Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/fue5V09i6FJElyionb_ybPtp8g8.roa
File: fue5V09i6FJElyionb_ybPtp8g8.roa (raw, json)
Hash identifier: NNEACxFV1sDMxB4ha/SL5C3xLggPb4gQCLR2quODcyc=
Subject key identifier: 7E:E7:B9:57:4F:62:E8:52:44:97:28:A8:9D:BF:F2:6C:FB:69:F2:0F
Certificate issuer: /CN=1e1c2357e70b97d03ed70c3d688ce507c6758d54
Certificate serial: 019C99F354EA5F52D3F336A2392B77410A25
Authority key identifier: 1E:1C:23:57:E7:0B:97:D0:3E:D7:0C:3D:68:8C:E5:07:C6:75:8D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/fue5V09i6FJElyionb_ybPtp8g8.roa
Signing time: Thu 26 Feb 2026 12:36:26 +0000
ROA not before: Thu 26 Feb 2026 12:36:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 15493
IP address blocks: 5.1.48.0/24 maxlen: 24
5.1.49.0/24 maxlen: 24
5.1.50.0/24 maxlen: 24
5.1.51.0/24 maxlen: 24
5.1.52.0/24 maxlen: 24
5.1.54.0/24 maxlen: 24
77.242.96.0/20 maxlen: 24
77.242.96.0/24 maxlen: 24
77.242.98.0/24 maxlen: 24
77.242.105.0/24 maxlen: 24
77.242.107.0/24 maxlen: 24
77.242.108.0/24 maxlen: 24
77.242.109.0/24 maxlen: 24
77.242.110.0/24 maxlen: 24
77.242.111.0/24 maxlen: 24
80.91.16.0/20 maxlen: 24
80.91.16.0/24 maxlen: 24
80.91.17.0/24 maxlen: 24
80.91.18.0/24 maxlen: 24
80.91.19.0/24 maxlen: 24
80.91.20.0/24 maxlen: 24
80.91.21.0/24 maxlen: 24
80.91.22.0/24 maxlen: 24
80.91.23.0/24 maxlen: 24
80.91.25.0/24 maxlen: 24
80.91.26.0/24 maxlen: 24
80.91.27.0/24 maxlen: 24
80.91.28.0/24 maxlen: 24
80.91.29.0/24 maxlen: 24
178.236.208.0/20 maxlen: 24
178.236.210.0/24 maxlen: 24
178.236.211.0/24 maxlen: 24
178.236.212.0/24 maxlen: 24
178.236.213.0/24 maxlen: 24
178.236.214.0/24 maxlen: 24
178.236.215.0/24 maxlen: 24
178.236.216.0/24 maxlen: 24
178.236.217.0/24 maxlen: 24
178.236.218.0/24 maxlen: 24
178.236.221.0/24 maxlen: 24
178.236.222.0/24 maxlen: 24
178.236.223.0/24 maxlen: 24
185.11.4.0/23 maxlen: 24
185.11.4.0/24 maxlen: 24
185.11.5.0/24 maxlen: 24
185.11.6.0/23 maxlen: 24
185.11.6.0/24 maxlen: 24
217.116.48.0/20 maxlen: 24
217.116.48.0/24 maxlen: 24
217.116.49.0/24 maxlen: 24
217.116.50.0/24 maxlen: 24
217.116.51.0/24 maxlen: 24
217.116.52.0/24 maxlen: 24
217.116.53.0/24 maxlen: 24
217.116.54.0/24 maxlen: 24
217.116.55.0/24 maxlen: 24
217.116.56.0/24 maxlen: 24
217.116.57.0/24 maxlen: 24
217.116.58.0/24 maxlen: 24
217.116.59.0/24 maxlen: 24
217.116.60.0/24 maxlen: 24
217.116.61.0/24 maxlen: 24
217.116.62.0/24 maxlen: 24
217.116.63.0/24 maxlen: 24
2a02:dc00:1::/48 maxlen: 48
2a02:dc00:2::/48 maxlen: 48
2a02:dc00:100::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:99:f3:54:ea:5f:52:d3:f3:36:a2:39:2b:77:41:0a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1c2357e70b97d03ed70c3d688ce507c6758d54
Validity
Not Before: Feb 26 12:36:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7ee7b9574f62e852449728a89dbff26cfb69f20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0d:76:91:04:27:a7:27:10:e8:07:d3:a8:df:
18:de:3c:4c:69:f5:ec:ff:12:b0:9e:d3:f2:81:ce:
e0:f2:e0:f5:48:8d:50:e3:86:56:44:b6:82:05:5f:
43:45:9d:90:9f:b3:a2:cb:3d:de:b0:20:3e:1b:a9:
dc:e4:43:09:78:49:5e:a8:d4:f8:28:99:cc:9f:81:
80:08:5b:4a:bb:58:b9:12:a0:f5:f8:56:c9:b6:4a:
10:26:98:07:a4:6c:ca:cf:00:d1:b1:01:03:62:ff:
23:13:29:40:29:07:72:f8:a3:c0:60:98:ed:6a:f5:
09:15:76:d5:71:0a:cf:d3:b2:0f:1b:4c:93:b0:c0:
cd:35:6e:af:ff:14:61:d5:54:89:4b:85:8e:ea:ed:
cf:3e:3b:9c:5f:94:9b:8c:3a:af:ef:5c:74:5c:63:
3e:07:e1:5d:2b:fd:52:83:b1:87:78:b1:1f:8f:62:
c3:5e:e1:89:84:91:f3:0c:c3:be:e0:d8:b0:fa:74:
25:b4:a5:69:84:fa:3d:f1:df:b3:33:07:d6:89:d7:
08:25:37:fe:ce:9b:5f:65:f9:4f:e8:23:27:f4:9e:
36:00:d2:11:b4:c0:a1:e3:54:c5:01:91:d7:39:27:
c9:7d:68:5a:b3:e1:a6:44:dd:89:05:e9:cd:47:ff:
24:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E7:B9:57:4F:62:E8:52:44:97:28:A8:9D:BF:F2:6C:FB:69:F2:0F
X509v3 Authority Key Identifier:
keyid:1E:1C:23:57:E7:0B:97:D0:3E:D7:0C:3D:68:8C:E5:07:C6:75:8D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/fue5V09i6FJElyionb_ybPtp8g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/054867-14d4-4922-bf5f-6ddcfac970f7/1/HhwjV-cLl9A-1ww9aIzlB8Z1jVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.48.0-5.1.52.255
5.1.54.0/24
77.242.96.0/20
80.91.16.0/20
178.236.208.0/20
185.11.4.0/22
217.116.48.0/20
IPv6:
2a02:dc00:1::-2a02:dc00:2:ffff:ffff:ffff:ffff:ffff
2a02:dc00:100::/48
Signature Algorithm: sha256WithRSAEncryption
34:25:a4:1a:a5:46:a5:c3:a3:8c:f0:a3:b4:07:9c:43:d3:d0:
a0:66:1d:96:3e:17:88:68:c0:c4:c1:1e:bc:8a:28:b1:7d:2a:
ea:ab:e7:81:28:e9:28:32:dc:2d:1d:02:c8:7e:6f:ce:7b:bf:
a7:cd:fc:83:c3:37:82:57:6a:fe:4f:66:f7:19:f9:34:6e:e4:
2b:23:8d:46:ad:35:af:44:78:fd:d1:b1:c0:78:4b:29:fb:b8:
09:f3:24:bb:18:dd:9a:43:a9:fd:b8:4e:37:5a:e9:55:55:8f:
9e:23:9d:48:dc:dc:77:c2:97:6f:f7:96:04:30:1d:a1:46:fe:
12:52:9b:8e:2f:2a:1c:ce:aa:09:28:2d:a1:18:cf:1b:fc:f4:
55:cf:ce:fd:d4:a8:a1:93:55:bf:32:83:91:ef:6f:90:cb:44:
97:b9:9b:3b:e3:06:c2:d4:cf:78:1d:fb:52:79:f6:bc:38:12:
8c:7d:0c:c3:55:16:dd:4c:6d:16:61:a2:ff:87:c1:2a:b5:8a:
15:7a:99:13:f2:cd:c3:20:ff:4e:b4:f9:b8:2d:51:f0:51:46:
f1:49:27:25:5d:ac:30:4d:72:c4:a3:bd:92:9e:32:d2:3b:2c:
57:f8:65:71:bf:59:11:ba:49:4b:64:ed:76:ed:21:d7:42:c1:
f4:ee:91:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:15:15 2026 by rpki-client