1d:9a:cd:11:
27:06:34:b0:48:c3:f0:b5:c8:96:c9:a4:cf:b8:15:86:bb:13:
03:38:65:97:87:cc:35:03:c8:bd:ef:31:b5:71:9d:43:8a:6d:
98:d4:96:68:7b:92:f7:21:93:0a:33:27:4f:19:12:a6:32:09:
7a:0c:e7:7c:62:ea:66:e8:29:1c:ed:84:4a:52:e7:d7:34:db:
57:98:bf:11:88:6d:a5:15:e3:b5:07:b1:ac:bf:45:f2:e5:a8:
c9:28:28:da:29:ae:bb:bf:86:3f:07:4b:da:4a:d4:48:a5:3e:
7f:65:d8:aa:62:dc:40:0a:0c:4a:01:0f:f2:82:01:a1:ed:44:
11:c9:8e:e6:78:ef:50:20:0c:26:e8:22:1e:45:a9:25:49:7a:
50:51:e4:62:39:3a:63:ac:50:80:04:ea:2b:38:e8:85:69:51:
8e:4c:ba:7c:2f:96:35:07:2f:58:bc:bd:b6:c5:30:27:13:8b:
e5:ae:a6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:01:06 2026 by rpki-client