Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nOg0D4-xzD0c7Y62cr39G-zFNVc.roa
File: nOg0D4-xzD0c7Y62cr39G-zFNVc.roa (raw, json)
Hash identifier: vfzoNMrY2TCNmL/kQrAGYBcOwLvcrPY2PpIRipklXPM=
Subject key identifier: 9C:E8:34:0F:8F:B1:CC:3D:1C:ED:8E:B6:72:BD:FD:1B:EC:C5:35:57
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 019EA5B4CD12C66F44FAF3F6B2B0298C207D
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nOg0D4-xzD0c7Y62cr39G-zFNVc.roa
Signing time: Mon 08 Jun 2026 05:29:10 +0000
ROA not before: Mon 08 Jun 2026 05:29:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 5.172.33.0/24 maxlen: 24
89.23.82.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
185.157.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a5:b4:cd:12:c6:6f:44:fa:f3:f6:b2:b0:29:8c:20:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 8 05:29:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9ce8340f8fb1cc3d1ced8eb672bdfd1becc53557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cb:0d:fb:fa:98:93:f4:da:0e:ba:b7:53:f7:
30:4d:7f:d9:ca:f3:54:ca:57:d1:84:9d:05:45:ca:
e8:0e:3e:f0:f6:4a:3b:5a:e8:94:77:3e:74:3b:4c:
53:da:6e:24:03:e0:44:da:a8:ed:83:3d:11:a2:c5:
b3:a1:49:5f:00:f9:5a:ad:07:ba:17:f7:35:bd:ff:
05:a6:0e:3e:a8:42:0e:40:4d:f5:9a:89:1a:14:7e:
2b:85:11:50:08:06:12:91:d1:a4:f2:0c:b9:c0:c8:
dc:af:2a:c4:69:a5:6b:93:c7:49:7a:86:c8:e3:4b:
91:f3:9e:e6:15:01:58:e5:b1:0e:54:e3:54:95:b6:
2f:5b:38:44:26:7e:f3:42:0e:75:23:ed:da:30:6e:
fd:ad:ef:83:68:ae:4b:5d:90:80:b0:f9:05:7a:fc:
8d:ab:b3:8b:d1:f9:f8:16:ba:7c:ca:09:b3:60:84:
01:b2:be:89:b4:36:a2:b4:13:b6:d5:03:5f:03:59:
f8:82:37:9b:92:4b:f1:bb:d1:dd:ae:fc:52:44:58:
54:9c:25:d5:3a:08:76:a2:0c:d8:c8:53:fd:ad:77:
59:b1:3a:2c:db:95:e4:34:ef:33:d5:6f:c2:01:04:
50:77:9c:34:7f:96:d2:79:34:c6:e6:f8:f4:1e:40:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E8:34:0F:8F:B1:CC:3D:1C:ED:8E:B6:72:BD:FD:1B:EC:C5:35:57
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nOg0D4-xzD0c7Y62cr39G-zFNVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0/24
89.23.82.0/24
89.23.93.0/24
185.157.46.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:1e:c1:fb:af:e5:83:a9:56:26:33:e8:49:7d:57:a9:6c:83:
bb:06:7b:68:6b:75:06:e7:66:a2:f0:c6:93:d4:50:c7:a7:e2:
1d:06:84:f3:da:e0:7f:78:6f:28:d2:fd:1d:fd:be:4f:fe:c0:
3f:0c:cc:17:63:ae:04:35:34:1f:0b:84:61:ff:94:f5:97:30:
3e:32:13:ab:c8:4a:f2:de:8a:99:e0:00:92:4f:e1:ec:4f:ea:
49:6b:4e:ec:f6:ab:31:47:54:36:59:a9:52:22:ff:bf:1b:f9:
37:cd:e5:41:80:84:a0:2c:80:9e:8a:64:74:55:de:fe:25:3b:
80:00:e2:4d:27:65:16:f8:a3:41:b4:4f:e8:64:d4:76:30:44:
c5:5d:ab:95:97:b7:a6:96:06:55:67:ba:22:09:0c:c2:8b:22:
06:30:7d:12:f3:f7:50:05:31:a6:b4:cc:31:24:9e:e9:30:db:
3c:2b:93:b1:48:6e:36:a2:05:8b:b7:52:84:5e:0a:39:a4:09:
bc:ac:3c:f4:c8:66:16:94:c9:7b:b8:66:fb:59:39:2a:90:21:
f9:49:5a:a7:a8:57:0a:cf:b8:af:b4:d2:fc:19:75:4e:27:4b:
4c:6a:03:63:48:03:2e:5d:5a:49:4a:48:1a:23:fc:9a:fd:1c:
6b:44:99:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:20:32 2026 by rpki-client