Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Gir6uV_wkeJzeY-E5PMe6FllQxA.roa
File: Gir6uV_wkeJzeY-E5PMe6FllQxA.roa (raw, json)
Hash identifier: 72S1e0v4X4uWr28wD/P8DFrCHYV6KDKFfKyxBJmSkhE=
Subject key identifier: 1A:2A:FA:B9:5F:F0:91:E2:73:79:8F:84:E4:F3:1E:E8:59:65:43:10
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019D6E6BA151BABBBD226E440BB22B0E87BB
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Gir6uV_wkeJzeY-E5PMe6FllQxA.roa
Signing time: Wed 08 Apr 2026 18:47:20 +0000
ROA not before: Wed 08 Apr 2026 18:47:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62300
IP address blocks: 62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
186.246.32.0/24 maxlen: 24
213.166.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6e:6b:a1:51:ba:bb:bd:22:6e:44:0b:b2:2b:0e:87:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 8 18:47:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1a2afab95ff091e273798f84e4f31ee859654310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:ac:9b:5c:79:29:73:c9:c8:00:7e:30:af:
cd:b6:3e:54:a6:32:36:6d:71:d6:dc:5a:85:b7:ab:
c0:e0:22:30:e4:26:46:78:4f:d0:a2:44:4b:f6:a1:
14:ae:bd:a2:73:c1:c9:0c:cd:59:e6:2a:12:76:9f:
6b:06:c3:24:20:43:44:69:5c:23:ce:f8:36:a1:02:
12:81:5c:eb:25:63:34:28:8f:27:a0:bd:8e:46:3e:
99:ed:e6:be:27:f2:df:b0:15:53:63:b7:05:29:c1:
47:df:a3:8b:c7:13:ac:1b:42:05:1c:55:61:5c:8a:
8b:a6:34:27:6f:2f:04:cf:42:69:10:c0:89:35:9e:
eb:ba:77:f1:87:8e:d5:47:e5:0e:1f:46:1b:c7:02:
fb:33:36:fa:9d:1e:1b:8d:f9:56:fa:f9:d7:ab:e2:
00:32:a4:34:88:6e:84:c9:c6:2b:5e:15:bf:28:bb:
0a:cf:12:45:0f:dd:1d:2a:81:44:90:92:ec:29:80:
e4:5e:c6:b7:ee:3c:8a:92:9e:85:e8:38:46:89:71:
f5:5a:3d:de:5b:53:97:5b:f9:76:3d:42:a9:0d:a2:
9a:be:fb:84:66:56:f8:57:12:39:60:d3:4b:bf:e5:
c8:9d:80:88:9f:e4:35:21:ea:46:25:62:ea:49:87:
16:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:2A:FA:B9:5F:F0:91:E2:73:79:8F:84:E4:F3:1E:E8:59:65:43:10
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Gir6uV_wkeJzeY-E5PMe6FllQxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.32.0/24
178.212.78.0/24
186.246.32.0/24
213.166.93.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ca:49:e8:d1:6c:fe:51:42:ee:a1:f0:09:46:f6:78:0b:c5:
68:66:75:b8:98:26:98:ec:23:1f:1a:9a:ec:53:76:7b:44:b9:
d0:9c:5f:29:7b:d6:cd:21:e7:1f:37:aa:c5:7a:f6:8e:03:b9:
bf:88:bc:b3:ef:1f:b2:d9:2e:78:a8:59:48:bb:74:e2:d6:ca:
12:7e:97:f6:16:cf:cd:4a:6c:62:0d:cc:73:88:36:60:ee:1b:
60:a8:20:e1:cd:92:c1:6c:0a:8f:4e:b1:df:0d:9c:b1:09:6f:
cd:0d:0d:ae:a3:d9:04:de:3f:1b:1e:b7:cf:2f:9b:27:88:dd:
53:b9:5d:d4:ec:b8:18:d5:00:9b:11:6f:bd:e0:f7:e3:c5:3c:
eb:92:ee:4a:70:d6:6e:c2:b3:9b:35:d7:01:66:f9:5d:70:9c:
4f:da:32:35:be:1f:9a:08:d4:ee:54:53:27:00:b0:a9:09:4f:
6d:76:24:14:7e:20:b3:56:d4:cf:09:19:d0:2b:53:1b:4b:74:
02:0e:ce:64:1d:6e:f8:df:23:79:c1:b1:55:c4:3d:c6:1a:14:
2c:4a:8d:55:20:da:c5:86:09:45:59:4b:b5:0d:37:f5:8e:7d:
b1:24:57:10:fe:a1:0d:3f:7b:f2:57:2b:8a:f4:3c:10:16:71:
89:00:dc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:50:36 2026 by rpki-client