Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WS_5UWdnTUKz2dxVWe3lFQfIu98.roa
File: WS_5UWdnTUKz2dxVWe3lFQfIu98.roa (raw, json)
Hash identifier: fNVILmOZjUqLx/sYAXmC/EZb1S+25dwcQXjEVPLhZiY=
Subject key identifier: 59:2F:F9:51:67:67:4D:42:B3:D9:DC:55:59:ED:E5:15:07:C8:BB:DF
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019C6F235A0947BCDAF226D69430A22221E5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WS_5UWdnTUKz2dxVWe3lFQfIu98.roa
Signing time: Wed 18 Feb 2026 05:05:13 +0000
ROA not before: Wed 18 Feb 2026 05:05:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58212
IP address blocks: 5.231.70.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6f:23:5a:09:47:bc:da:f2:26:d6:94:30:a2:22:21:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 18 05:05:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=592ff95167674d42b3d9dc5559ede51507c8bbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:48:1e:7e:7a:92:3e:64:b4:87:96:12:b5:51:
d8:9c:bf:17:9b:24:fe:a1:25:1d:5f:78:57:b9:ac:
1a:f7:c6:07:be:84:26:a9:19:1d:42:16:57:42:30:
02:16:81:e0:d4:80:99:29:74:3b:6b:de:0b:d5:1e:
24:9e:b7:27:80:a1:f9:3b:67:86:e3:f4:25:46:da:
09:aa:39:e7:e7:34:f0:bd:c2:0a:27:53:a8:62:34:
80:fd:92:2d:38:0a:50:27:f2:d6:9f:d1:31:c5:15:
49:11:1e:a6:ca:4c:d3:50:5f:03:f8:f2:bb:5c:4c:
81:66:8d:e2:98:7a:e5:6d:8d:bc:09:86:25:fe:17:
e1:c3:3e:d8:56:73:66:81:f9:26:4d:7e:55:0f:43:
f8:08:82:04:2f:95:5c:cc:15:7a:a9:3f:6e:74:d4:
c0:6b:70:54:96:ca:41:bc:b7:b8:67:ae:a9:28:c8:
61:90:d8:2d:6f:45:d3:52:2a:d7:5e:59:53:0b:f3:
71:4f:f1:3e:a7:a6:75:33:b7:68:08:bc:f3:1c:21:
b4:ff:70:fc:c7:74:82:59:f2:6a:9e:33:f2:2f:f1:
55:ef:2b:74:10:40:3f:c9:8e:6d:13:63:e1:86:40:
59:7a:dc:32:45:38:5e:cc:2c:b1:51:52:30:fb:8c:
a6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2F:F9:51:67:67:4D:42:B3:D9:DC:55:59:ED:E5:15:07:C8:BB:DF
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WS_5UWdnTUKz2dxVWe3lFQfIu98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.70.0/24
77.90.22.0/24
77.90.52.0/24
89.144.25.0/24
89.144.46.0/24
Signature Algorithm: sha256WithRSAEncryption
e5:64:60:b9:c0:fb:70:68:10:88:12:1a:0d:1a:dd:1d:be:66:
27:67:e1:73:e2:30:cc:d7:a8:0a:2c:17:0f:53:31:aa:3f:6d:
e1:0b:93:a7:67:08:22:f3:58:d8:9b:72:96:91:7b:5c:95:ba:
fb:a2:4f:b4:2c:a8:0e:9a:a3:8b:8c:fc:df:ea:f8:c7:13:3f:
b5:57:b0:12:be:f9:6f:08:a5:15:47:7e:fe:c5:7f:c0:6a:85:
b2:59:c1:4f:12:7d:a4:7b:a7:84:47:a9:1e:da:f5:c1:62:c1:
68:c5:f7:11:01:ed:29:8e:95:90:11:d3:7c:e9:bd:2c:11:60:
0e:b0:ae:d8:86:47:a7:71:81:a2:a7:41:97:2d:04:07:a5:06:
8f:e2:11:eb:3e:f6:4e:d1:5f:24:1d:94:78:0b:f5:23:89:96:
aa:99:ff:0f:94:29:11:1f:d4:15:3e:85:13:c3:b9:7f:da:0d:
9b:bc:e6:81:d4:88:a5:8c:c6:84:99:99:f7:a0:7d:01:5d:5c:
93:3c:9b:12:d8:82:98:0f:24:3c:da:36:84:e0:73:02:a5:88:
9b:61:3e:2a:9b:17:79:97:14:8e:8c:ef:b0:80:b7:d4:72:96:
c8:f7:da:09:ba:4a:2a:4e:34:fe:e5:0e:a9:f1:0b:26:04:16:
1a:d8:5c:04
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZxvI1oJR7za8ibWlDCiIiHlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjYwMjE4MDUwNTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTJmZjk1MTY3Njc0ZDQyYjNkOWRjNTU1OWVkZTUxNTA3YzhiYmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkgefnqSPmS0h5YStVHYnL8XmyT+
oSUdX3hXuawa98YHvoQmqRkdQhZXQjACFoHg1ICZKXQ7a94L1R4knrcngKH5O2eG
4/QlRtoJqjnn5zTwvcIKJ1OoYjSA/ZItOApQJ/LWn9ExxRVJER6mykzTUF8D+PK7
XEyBZo3imHrlbY28CYYl/hfhwz7YVnNmgfkmTX5VD0P4CIIEL5VczBV6qT9udNTA
a3BUlspBvLe4Z66pKMhhkNgtb0XTUirXXllTC/NxT/E+p6Z1M7doCLzzHCG0/3D8
x3SCWfJqnjPyL/FV7yt0EEA/yY5tE2PhhkBZetwyRThezCyxUVIw+4ym7wIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFFkv+VFnZ01Cs9ncVVnt5RUHyLvfMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvV1NfNVVXZG5UVUt6MmR4VldlM2xGUWZJdTk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQABedGAwQA
TVoWAwQATVo0AwQAWZAZAwQAWZAuMA0GCSqGSIb3DQEBCwUAA4IBAQDlZGC5wPtw
aBCIEhoNGt0dvmYnZ+Fz4jDM16gKLBcPUzGqP23hC5OnZwgi81jYm3KWkXtclbr7
ok+0LKgOmqOLjPzf6vjHEz+1V7ASvvlvCKUVR37+xX/AaoWyWcFPEn2ke6eER6ke
2vXBYsFoxfcRAe0pjpWQEdN86b0sEWAOsK7YhkencYGip0GXLQQHpQaP4hHrPvZO
0V8kHZR4C/UjiZaqmf8PlCkRH9QVPoUTw7l/2g2bvOaB1IiljMaEmZn3oH0BXVyT
PJsS2IKYDyQ82jaE4HMCpYibYT4qmxd5lxSOjO+wgLfUcpbI99oJukoqTjT+5Q6p
8QsmBBYa2FwE
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:45:55 2026 by rpki-client