Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/EzAvUa-DIA3eEDtJjO0Um9queOI.roa
File: EzAvUa-DIA3eEDtJjO0Um9queOI.roa (raw, json)
Hash identifier: ECobVUBnXH2oYzCAfJ9XXnwI5lQiPG4kGFA/d4iPWJo=
Subject key identifier: 13:30:2F:51:AF:83:20:0D:DE:10:3B:49:8C:ED:14:9B:DA:AE:78:E2
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019EBFB5A0FAABA025B72A415D040910CC05
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/EzAvUa-DIA3eEDtJjO0Um9queOI.roa
Signing time: Sat 13 Jun 2026 06:40:11 +0000
ROA not before: Sat 13 Jun 2026 06:40:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213852
IP address blocks: 62.60.189.0/24 maxlen: 24
62.60.191.0/24 maxlen: 24
62.60.192.0/24 maxlen: 24
62.60.194.0/23 maxlen: 24
62.60.198.0/24 maxlen: 24
62.60.218.0/24 maxlen: 24
62.60.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:b5:a0:fa:ab:a0:25:b7:2a:41:5d:04:09:10:cc:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 13 06:40:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=13302f51af83200dde103b498ced149bdaae78e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:47:e6:0b:87:26:e4:d0:3b:51:b3:66:79:b3:
d0:fa:13:07:20:39:67:ac:c5:90:de:e9:fe:e9:75:
20:03:a9:e2:e7:c4:4c:a8:8b:11:6b:82:1c:dd:db:
f4:28:70:84:c8:1c:59:4d:f3:b7:97:0f:ac:be:a1:
2a:5c:13:a6:78:34:84:ac:74:45:66:46:1b:36:57:
2d:41:9d:c7:97:29:d2:86:db:10:0c:c8:bd:9b:58:
fb:c9:21:00:c5:c2:54:a8:cf:43:68:c0:6f:f9:6a:
c8:45:b2:37:39:0a:e9:47:a5:d9:e2:38:8a:fd:eb:
a6:dc:92:ce:4a:f5:c3:80:90:ab:eb:06:3f:9a:37:
d0:3d:ec:5e:df:34:7b:9f:7a:f4:e6:24:4f:fc:70:
cf:c7:23:56:b6:0f:bf:7f:df:85:f6:b8:ec:38:92:
c0:58:60:40:64:39:14:d9:09:c8:58:8e:66:52:5c:
d6:2c:fd:3b:b4:d0:a2:1f:52:85:fe:f1:83:a8:d8:
42:4c:d5:26:c9:94:ba:f2:86:7f:74:99:bf:4f:f9:
51:3a:a2:42:f8:c6:c1:c1:ce:bf:a8:91:67:30:d9:
6c:4f:e4:78:4f:48:cd:1d:e9:f4:cb:09:42:9c:b3:
cd:93:ae:f7:a3:6d:8c:28:37:83:2d:7d:03:dc:f7:
83:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:30:2F:51:AF:83:20:0D:DE:10:3B:49:8C:ED:14:9B:DA:AE:78:E2
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/EzAvUa-DIA3eEDtJjO0Um9queOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.189.0/24
62.60.191.0-62.60.192.255
62.60.194.0/23
62.60.198.0/24
62.60.218.0/24
62.60.220.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:8f:ed:37:16:58:b7:1a:2d:2c:da:e7:34:73:b4:92:94:9a:
de:1b:f7:27:ce:0d:52:d0:bc:00:4f:f3:b4:3e:a4:a8:43:8c:
a4:fe:4d:2c:32:54:bd:9a:a2:13:10:ff:3c:8f:c9:c6:ce:c0:
f9:8f:e4:c8:4d:f4:8a:95:29:ce:cf:7f:65:18:bd:c3:d6:1b:
16:22:3e:79:9b:a8:b2:f4:a0:b2:5c:ea:4c:e1:26:d3:17:b0:
f3:47:e3:dc:6c:7c:71:d2:ee:ea:13:f2:3b:73:17:8c:82:ad:
37:96:4f:aa:e3:2c:27:03:89:6a:5d:a7:60:e9:5f:ee:b4:29:
e5:c1:27:3d:e3:e6:b5:1c:29:58:32:15:a0:83:0e:3b:8c:dc:
b2:73:c4:d5:d0:28:91:61:ff:fd:e0:ff:07:f4:15:51:d0:92:
f8:92:d5:60:6f:58:1f:31:32:6d:17:60:17:2f:83:21:c0:da:
cb:2f:12:6f:cd:70:2c:18:be:47:96:6a:14:6f:78:2f:68:cf:
86:7e:53:c7:00:a3:00:95:21:50:8b:d7:8c:54:44:cb:ff:5f:
e0:24:4a:55:f2:94:45:4e:43:35:21:8c:10:d3:b7:7f:a9:4e:
df:9f:ab:8c:fd:be:23:55:91:2e:e8:b6:86:aa:f6:7f:bc:fc:
e7:16:1a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:07:33 2026 by rpki-client