Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/zeXlkkdIl09Dvjdm4ssi_tIY1Bg.roa
File: zeXlkkdIl09Dvjdm4ssi_tIY1Bg.roa (raw, json)
Hash identifier: hWf1h7aupZ9EKGB6E2iziSGfeT6RpNoa9INKOxiybSQ=
Subject key identifier: CD:E5:E5:92:47:48:97:4F:43:BE:37:66:E2:CB:22:FE:D2:18:D4:18
Certificate issuer: /CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Certificate serial: 019D31A9B081D8305CA46F0175022CC9D70A
Authority key identifier: 61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/zeXlkkdIl09Dvjdm4ssi_tIY1Bg.roa
Signing time: Fri 27 Mar 2026 23:38:17 +0000
ROA not before: Fri 27 Mar 2026 23:38:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215089
IP address blocks: 46.235.8.0/24 maxlen: 24
46.235.10.0/24 maxlen: 24
46.235.11.0/24 maxlen: 24
77.245.157.0/24 maxlen: 24
185.87.254.0/24 maxlen: 24
185.87.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:a9:b0:81:d8:30:5c:a4:6f:01:75:02:2c:c9:d7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Validity
Not Before: Mar 27 23:38:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cde5e5924748974f43be3766e2cb22fed218d418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:98:e2:99:30:91:b8:a1:4e:0a:cb:be:e0:b4:
a6:b7:07:df:c6:4b:f4:ce:b7:54:46:00:3a:97:1d:
04:0a:b5:8d:11:9e:e1:fb:a8:90:45:d2:b8:5a:15:
18:12:e6:9e:65:50:80:35:68:68:29:9b:9f:37:83:
ee:e1:23:47:6c:cf:13:d8:fe:8d:17:3a:99:85:26:
e4:09:d2:88:97:19:82:3f:30:bb:1d:23:d2:77:7e:
21:28:d1:e6:ff:28:51:6e:dd:67:1e:52:8f:99:f2:
a1:fb:58:3c:06:9f:75:8d:05:38:87:ae:df:b5:56:
4a:8a:29:da:62:5c:57:40:6e:41:28:46:d2:20:2f:
40:38:a8:de:b2:9c:dc:aa:7c:2c:a6:60:59:ef:3b:
56:66:58:93:54:b4:be:59:34:51:7e:bd:e3:fe:36:
8a:e3:09:a8:d2:12:82:78:e5:98:07:9b:72:b7:80:
4d:b1:d5:90:fd:c3:28:09:35:42:4e:4a:d7:5e:dd:
59:e8:4b:4a:e5:fd:e2:2a:32:3c:a4:33:62:4b:fd:
10:e2:4f:c7:87:80:e5:7b:95:a5:71:7b:63:d6:de:
d6:ba:80:c4:e8:5b:8d:47:9e:4f:62:37:82:fe:20:
f1:a6:0c:b4:8c:1b:d4:a1:a0:81:98:99:1f:48:94:
86:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E5:E5:92:47:48:97:4F:43:BE:37:66:E2:CB:22:FE:D2:18:D4:18
X509v3 Authority Key Identifier:
keyid:61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/zeXlkkdIl09Dvjdm4ssi_tIY1Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.8.0/24
46.235.10.0/23
77.245.157.0/24
185.87.254.0/23
Signature Algorithm: sha256WithRSAEncryption
07:6c:2c:3c:21:e9:ec:d3:46:04:ca:f4:c5:e8:a6:22:ca:51:
bf:48:4c:e0:44:92:36:ba:af:f4:44:c5:18:30:ef:a1:12:2b:
15:b8:46:a7:c1:3e:8f:7d:b7:de:3b:e9:12:e7:bc:45:f6:3b:
84:5d:45:42:ff:65:7b:12:e5:43:cb:72:e9:13:16:c0:cf:eb:
b3:7c:28:46:a7:b4:dc:98:aa:b1:ec:6c:d3:e8:3c:29:2f:f5:
e1:4a:4c:18:94:15:3b:19:01:04:57:df:41:2f:9c:03:91:53:
84:75:d3:d4:05:2f:8b:28:9d:9d:6b:85:a9:0d:b5:02:5c:5b:
7f:b2:3d:c5:1f:33:fc:b0:b6:87:3f:73:4c:15:6f:e1:46:f6:
30:8d:2a:44:ec:d9:37:0d:1b:c3:b6:8c:4a:37:61:6e:55:cf:
e7:3f:10:88:ab:2a:7e:8e:73:cb:63:fe:a5:31:bc:af:8c:fa:
9c:37:b6:bc:f0:d8:3d:99:4f:13:36:a3:a9:fb:19:11:2e:40:
1d:25:61:c7:b6:de:e8:25:fb:38:25:b8:55:38:7d:d3:6f:d9:
15:86:15:b4:2b:2d:d1:cd:2b:14:bf:33:30:91:44:78:71:38:
ef:2d:46:a8:0f:b1:83:5b:cf:91:f3:6d:e1:2f:15:c3:1d:74:
0e:cc:7c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:01:06 2026 by rpki-client