Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/HViU2CXDqAwYiLEOmVT0HEWWNl8.roa
File: HViU2CXDqAwYiLEOmVT0HEWWNl8.roa (raw, json)
Hash identifier: xrKcPKMyy5kb4XlM4DV6lK8CCEfrwg3shA95PHYdoCw=
Subject key identifier: 1D:58:94:D8:25:C3:A8:0C:18:88:B1:0E:99:54:F4:1C:45:96:36:5F
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 019D6D80FAEF06108F13CD4AC1C687CA11C8
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/HViU2CXDqAwYiLEOmVT0HEWWNl8.roa
Signing time: Wed 08 Apr 2026 14:31:02 +0000
ROA not before: Wed 08 Apr 2026 14:31:02 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42473
IP address blocks: 2.57.104.0/24 maxlen: 24
2.57.105.0/24 maxlen: 24
2.57.106.0/24 maxlen: 24
2.57.107.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.235.7.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.84.252.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
144.208.254.0/24 maxlen: 24
144.208.255.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:5c::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:6c::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1011::/48 maxlen: 48
2a00:11c0:1014::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6d:80:fa:ef:06:10:8f:13:cd:4a:c1:c6:87:ca:11:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Apr 8 14:31:02 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1d5894d825c3a80c1888b10e9954f41c4596365f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:41:c3:6d:05:ae:e1:6c:94:e9:c6:c9:80:ae:
93:d1:ff:5a:f8:c5:5a:2c:ba:56:4c:2c:ab:3a:a5:
ca:02:a1:42:ed:08:0a:18:90:08:f0:40:bf:72:9b:
6d:d2:74:71:e8:c5:48:04:96:a7:04:4b:90:86:86:
c6:60:91:2a:e2:b3:84:4e:32:02:61:ee:c2:83:33:
35:de:3e:a3:c9:86:60:da:a5:ff:00:00:c0:6d:aa:
c8:b1:b0:94:ce:bb:6a:cf:c8:19:23:48:4e:6b:e3:
a5:3d:c6:48:c2:df:42:61:58:9f:23:ba:17:e1:12:
98:1e:ee:a3:92:d9:4b:82:a0:c7:34:9d:8c:94:aa:
6a:ee:ae:46:77:44:d1:5b:e5:7a:a5:24:06:30:7a:
ff:22:68:8e:74:4b:81:4a:f5:08:fe:2c:e7:44:a4:
57:29:bf:1b:5f:3e:5c:49:06:49:96:67:84:49:b2:
7f:ee:98:a1:89:00:ba:c5:d2:4e:c8:aa:30:61:f8:
f6:01:05:0f:a8:d2:3c:65:55:75:6f:cc:09:51:4c:
16:e4:54:de:1c:77:c6:1d:fa:a5:e9:6e:a4:5b:a3:
c1:33:1c:8c:c8:ec:6f:f6:81:24:2e:6a:c1:44:1c:
3d:81:31:8d:ef:2d:84:ca:03:a6:c1:9a:2c:7d:85:
f0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:58:94:D8:25:C3:A8:0C:18:88:B1:0E:99:54:F4:1C:45:96:36:5F
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/HViU2CXDqAwYiLEOmVT0HEWWNl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.104.0/22
37.235.3.0-37.235.5.255
37.235.7.0/24
37.252.224.0/19
45.84.252.0/24
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
99:f6:d3:fd:e7:d6:da:08:19:84:db:ee:83:11:67:6a:aa:3e:
7c:71:c6:01:a4:d8:47:97:c6:bb:78:47:02:d7:2d:f1:0c:39:
f7:03:7a:8e:94:d8:a3:43:61:a3:dd:f3:52:ad:48:f1:55:15:
6c:5d:07:c1:49:82:62:ca:d7:a3:e7:5d:fc:f1:d8:77:c3:9f:
dc:cd:f0:79:c5:55:8d:09:d8:a4:df:74:d8:08:9b:0c:60:0d:
31:7f:e2:59:b4:53:04:41:fa:70:5e:7e:91:0b:fb:7b:7b:22:
2f:dc:31:6f:4d:b4:30:64:2e:f3:ca:65:4f:61:05:f9:41:4d:
53:7f:24:36:c9:65:cd:77:16:80:89:d0:04:d0:00:d7:aa:80:
be:a8:c1:97:3b:54:d6:d3:9e:02:d0:8e:a3:f8:d2:10:72:f6:
35:68:7b:66:87:08:75:86:36:c3:e1:11:de:86:e0:db:aa:4e:
af:bb:85:0d:22:c7:2e:67:ff:55:b7:8f:bd:91:dc:d9:32:93:
07:9c:48:82:4d:e4:b8:3b:6b:96:c8:55:4d:c9:0c:1e:7e:8f:
dc:bd:aa:e1:c8:85:25:a2:68:ee:c8:eb:04:37:b2:dd:a2:4c:
2f:43:18:bd:c1:32:c9:b1:56:71:d7:96:c5:a8:a8:27:d9:33:
bf:c3:77:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:26:55 2026 by rpki-client