Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/GV0wRTX6pkK5lXPfOTN_22ZcRmQ.roa
File: GV0wRTX6pkK5lXPfOTN_22ZcRmQ.roa (raw, json)
Hash identifier: DRz6zrLEtl+uv/9cuYWCzqrsFFILRse2dKmgbolcMhY=
Subject key identifier: 19:5D:30:45:35:FA:A6:42:B9:95:73:DF:39:33:7F:DB:66:5C:46:64
Certificate issuer: /CN=5af4de6e73c8e053cb640b74d2b912abd90b0580
Certificate serial: 019D96714BB9C0F2019C63B52E126C8FC319
Authority key identifier: 5A:F4:DE:6E:73:C8:E0:53:CB:64:0B:74:D2:B9:12:AB:D9:0B:05:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WvTebnPI4FPLZAt00rkSq9kLBYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/GV0wRTX6pkK5lXPfOTN_22ZcRmQ.roa
Signing time: Thu 16 Apr 2026 13:18:20 +0000
ROA not before: Thu 16 Apr 2026 13:18:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 12440
IP address blocks: 62.128.160.0/19 maxlen: 24
62.128.168.0/21 maxlen: 24
62.128.186.0/24 maxlen: 24
62.128.188.0/24 maxlen: 24
62.128.191.0/24 maxlen: 24
82.214.192.0/18 maxlen: 24
82.214.210.0/24 maxlen: 24
82.214.220.0/24 maxlen: 24
82.214.223.0/24 maxlen: 24
82.214.232.0/24 maxlen: 24
82.214.234.0/24 maxlen: 24
82.214.239.0/24 maxlen: 24
82.214.240.0/21 maxlen: 24
128.65.64.0/19 maxlen: 24
185.117.52.0/22 maxlen: 24
195.238.32.0/19 maxlen: 24
195.238.44.0/24 maxlen: 24
195.238.45.0/24 maxlen: 24
195.238.60.0/24 maxlen: 24
195.238.61.0/24 maxlen: 24
195.238.62.0/24 maxlen: 24
195.238.63.0/24 maxlen: 24
2a0a:1240::/32 maxlen: 40
2a0a:1241::/32 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/WvTebnPI4FPLZAt00rkSq9kLBYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/WvTebnPI4FPLZAt00rkSq9kLBYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WvTebnPI4FPLZAt00rkSq9kLBYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:96:71:4b:b9:c0:f2:01:9c:63:b5:2e:12:6c:8f:c3:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5af4de6e73c8e053cb640b74d2b912abd90b0580
Validity
Not Before: Apr 16 13:18:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=195d304535faa642b99573df39337fdb665c4664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:e7:02:76:ed:87:4c:8c:15:d7:dd:5b:c3:
6f:d2:3e:bc:44:5c:2a:99:e1:3c:88:9f:7f:67:11:
bb:ea:52:c7:fa:5d:8a:e4:d2:50:db:55:2e:e1:72:
85:e9:33:ab:38:4a:89:57:cc:39:21:fd:64:a9:bf:
33:25:b3:b7:0d:31:b7:e7:ec:ee:91:29:27:9f:25:
8d:96:ac:97:5e:e3:0c:f9:81:b2:6a:10:c0:6a:86:
55:cb:7a:12:13:bf:c3:b1:62:1b:0c:e6:e5:08:7c:
64:44:05:71:47:22:1a:2b:18:c7:d8:98:10:46:3b:
05:c9:07:df:91:24:3c:b1:58:5b:8b:74:29:91:7e:
2d:44:89:15:55:a4:d0:a7:3d:28:09:4e:21:c3:a7:
6b:da:d5:72:79:ed:81:3f:74:77:56:e6:fa:b2:6d:
69:dc:c8:69:19:a5:50:c1:fe:e4:a1:13:61:4f:3e:
a5:86:a3:76:6f:2b:f9:df:18:f6:16:c1:4c:24:41:
d8:f0:81:6b:1e:91:a1:b0:0d:71:1a:7c:30:f8:5c:
41:c0:43:08:cf:d4:a7:ba:50:35:0d:bd:1d:d8:23:
f9:46:c3:05:b1:0d:0e:86:4b:bb:4a:f8:97:b2:56:
0c:8e:98:75:39:ee:17:6f:e2:ae:1c:37:d7:2a:3d:
63:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5D:30:45:35:FA:A6:42:B9:95:73:DF:39:33:7F:DB:66:5C:46:64
X509v3 Authority Key Identifier:
keyid:5A:F4:DE:6E:73:C8:E0:53:CB:64:0B:74:D2:B9:12:AB:D9:0B:05:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WvTebnPI4FPLZAt00rkSq9kLBYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/GV0wRTX6pkK5lXPfOTN_22ZcRmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad3696-f36f-4df0-b2de-c1e9362b1a51/1/WvTebnPI4FPLZAt00rkSq9kLBYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.128.160.0/19
82.214.192.0/18
128.65.64.0/19
185.117.52.0/22
195.238.32.0/19
IPv6:
2a0a:1240::/31
Signature Algorithm: sha256WithRSAEncryption
18:7e:6b:3a:47:fd:6a:35:96:2b:b1:6e:36:bf:5b:08:c8:94:
d3:7b:a9:3a:22:ac:44:45:69:59:51:e0:97:10:b0:72:a6:07:
f5:4a:ec:1b:5d:c6:89:67:69:dc:e5:d6:7d:c3:67:a6:fd:74:
1b:f7:fe:57:d4:a8:ad:2f:04:3a:db:b6:2e:7f:12:3d:73:ee:
bb:9b:ae:44:35:c9:b0:2c:aa:5a:5c:9e:52:36:57:bd:98:64:
30:6d:75:ec:20:f9:d3:41:81:70:2a:0e:fe:a7:5e:aa:3b:c2:
44:af:a7:02:33:25:f6:86:c2:e7:ab:f7:ad:fc:c4:78:9b:b4:
48:31:07:7c:0b:8b:3a:79:01:84:9f:64:4c:f5:91:09:86:ee:
ce:02:8b:20:7b:20:15:49:fa:18:a5:80:8b:52:c1:e0:1e:06:
c1:ad:7e:d8:ff:11:1f:43:6c:d1:9f:cd:1c:d6:90:f6:0b:77:
69:14:62:eb:e6:2d:14:07:d7:8e:f5:0e:2f:12:6e:a0:3f:f7:
11:7f:a9:de:bd:1a:38:44:8b:58:51:f6:f2:66:e6:77:da:a1:
4a:5c:a0:44:1e:78:bc:08:0b:b0:f7:f3:0e:a2:dc:3c:a0:e8:
5a:fa:44:29:d4:dc:ac:c1:13:38:b3:bc:cf:20:e9:80:df:06:
dc:78:62:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:26:11 2026 by rpki-client