Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/yWwGKjefAclo3yc0sn6YthWCPlg.roa
File: yWwGKjefAclo3yc0sn6YthWCPlg.roa (raw, json)
Hash identifier: 75IBzN4t6t4BEhoItsLTHiCOrpgakDVyeCYTZGxL5ng=
Subject key identifier: C9:6C:06:2A:37:9F:01:C9:68:DF:27:34:B2:7E:98:B6:15:82:3E:58
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 019D9675E1DE51555C4F858AB2963B0438B7
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/yWwGKjefAclo3yc0sn6YthWCPlg.roa
Signing time: Thu 16 Apr 2026 13:23:21 +0000
ROA not before: Thu 16 Apr 2026 13:23:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 30058
IP address blocks: 62.105.210.0/23 maxlen: 23
62.105.212.0/23 maxlen: 23
62.192.98.0/23 maxlen: 23
62.192.104.0/23 maxlen: 23
62.192.116.0/23 maxlen: 23
62.192.118.0/23 maxlen: 23
213.169.208.0/22 maxlen: 22
213.169.212.0/22 maxlen: 22
213.169.216.0/23 maxlen: 23
213.169.224.0/23 maxlen: 23
213.169.228.0/23 maxlen: 23
213.169.230.0/23 maxlen: 23
213.169.246.0/23 maxlen: 23
213.169.250.0/23 maxlen: 23
213.169.252.0/23 maxlen: 23
217.117.160.0/24 maxlen: 24
217.117.164.0/22 maxlen: 22
217.117.168.0/22 maxlen: 22
217.117.172.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:96:75:e1:de:51:55:5c:4f:85:8a:b2:96:3b:04:38:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Apr 16 13:23:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c96c062a379f01c968df2734b27e98b615823e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7e:c3:50:e2:27:b9:75:c0:22:64:c4:ee:a1:
6b:45:b8:f9:07:2b:0e:f3:ee:34:1c:25:e4:6c:2a:
8b:d5:21:43:3c:58:18:9b:e4:b8:39:32:13:79:f8:
3e:fc:57:db:32:4d:f5:7c:8d:7b:7c:6f:10:84:c8:
80:7e:ab:01:a7:f5:75:bd:45:bf:e0:0d:b6:97:36:
fb:7f:52:39:62:33:37:03:b3:45:96:8e:ef:c2:c1:
51:a2:90:5c:62:d8:29:3a:29:b4:aa:d2:12:a4:f1:
bc:bd:76:22:03:a5:a3:4f:16:ed:e2:89:18:99:bb:
b9:1d:d4:7e:60:f4:1e:dd:ad:92:c6:ea:a4:78:a2:
a9:c1:a1:cb:6e:a8:df:75:64:ac:ab:33:dd:0c:91:
cc:ca:cd:f6:b8:20:44:15:5e:4d:6f:cc:ce:fd:06:
c6:ea:3e:a1:c4:7c:af:f5:df:5f:61:4d:88:8b:5e:
0c:6f:3b:c9:c2:2f:06:01:f3:4f:a3:4d:74:5f:f4:
bd:0d:49:31:7d:9c:ca:d3:39:4e:06:96:2f:fe:86:
7f:2f:89:8f:f2:fa:64:b4:96:b8:0c:73:7e:b1:34:
f0:a7:02:aa:aa:ba:2c:6e:bd:70:ae:9a:c5:03:a6:
f4:94:e0:3a:40:3a:68:68:bc:23:62:45:61:79:de:
7d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6C:06:2A:37:9F:01:C9:68:DF:27:34:B2:7E:98:B6:15:82:3E:58
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/yWwGKjefAclo3yc0sn6YthWCPlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.105.210.0-62.105.213.255
62.192.98.0/23
62.192.104.0/23
62.192.116.0/22
213.169.208.0-213.169.217.255
213.169.224.0/23
213.169.228.0/22
213.169.246.0/23
213.169.250.0-213.169.253.255
217.117.160.0/24
217.117.164.0-217.117.175.255
Signature Algorithm: sha256WithRSAEncryption
52:08:66:bc:8c:67:a7:fb:ba:2d:9b:28:8c:94:04:e9:e0:0c:
e7:fb:0b:fb:83:a0:26:f1:9c:a5:04:61:89:e8:26:79:30:90:
0a:6b:4d:8e:bd:0b:df:8b:3e:94:2f:26:84:7c:30:e7:af:d0:
2e:af:0e:28:1c:2f:ce:af:1f:7a:6e:0d:97:f5:fd:cf:41:61:
fe:1c:8f:0f:47:44:9b:4c:93:93:5d:58:55:7e:c2:82:6b:56:
0f:81:ad:ee:ec:2d:82:48:1b:a5:8e:6d:e5:dc:9f:ea:07:76:
1a:28:20:0b:ea:33:4e:5c:f0:e2:3a:0e:3a:59:8d:24:02:4a:
8f:3d:a9:87:5b:76:3c:99:77:30:ef:bf:59:f0:5a:85:41:95:
f4:ec:a0:00:d1:c1:87:90:eb:19:f6:3d:22:16:1d:72:0f:5b:
65:d3:02:45:d2:35:47:e2:6d:54:62:84:38:af:7c:1d:1d:25:
00:d1:30:e7:97:11:75:f7:06:dd:f2:bb:e2:bd:b1:fe:dc:a1:
0d:5e:c6:bb:50:7c:1f:40:7b:3d:47:5d:6d:78:32:1d:b1:b7:
0c:e1:b1:7b:03:0e:e4:a9:f1:1e:01:42:01:90:28:2a:35:c8:
40:d5:60:b6:2c:30:d3:18:eb:be:b5:65:d8:76:8b:5d:6e:a2:
20:66:24:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:38:58 2026 by rpki-client