Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SNiqV4m0JLr9gOClqTaN8p-SPvg.roa
File: SNiqV4m0JLr9gOClqTaN8p-SPvg.roa (raw, json)
Hash identifier: gDuVNHKoUdaETXob6fk13BIu541EFMwfvFgI2hQsS3A=
Subject key identifier: 48:D8:AA:57:89:B4:24:BA:FD:80:E0:A5:A9:36:8D:F2:9F:92:3E:F8
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019D664711066425E2A4AC15CC19DB98B474
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SNiqV4m0JLr9gOClqTaN8p-SPvg.roa
Signing time: Tue 07 Apr 2026 04:50:26 +0000
ROA not before: Tue 07 Apr 2026 04:50:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 52468
IP address blocks: 31.15.0.0/24 maxlen: 24
31.15.2.0/24 maxlen: 24
31.15.5.0/24 maxlen: 24
31.15.7.0/24 maxlen: 24
45.10.107.0/24 maxlen: 24
45.130.160.0/24 maxlen: 24
45.130.161.0/24 maxlen: 24
45.150.85.0/24 maxlen: 24
45.150.86.0/24 maxlen: 24
45.150.87.0/24 maxlen: 24
46.29.28.0/24 maxlen: 24
94.125.137.0/24 maxlen: 24
194.32.112.0/24 maxlen: 24
201.77.48.0/24 maxlen: 24
201.77.53.0/24 maxlen: 24
217.76.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:66:47:11:06:64:25:e2:a4:ac:15:cc:19:db:98:b4:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Apr 7 04:50:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=48d8aa5789b424bafd80e0a5a9368df29f923ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5b:24:35:06:d4:9c:f8:de:a2:33:6e:15:9f:
dd:76:8a:58:58:11:07:e0:f2:ca:90:12:1e:c9:cc:
b2:68:08:c3:c8:17:23:61:f5:62:4b:4c:ee:fa:8b:
da:03:1b:42:9c:78:3d:c0:30:4a:66:28:31:19:b0:
6c:eb:89:c9:d4:4e:cc:4e:71:66:6f:6f:2b:53:f5:
72:89:6b:a2:ce:70:22:9d:60:2d:e9:12:3a:36:18:
09:7f:56:97:44:02:28:30:d9:c1:f8:b0:bb:6c:bf:
90:fa:55:38:37:6f:82:85:bd:ee:b0:da:2e:19:bc:
4a:bc:65:0c:33:25:b6:eb:a0:49:6c:46:c3:04:e2:
d1:bb:40:a3:5b:79:8c:2c:a1:32:7f:74:92:73:ec:
64:7f:11:ce:cf:d5:ed:c9:a9:29:2f:53:0d:af:1b:
9c:86:3b:6c:07:1e:4e:f9:5d:85:a2:59:1f:08:fe:
f6:b6:2e:e5:1f:e6:df:a0:fb:3a:29:6c:f1:4d:2b:
75:d3:f8:09:31:47:47:3b:9b:50:99:2d:8d:67:f7:
6c:d6:ad:05:b7:5d:e6:28:b5:eb:dd:cf:5b:65:a8:
ae:a2:d8:e7:03:27:40:ab:4e:73:00:ce:9d:66:03:
5d:f2:cd:58:07:d4:60:05:e5:2b:79:79:02:29:d7:
03:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D8:AA:57:89:B4:24:BA:FD:80:E0:A5:A9:36:8D:F2:9F:92:3E:F8
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SNiqV4m0JLr9gOClqTaN8p-SPvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.0.0/24
31.15.2.0/24
31.15.5.0/24
31.15.7.0/24
45.10.107.0/24
45.130.160.0/23
45.150.85.0-45.150.87.255
46.29.28.0/24
94.125.137.0/24
194.32.112.0/24
201.77.48.0/24
201.77.53.0/24
217.76.240.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:0a:57:ef:6c:72:80:f1:b5:fd:60:ea:95:5c:8e:f9:e9:ae:
0a:63:f3:9e:26:b2:37:16:e7:36:44:9a:0c:d0:66:67:85:0f:
9c:24:44:b4:81:0a:0c:d8:a9:63:b1:c0:b0:70:de:57:a7:84:
13:80:aa:11:95:b3:78:c0:08:f7:b6:d5:b5:7c:ba:74:6e:61:
5c:96:e3:36:58:56:d7:36:61:31:47:69:10:26:40:d8:9a:81:
bb:89:69:9a:be:84:49:29:96:60:71:b1:a0:cb:ed:00:b0:25:
fc:f2:3b:68:9b:00:27:6b:de:6a:fc:75:04:50:2b:91:e6:3f:
20:7c:72:a0:ec:85:bc:b5:3d:bb:04:36:67:32:1d:05:97:33:
1f:b2:26:71:15:37:82:e8:7b:63:ab:7b:2f:2f:ee:80:4f:d8:
00:ab:eb:6e:94:34:d7:4a:a7:22:35:37:37:bc:e6:4e:2f:ad:
4c:60:eb:04:be:59:8a:70:cb:f8:70:ea:70:78:0b:0c:81:82:
c6:f4:f0:73:66:0b:01:05:79:1e:1c:0a:9d:d0:f6:14:c5:a8:
8a:37:85:9d:c8:8f:b5:b6:ae:3c:5e:18:f8:cf:29:ca:97:7c:
6f:a2:bd:b6:0f:e2:aa:87:dc:31:55:74:d2:14:ea:38:06:65:
4b:ca:1e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:51:32 2026 by rpki-client