Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/taW1tl3L_tncZynos9a6Oerx3cw.roa
File: taW1tl3L_tncZynos9a6Oerx3cw.roa (raw, json)
Hash identifier: LgxG3R1HWzesYW9SKnFWmAzgQCsVD0+Xg2W4MUdQ6iA=
Subject key identifier: B5:A5:B5:B6:5D:CB:FE:D9:DC:67:29:E8:B3:D6:BA:39:EA:F1:DD:CC
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 019ED3F6A2EC7954CF17C048089219244AB1
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/taW1tl3L_tncZynos9a6Oerx3cw.roa
Signing time: Wed 17 Jun 2026 05:03:36 +0000
ROA not before: Wed 17 Jun 2026 05:03:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51964
IP address blocks: 57.7.0.0/16 maxlen: 24
57.21.0.0/16 maxlen: 24
57.35.0.0/16 maxlen: 24
57.66.0.0/15 maxlen: 32
57.68.0.0/15 maxlen: 32
57.70.0.0/16 maxlen: 32
57.72.0.0/15 maxlen: 32
57.74.0.0/16 maxlen: 32
57.76.0.0/14 maxlen: 32
57.77.0.0/16 maxlen: 24
57.82.0.0/15 maxlen: 32
57.86.0.0/16 maxlen: 32
57.90.0.0/16 maxlen: 32
57.92.0.0/16 maxlen: 24
57.96.0.0/15 maxlen: 24
57.98.0.0/16 maxlen: 24
57.100.0.0/16 maxlen: 24
57.194.0.0/15 maxlen: 24
57.197.0.0/16 maxlen: 24
57.199.0.0/16 maxlen: 24
57.200.0.0/16 maxlen: 24
57.202.0.0/15 maxlen: 24
57.205.0.0/16 maxlen: 24
57.207.0.0/16 maxlen: 24
57.208.0.0/12 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:f6:a2:ec:79:54:cf:17:c0:48:08:92:19:24:4a:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jun 17 05:03:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b5a5b5b65dcbfed9dc6729e8b3d6ba39eaf1ddcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:50:34:aa:d7:37:e3:4f:05:bf:50:17:86:97:
9e:90:8e:aa:62:a0:72:fa:e9:45:d0:c0:19:f8:9f:
98:1d:86:f8:dd:54:7b:77:b4:18:c2:d0:61:7b:4e:
aa:e9:43:5a:2d:3a:54:3c:71:f6:55:bd:fa:f7:5f:
f9:ad:c4:3d:38:51:43:a1:00:73:f2:d7:52:f6:80:
e1:59:7b:d6:43:49:08:60:47:26:07:38:76:8d:06:
76:95:cf:18:83:01:92:5a:01:aa:54:15:6d:3d:31:
95:ee:34:e5:35:34:1d:f2:b3:64:54:56:52:c2:08:
db:4c:dc:1a:e4:b2:4f:0b:71:f6:e9:1f:5d:a7:04:
35:68:92:63:ef:25:c7:81:3e:54:eb:53:7f:4b:85:
8c:f3:98:2c:8c:fc:3d:f3:32:9c:79:29:58:65:aa:
b4:81:b4:f3:dd:c5:ae:21:2e:4f:45:e1:4d:13:4e:
de:7c:bf:b4:b6:4a:bc:45:65:61:de:2d:48:a2:31:
eb:39:8c:f5:4b:5d:a3:e6:a0:1b:8e:f6:5e:32:99:
48:38:47:2c:a1:ac:85:2e:2b:6a:2c:81:01:e6:9b:
23:d5:f9:7f:d2:c4:66:b4:59:a8:56:f0:bc:1d:7f:
03:d1:10:cd:84:de:08:72:a9:09:4a:d4:cd:14:ff:
64:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A5:B5:B6:5D:CB:FE:D9:DC:67:29:E8:B3:D6:BA:39:EA:F1:DD:CC
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/taW1tl3L_tncZynos9a6Oerx3cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.7.0.0/16
57.21.0.0/16
57.35.0.0/16
57.66.0.0-57.70.255.255
57.72.0.0-57.74.255.255
57.76.0.0/14
57.82.0.0/15
57.86.0.0/16
57.90.0.0/16
57.92.0.0/16
57.96.0.0-57.98.255.255
57.100.0.0/16
57.194.0.0/15
57.197.0.0/16
57.199.0.0-57.200.255.255
57.202.0.0/15
57.205.0.0/16
57.207.0.0-57.223.255.255
Signature Algorithm: sha256WithRSAEncryption
04:b2:04:ce:50:60:b2:f4:60:5b:5e:0d:cb:d5:e9:98:ee:59:
86:ae:ab:9e:18:cd:fd:79:7d:ff:e5:fd:61:a2:06:d5:fe:41:
fa:1d:d6:3a:7a:58:7d:7b:6c:4d:96:9a:dd:f6:66:42:9b:ee:
17:17:d7:d5:44:97:fb:86:9f:38:28:82:10:90:c0:03:53:5b:
01:28:82:b7:ee:14:c2:4e:f3:67:c6:7d:35:9b:36:28:54:66:
f8:39:e4:33:16:86:0e:e4:c7:1b:ff:da:cb:3c:55:5d:fb:f9:
77:df:d1:1e:5b:60:95:ae:df:c3:f1:32:27:06:b6:e3:94:31:
99:11:9b:21:f6:37:55:4f:e5:67:d7:a3:da:17:41:01:ca:fe:
4a:ec:c1:70:e0:8b:1f:c8:c1:3a:97:69:03:c6:ea:05:dc:df:
ab:bc:9b:a1:41:35:22:5c:15:35:83:9f:95:40:e5:33:2a:fb:
11:4a:1f:7b:4a:4b:e5:de:c9:d9:77:a4:7e:28:2f:18:2c:e4:
12:ff:24:9c:9e:eb:8c:22:24:eb:53:23:14:4b:0e:a7:d8:60:
92:a4:88:56:5d:fd:fe:b6:97:a9:7b:e0:be:b1:fb:bc:2b:ca:
95:9f:67:b5:30:77:b2:4b:03:14:47:41:97:f5:23:bb:4c:d0:
99:42:e8:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:31:27 2026 by rpki-client