Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/PjAqc0N-xwCfMN8aBaV5UxHp9aI.roa
File: PjAqc0N-xwCfMN8aBaV5UxHp9aI.roa (raw, json)
Hash identifier: BfhsMji8otqAZ19G41mrVjNuQV3SSTA0X8EIuU43jYQ=
Subject key identifier: 3E:30:2A:73:43:7E:C7:00:9F:30:DF:1A:05:A5:79:53:11:E9:F5:A2
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019EB5EE942A53A74B294E276EC1857B1C4C
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/PjAqc0N-xwCfMN8aBaV5UxHp9aI.roa
Signing time: Thu 11 Jun 2026 09:06:12 +0000
ROA not before: Thu 11 Jun 2026 09:06:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 52468
IP address blocks: 31.15.0.0/24 maxlen: 24
31.15.2.0/24 maxlen: 24
31.15.3.0/24 maxlen: 24
31.15.5.0/24 maxlen: 24
31.15.7.0/24 maxlen: 24
45.10.107.0/24 maxlen: 24
45.130.160.0/24 maxlen: 24
45.130.161.0/24 maxlen: 24
45.150.85.0/24 maxlen: 24
45.150.86.0/24 maxlen: 24
45.150.87.0/24 maxlen: 24
46.29.28.0/24 maxlen: 24
94.125.137.0/24 maxlen: 24
194.32.112.0/24 maxlen: 24
201.77.48.0/24 maxlen: 24
201.77.53.0/24 maxlen: 24
217.76.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:ee:94:2a:53:a7:4b:29:4e:27:6e:c1:85:7b:1c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 11 09:06:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3e302a73437ec7009f30df1a05a5795311e9f5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6d:ac:d0:d6:9e:32:13:85:ab:bc:c6:ec:f4:
7b:c0:df:12:36:d9:83:bc:4a:68:28:ef:fd:0d:9d:
05:41:59:ea:92:d3:d7:33:be:2a:c4:fb:18:05:ba:
fa:c2:a6:c5:bf:ce:e5:44:cb:f7:a7:10:11:5e:14:
c6:ea:82:62:35:46:e8:6c:93:34:00:55:dc:a0:94:
b2:74:03:a4:90:47:2b:91:40:46:0f:7e:0d:53:0e:
4c:7e:e5:f3:aa:20:22:b1:b2:77:e2:d1:93:c5:4c:
25:fc:10:3a:d5:1b:ad:9a:29:d0:e7:40:a0:2e:23:
55:32:67:c7:cd:37:3d:a9:20:86:1f:b9:86:f2:db:
3b:5e:0f:6d:c6:18:d2:7b:d7:2b:fa:28:93:3c:1d:
5f:80:52:3e:0d:9e:50:c2:25:da:af:c5:02:f0:4b:
85:b7:24:e6:fc:dc:9d:f7:f5:0c:62:cd:9f:a2:c5:
61:d8:45:01:53:0d:72:30:f9:b1:34:63:81:66:e8:
89:96:3a:b7:30:21:2c:8f:95:6a:be:5c:0e:a0:48:
04:d8:3a:90:a4:f5:44:a6:ad:42:26:39:11:d0:6b:
ea:15:bb:f6:ed:66:56:c1:90:e6:ee:2d:58:ab:52:
df:74:5c:c1:75:2c:e7:dd:74:ba:0e:b1:01:57:00:
2f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:30:2A:73:43:7E:C7:00:9F:30:DF:1A:05:A5:79:53:11:E9:F5:A2
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/PjAqc0N-xwCfMN8aBaV5UxHp9aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.0.0/24
31.15.2.0/23
31.15.5.0/24
31.15.7.0/24
45.10.107.0/24
45.130.160.0/23
45.150.85.0-45.150.87.255
46.29.28.0/24
94.125.137.0/24
194.32.112.0/24
201.77.48.0/24
201.77.53.0/24
217.76.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:ed:18:d8:e5:c5:fa:5b:ae:99:b7:30:38:41:1a:1b:e1:da:
da:79:0f:3d:e3:44:10:e1:30:17:a6:6d:6d:8a:61:5d:e2:69:
85:4f:44:66:b3:0e:a1:42:f0:7c:cb:41:ab:0c:22:87:97:29:
ba:05:be:19:e3:14:be:3a:2f:7e:fd:f8:51:2b:a3:5b:65:c0:
08:ba:c8:d6:ee:da:72:a0:16:f4:f3:e5:2e:3d:0c:9f:04:6d:
e6:6e:40:16:2d:fa:aa:12:e2:b1:66:32:f9:77:c5:30:f8:43:
fb:1a:96:a5:f6:7d:04:b6:d9:5c:84:22:2a:68:73:6c:49:f4:
79:09:03:18:36:1c:7b:de:b9:28:fc:bf:22:1b:46:b2:3e:4d:
0c:2d:63:a9:5b:2c:e3:ee:88:c6:cf:17:a3:ef:db:0c:8c:8c:
78:43:01:d0:dc:35:99:91:91:ed:49:98:7e:97:3b:8a:c5:d1:
cf:45:22:e0:c4:79:1d:6f:9d:8c:ec:54:f5:ad:fc:07:ab:35:
1b:51:30:a6:19:89:31:db:0a:23:08:cc:b8:bd:c1:f3:dc:94:
eb:57:3a:f1:53:f2:05:c3:be:1d:c9:fd:d3:2a:d3:7e:b9:3f:
1f:7a:d3:bc:bd:24:98:5f:f2:2c:7c:82:75:52:9a:e5:8d:d9:
58:07:79:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:28:13 2026 by rpki-client