Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vbmxH-A55vTXWHuFZD7MiF6ASw8.roa
File: vbmxH-A55vTXWHuFZD7MiF6ASw8.roa (raw, json)
Hash identifier: e6VYuEPa2vAe3Wx3vDgOYBdgaKNLP7GwntQL6HSQmsU=
Subject key identifier: BD:B9:B1:1F:E0:39:E6:F4:D7:58:7B:85:64:3E:CC:88:5E:80:4B:0F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019EA80094E44FD253612FC6E8EC028679ED
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vbmxH-A55vTXWHuFZD7MiF6ASw8.roa
Signing time: Mon 08 Jun 2026 16:11:10 +0000
ROA not before: Mon 08 Jun 2026 16:11:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 211066
IP address blocks: 5.83.134.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.175.192.0/24 maxlen: 24
5.175.221.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.73.0/24 maxlen: 24
89.106.75.0/24 maxlen: 24
89.106.77.0/24 maxlen: 24
89.106.82.0/24 maxlen: 24
94.249.247.0/24 maxlen: 24
185.129.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a8:00:94:e4:4f:d2:53:61:2f:c6:e8:ec:02:86:79:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 8 16:11:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bdb9b11fe039e6f4d7587b85643ecc885e804b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:35:c1:5a:5d:4b:f1:3d:62:31:e1:a5:65:2c:
7d:1b:45:a9:9d:1f:21:21:9b:92:1d:66:0b:05:35:
4d:d2:91:4a:96:fc:b4:e0:ea:7d:1d:b0:2e:98:b3:
5c:a1:99:e8:21:98:c3:1d:b1:96:8f:55:dd:be:9c:
e3:ac:ec:67:20:a3:4e:bb:15:37:22:81:02:fb:cc:
96:01:50:db:9a:5a:10:f9:61:a0:a5:97:3c:ee:d1:
5b:61:26:0d:a8:69:4f:6b:d1:7f:76:b5:b2:4e:32:
42:6f:cf:27:95:2f:5a:dc:8f:8a:38:83:92:98:f5:
e8:c0:0d:93:c7:f2:4a:ff:37:83:7d:13:18:b5:ef:
be:9e:d7:67:7c:ef:8d:75:de:ac:5f:d0:93:6d:08:
6f:e9:46:10:ae:3e:36:29:f2:fe:a3:d1:91:11:53:
2b:d3:45:8a:5f:20:cc:10:47:14:49:94:96:86:46:
c0:05:45:93:e6:c9:1e:1d:b2:54:f7:e4:88:a3:b4:
c2:08:e9:d2:8c:02:78:42:7f:c3:c7:06:1d:65:be:
c8:15:76:eb:a9:25:96:7e:9e:9c:b6:93:30:e3:9f:
6c:48:82:39:37:2f:79:96:d5:d9:20:89:1a:5d:2a:
91:2c:d7:98:9c:c1:f7:af:df:76:55:9a:55:38:74:
08:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B9:B1:1F:E0:39:E6:F4:D7:58:7B:85:64:3E:CC:88:5E:80:4B:0F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vbmxH-A55vTXWHuFZD7MiF6ASw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.134.0/24
5.175.140.0/24
5.175.192.0/24
5.175.221.0/24
87.239.131.0/24
89.106.73.0/24
89.106.75.0/24
89.106.77.0/24
89.106.82.0/24
94.249.247.0/24
185.129.87.0/24
Signature Algorithm: sha256WithRSAEncryption
55:da:23:16:5a:dc:e9:c0:53:a7:70:46:c3:c3:60:eb:f4:6e:
20:8e:7e:e8:0d:2e:dc:25:8a:e6:5d:c3:4b:ab:03:81:29:73:
e5:f6:6f:ce:b2:3b:ca:24:91:ba:90:40:62:46:cf:a7:d4:47:
ce:51:06:3f:67:f0:e6:89:2f:67:fb:29:64:76:84:44:0c:8e:
24:95:ac:e2:db:2d:b7:50:c5:f3:7d:bf:00:8e:67:c8:35:2d:
ba:7a:7f:e2:ec:ca:4c:92:77:29:02:5c:ff:be:13:15:d5:c7:
f5:93:e6:09:6b:15:20:45:07:4c:91:3e:94:e2:61:1b:62:40:
da:e0:7b:3e:e2:4d:ca:fa:d0:de:d1:fe:6e:e6:6c:e4:53:8d:
35:f6:ac:56:95:7a:2d:61:d9:e8:9f:6e:fc:e8:f8:35:a6:12:
29:7b:36:10:20:ee:02:c5:87:24:5b:65:0c:3a:bc:d0:1d:df:
33:e1:74:d0:30:22:55:d6:78:6a:e8:02:3b:38:2c:c0:ed:f9:
ff:ea:46:1f:eb:8c:2d:2d:9a:d2:d2:f3:91:8c:42:b1:c3:10:
07:3a:96:20:57:f2:a4:e1:13:18:91:f0:03:9d:b8:2f:74:56:
a2:75:3a:3c:f8:d7:fc:a7:de:54:80:1d:60:e8:e4:36:03:f4:
1d:b4:c7:b9
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgISAZ6oAJTkT9JTYS/G6OwChnntMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjYwNjA4MTYxMTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGI5YjExZmUwMzllNmY0ZDc1ODdiODU2NDNlY2M4ODVlODA0YjBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jXBWl1L8T1iMeGlZSx9G0WpnR8h
IZuSHWYLBTVN0pFKlvy04Op9HbAumLNcoZnoIZjDHbGWj1XdvpzjrOxnIKNOuxU3
IoEC+8yWAVDbmloQ+WGgpZc87tFbYSYNqGlPa9F/drWyTjJCb88nlS9a3I+KOIOS
mPXowA2Tx/JK/zeDfRMYte++ntdnfO+Ndd6sX9CTbQhv6UYQrj42KfL+o9GREVMr
00WKXyDMEEcUSZSWhkbABUWT5skeHbJU9+SIo7TCCOnSjAJ4Qn/DxwYdZb7IFXbr
qSWWfp6ctpMw459sSII5Ny95ltXZIIkaXSqRLNeYnMH3r992VZpVOHQIqwIDAQAB
o4ICRTCCAkEwHQYDVR0OBBYEFL25sR/gOeb011h7hWQ+zIhegEsPMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvdmJteEgtQTU1dlRYV0h1RlpEN01pRjZBU3c4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQABVOGAwQA
Ba+MAwQABa/AAwQABa/dAwQAV++DAwQAWWpJAwQAWWpLAwQAWWpNAwQAWWpSAwQA
Xvn3AwQAuYFXMA0GCSqGSIb3DQEBCwUAA4IBAQBV2iMWWtzpwFOncEbDw2Dr9G4g
jn7oDS7cJYrmXcNLqwOBKXPl9m/OsjvKJJG6kEBiRs+n1EfOUQY/Z/DmiS9n+ylk
doREDI4klazi2y23UMXzfb8AjmfINS26en/i7MpMkncpAlz/vhMV1cf1k+YJaxUg
RQdMkT6U4mEbYkDa4Hs+4k3K+tDe0f5u5mzkU4019qxWlXotYdnon2786Pg1phIp
ezYQIO4CxYckW2UMOrzQHd8z4XTQMCJV1nhq6AI7OCzA7fn/6kYf64wtLZrS0vOR
jEKxwxAHOpYgV/Kk4RMYkfADnbgvdFaidTo8+Nf8p95UgB1g6OQ2A/QdtMe5
-----END CERTIFICATE-----
Generated at Sat Jun 13 09:23:12 2026 by rpki-client