Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c4w-IeMt0b5b0Q074unTTiZjkkk.roa
File: c4w-IeMt0b5b0Q074unTTiZjkkk.roa (raw, json)
Hash identifier: 8qwBM8cm3ZJLCbMlecgxYQ/OKIOuSFdEWGMIsrerpIE=
Subject key identifier: 73:8C:3E:21:E3:2D:D1:BE:5B:D1:0D:3B:E2:E9:D3:4E:26:63:92:49
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019A4D4204747D3AE454838A372700F9178A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c4w-IeMt0b5b0Q074unTTiZjkkk.roa
Signing time: Tue 04 Nov 2025 05:06:03 +0000
ROA not before: Tue 04 Nov 2025 05:06:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44103
IP address blocks: 5.83.149.0/24 maxlen: 24
77.90.23.0/24 maxlen: 24
178.18.152.0/22 maxlen: 32
178.18.152.0/24 maxlen: 32
178.18.153.0/24 maxlen: 32
178.18.154.0/24 maxlen: 32
178.18.155.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:42:04:74:7d:3a:e4:54:83:8a:37:27:00:f9:17:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 4 05:06:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=738c3e21e32dd1be5bd10d3be2e9d34e26639249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:d6:80:c2:10:03:95:f2:45:d0:0c:74:75:
a9:d2:46:da:3c:a5:18:19:d0:78:92:49:95:18:21:
46:36:93:fd:60:e5:67:e7:54:0f:be:16:71:5b:a8:
bf:ef:df:0e:13:08:fa:a2:83:dd:20:29:c6:45:5f:
3e:b1:66:c0:f6:67:ba:ac:0a:16:70:7c:35:53:ff:
46:8c:c3:90:74:57:56:61:16:86:b5:0d:44:44:de:
3a:be:03:42:93:31:d6:f6:41:ac:4e:2a:34:26:90:
fe:75:62:09:1b:e6:76:07:90:39:0c:78:d3:fa:2a:
07:a2:96:e0:c7:d8:1a:e0:86:37:a0:fa:51:a3:d3:
f0:75:48:e6:4c:39:40:79:18:e6:2d:cd:98:c1:f3:
28:e3:9f:7a:7e:dc:0d:81:92:2e:d6:a8:bc:46:12:
ed:c1:66:12:f3:e3:df:e6:53:79:57:6c:a5:8c:77:
5d:c1:54:2d:c4:48:23:6f:0f:b8:a5:c6:e1:fb:56:
dc:4c:f5:82:64:ff:d7:b6:bb:aa:5b:3b:0f:dc:45:
0a:1c:11:14:13:d1:43:f4:e0:c6:5c:8a:71:da:07:
6b:52:91:44:e5:e5:4c:c0:ac:25:33:76:bb:b7:b7:
ac:22:28:be:03:eb:58:8a:a2:4d:e3:ed:85:6d:74:
ea:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8C:3E:21:E3:2D:D1:BE:5B:D1:0D:3B:E2:E9:D3:4E:26:63:92:49
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c4w-IeMt0b5b0Q074unTTiZjkkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.149.0/24
77.90.23.0/24
178.18.152.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:e3:d5:0d:4a:c5:7a:d4:f7:f8:cc:4c:ec:bd:88:bb:8f:2e:
97:e8:77:a8:ec:91:ab:09:91:31:49:7d:8f:03:6b:19:41:a0:
9f:06:3c:bc:c5:ef:c4:6c:6e:f3:5b:9d:c6:7a:08:be:ac:9e:
86:31:de:8f:6c:0f:30:5d:42:0d:97:6c:81:7d:78:42:44:df:
83:3c:df:72:39:d8:63:02:5d:fd:e1:fd:6e:10:26:a0:f3:5d:
2c:ec:99:a3:38:1a:73:a9:a8:e7:57:8e:29:85:0a:d3:7e:15:
e2:41:95:3b:23:d3:69:75:3d:f9:8f:78:65:97:4c:d5:81:67:
9a:1c:ed:b2:05:7a:fd:94:d6:9d:1f:c7:c1:18:61:bc:91:01:
b1:5d:d8:46:5c:32:2e:f8:cc:37:45:c5:d9:43:a9:c8:12:f1:
d0:65:d7:95:3a:49:18:e0:5f:bb:34:4d:db:e9:62:bf:bb:29:
e4:86:c4:e7:05:6e:30:88:dc:c2:ec:c2:e4:30:db:f9:a8:8b:
8b:d2:65:2c:3b:b5:38:25:3a:74:8f:24:bd:61:7d:8b:62:aa:
ec:96:85:48:b8:3d:4a:6b:e1:98:22:bc:01:8f:d3:b6:33:cf:
61:3c:4d:1e:b1:b3:c8:07:7e:19:b1:3f:d0:6d:90:35:82:51:
a5:83:99:8f
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZpNQgR0fTrkVIOKNycA+ReKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUxMTA0MDUwNjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzhjM2UyMWUzMmRkMWJlNWJkMTBkM2JlMmU5ZDM0ZTI2NjM5MjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLbWgMIQA5XyRdAMdHWp0kbaPKUY
GdB4kkmVGCFGNpP9YOVn51QPvhZxW6i/798OEwj6ooPdICnGRV8+sWbA9me6rAoW
cHw1U/9GjMOQdFdWYRaGtQ1ERN46vgNCkzHW9kGsTio0JpD+dWIJG+Z2B5A5DHjT
+ioHopbgx9ga4IY3oPpRo9PwdUjmTDlAeRjmLc2YwfMo4596ftwNgZIu1qi8RhLt
wWYS8+Pf5lN5V2yljHddwVQtxEgjbw+4pcbh+1bcTPWCZP/XtruqWzsP3EUKHBEU
E9FD9ODGXIpx2gdrUpFE5eVMwKwlM3a7t7esIii+A+tYiqJN4+2FbXTq1QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHOMPiHjLdG+W9ENO+Lp004mY5JJMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvYzR3LUllTXQwYjViMFEwNzR1blRUaVpqa2trLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABVOVAwQA
TVoXAwQCshKYMA0GCSqGSIb3DQEBCwUAA4IBAQCu49UNSsV61Pf4zEzsvYi7jy6X
6Heo7JGrCZExSX2PA2sZQaCfBjy8xe/EbG7zW53Gegi+rJ6GMd6PbA8wXUINl2yB
fXhCRN+DPN9yOdhjAl394f1uECag810s7JmjOBpzqajnV44phQrTfhXiQZU7I9Np
dT35j3hll0zVgWeaHO2yBXr9lNadH8fBGGG8kQGxXdhGXDIu+Mw3RcXZQ6nIEvHQ
ZdeVOkkY4F+7NE3b6WK/uynkhsTnBW4wiNzC7MLkMNv5qIuL0mUsO7U4JTp0jyS9
YX2LYqrsloVIuD1Ka+GYIrwBj9O2M89hPE0esbPIB34ZsT/QbZA1glGlg5mP
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:46:36 2025 by rpki-client