Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/uyc7cEaIaFZ6Wo7I4FQYXkhPq8o.roa
File: uyc7cEaIaFZ6Wo7I4FQYXkhPq8o.roa (raw, json)
Hash identifier: 5v9xHENhT3YHIH/MViJc/eB0Q9ZL8gBRplwjr1xeJHo=
Subject key identifier: BB:27:3B:70:46:88:68:56:7A:5A:8E:C8:E0:54:18:5E:48:4F:AB:CA
Certificate issuer: /CN=7e45a9a0353a33c6a4f93608f9d25f27c85948b7
Certificate serial: 019D96A666402BCDBD822AE909CF67019E6D
Authority key identifier: 7E:45:A9:A0:35:3A:33:C6:A4:F9:36:08:F9:D2:5F:27:C8:59:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/uyc7cEaIaFZ6Wo7I4FQYXkhPq8o.roa
Signing time: Thu 16 Apr 2026 14:16:20 +0000
ROA not before: Thu 16 Apr 2026 14:16:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 57099
IP address blocks: 5.133.172.0/22 maxlen: 24
46.231.8.0/21 maxlen: 24
85.95.32.0/19 maxlen: 24
91.214.228.0/22 maxlen: 24
91.229.222.0/23 maxlen: 24
146.255.104.0/21 maxlen: 24
151.249.64.0/20 maxlen: 24
164.138.80.0/21 maxlen: 24
185.16.224.0/22 maxlen: 24
185.44.248.0/22 maxlen: 24
185.47.216.0/22 maxlen: 24
185.56.40.0/22 maxlen: 24
185.113.0.0/22 maxlen: 24
185.168.144.0/22 maxlen: 24
209.35.128.0/20 maxlen: 24
2a0d:ea00::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:96:a6:66:40:2b:cd:bd:82:2a:e9:09:cf:67:01:9e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e45a9a0353a33c6a4f93608f9d25f27c85948b7
Validity
Not Before: Apr 16 14:16:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bb273b70468868567a5a8ec8e054185e484fabca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8a:0c:54:d7:73:83:43:63:3c:5b:fb:0f:b8:
ec:d8:f9:82:be:74:65:15:02:08:7d:5c:e3:5a:8b:
e9:8f:c7:cd:28:b3:0e:41:6b:0d:a7:bd:ab:74:5d:
76:af:28:2f:a8:39:02:b9:97:2a:6f:a2:7f:e5:5d:
b9:a2:51:24:62:97:e2:fd:c2:33:42:2c:07:cd:6d:
91:8f:e5:65:53:d0:35:e4:ba:0d:61:1d:2b:cd:89:
90:d1:3b:cb:98:1a:d4:6e:ab:cf:fb:8d:21:6c:73:
6f:9a:e7:98:53:22:45:51:be:37:ad:c3:d5:da:9e:
8c:f4:0d:b7:9e:aa:6c:87:82:fd:ba:57:d8:6b:40:
27:57:d7:31:80:c7:57:3d:b0:c6:cc:10:b4:12:45:
2d:86:3c:21:98:6a:96:56:98:cd:e9:1d:87:96:53:
42:ee:62:7a:56:21:41:af:e7:61:f5:1e:2d:34:be:
22:79:81:77:8b:5f:db:27:66:86:26:63:b8:c1:32:
67:08:b6:d3:c4:bf:a9:1b:e5:d3:8b:bd:dc:7a:5c:
4a:50:4e:d6:91:c0:95:71:c8:1e:3d:da:99:b2:dd:
72:4d:e7:05:f5:11:d3:5a:80:55:04:83:48:7d:37:
0e:b2:89:cb:89:88:21:91:93:be:44:c7:50:e3:23:
ca:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:27:3B:70:46:88:68:56:7A:5A:8E:C8:E0:54:18:5E:48:4F:AB:CA
X509v3 Authority Key Identifier:
keyid:7E:45:A9:A0:35:3A:33:C6:A4:F9:36:08:F9:D2:5F:27:C8:59:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/uyc7cEaIaFZ6Wo7I4FQYXkhPq8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/dd7beb-6f78-419b-957d-37a60c335a5d/1/fkWpoDU6M8ak-TYI-dJfJ8hZSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.172.0/22
46.231.8.0/21
85.95.32.0/19
91.214.228.0/22
91.229.222.0/23
146.255.104.0/21
151.249.64.0/20
164.138.80.0/21
185.16.224.0/22
185.44.248.0/22
185.47.216.0/22
185.56.40.0/22
185.113.0.0/22
185.168.144.0/22
209.35.128.0/20
IPv6:
2a0d:ea00::/29
Signature Algorithm: sha256WithRSAEncryption
68:71:c7:d2:8f:f2:52:b0:cc:17:10:70:9b:ec:43:4b:1b:f4:
71:d5:17:87:57:97:0c:38:4c:9b:42:e7:f2:a0:cf:0a:74:46:
74:90:88:8a:d0:b0:af:34:a4:1c:66:7c:bf:56:c0:26:f5:32:
49:77:1b:43:73:f5:3e:e8:9e:8b:a5:ee:50:1a:9b:6a:96:00:
92:35:ab:a8:c2:30:de:a7:5e:52:86:51:37:5f:a3:74:2a:28:
a7:e2:5e:c6:4f:52:e1:9c:42:99:04:39:a7:8b:0e:2d:20:6a:
67:f7:88:55:10:e7:91:fc:67:cf:21:fd:0e:7b:9a:4c:4f:ad:
52:bf:da:4c:cc:9b:40:6b:5d:3c:34:2c:9c:60:75:b8:a7:3d:
d8:fd:b7:fe:b0:9b:7b:d6:a2:fd:f8:a2:1f:5b:d3:cb:17:e1:
03:50:2e:c5:c3:e1:6f:d6:b1:7d:d1:22:1b:71:c3:38:eb:0c:
5d:4b:e0:d3:55:13:c5:66:2f:16:43:37:1f:92:48:22:74:fa:
ed:3f:60:6e:22:ab:00:fd:d3:4b:ad:9e:15:8d:12:b4:4a:a6:
db:6a:92:41:e5:58:37:e9:ca:50:3f:c0:90:55:51:d1:6c:57:
53:57:c9:4b:f9:a4:09:02:01:70:af:87:93:0b:c2:58:ba:5e:
86:1e:ce:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:29:44 2026 by rpki-client