Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/1-qZzL_zoIIUhiy2Fq0fn6diCd-0.roa
File: 1-qZzL_zoIIUhiy2Fq0fn6diCd-0.roa (raw, json)
Hash identifier: 0tsg9DELYe9Q2h2cCMoGMIACyXBrV62Oi+K/1BpPZHw=
Subject key identifier: FA:A6:73:2F:FC:E8:20:85:21:8B:2D:85:AB:47:E7:E9:D8:82:77:ED
Certificate issuer: /CN=522399c2789b1a5504f81671cff220c04eaf59f1
Certificate serial: 019E5DE0D7217DBEC2C306E64BF2F4744EA4
Authority key identifier: 52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/1-qZzL_zoIIUhiy2Fq0fn6diCd-0.roa
Signing time: Mon 25 May 2026 06:44:36 +0000
ROA not before: Mon 25 May 2026 06:44:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42781
IP address blocks: 80.184.3.0/24 maxlen: 24
80.184.9.0/24 maxlen: 24
80.184.10.0/24 maxlen: 24
80.184.11.0/24 maxlen: 24
80.184.12.0/23 maxlen: 23
80.184.17.0/24 maxlen: 24
80.184.19.0/24 maxlen: 24
80.184.21.0/24 maxlen: 24
80.184.24.0/22 maxlen: 22
80.184.29.0/24 maxlen: 24
80.184.55.0/24 maxlen: 24
80.184.56.0/24 maxlen: 24
80.184.77.0/24 maxlen: 24
80.184.85.0/24 maxlen: 24
80.184.95.0/24 maxlen: 24
80.184.107.0/24 maxlen: 24
80.184.109.0/24 maxlen: 24
80.184.110.0/24 maxlen: 24
80.184.117.0/24 maxlen: 24
80.184.120.0/22 maxlen: 22
80.184.124.0/24 maxlen: 24
80.184.125.0/24 maxlen: 24
80.184.127.0/24 maxlen: 24
80.184.135.0/24 maxlen: 24
80.184.140.0/23 maxlen: 23
80.184.144.0/22 maxlen: 22
80.184.148.0/22 maxlen: 22
80.184.165.0/24 maxlen: 24
80.184.176.0/23 maxlen: 23
80.184.190.0/24 maxlen: 24
80.184.200.0/24 maxlen: 24
80.184.204.0/22 maxlen: 22
80.184.216.0/22 maxlen: 22
80.184.221.0/24 maxlen: 24
80.184.224.0/22 maxlen: 22
80.184.229.0/24 maxlen: 24
80.184.245.0/24 maxlen: 24
158.94.180.0/23 maxlen: 23
158.94.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5d:e0:d7:21:7d:be:c2:c3:06:e6:4b:f2:f4:74:4e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522399c2789b1a5504f81671cff220c04eaf59f1
Validity
Not Before: May 25 06:44:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=faa6732ffce82085218b2d85ab47e7e9d88277ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b9:21:de:61:b6:6a:7c:61:1e:64:03:5a:af:
5a:fb:08:b7:ab:ac:ea:f2:b9:a4:a3:2f:26:85:1c:
41:9f:25:11:e5:3c:a3:76:db:66:83:17:74:37:03:
68:9f:fe:4b:c3:41:31:42:33:a1:e0:a1:d3:f9:da:
80:86:6e:71:71:bc:af:6a:a5:32:44:0a:35:c8:99:
06:60:d4:67:9c:d2:32:f4:ca:80:2d:18:6d:c4:9a:
8e:66:de:23:15:d4:83:3e:c7:d4:be:01:5a:a8:a4:
d9:3e:91:ab:e7:26:71:c1:3e:84:7d:13:75:3b:5f:
40:ce:ed:9c:8c:65:7f:79:ab:d2:79:3d:d5:72:63:
93:f7:cb:15:55:29:bc:41:ee:87:a9:e6:59:8c:56:
b6:19:cf:3c:6a:21:94:5d:d1:59:5e:df:eb:e9:82:
4a:89:18:49:86:6d:75:51:2b:19:af:0a:70:4f:41:
eb:04:0f:53:37:58:f3:7a:ad:d6:f1:40:c6:de:0c:
3d:b4:b1:9e:83:2a:48:8e:b5:e0:be:31:cd:ff:f8:
ae:81:d8:b6:26:27:2d:eb:6b:1b:9f:e1:ba:cb:1b:
63:d1:04:7c:19:85:e3:b6:54:d6:06:bc:d2:52:0c:
41:8d:60:73:fc:27:72:f1:8f:28:13:65:69:d7:4e:
2d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A6:73:2F:FC:E8:20:85:21:8B:2D:85:AB:47:E7:E9:D8:82:77:ED
X509v3 Authority Key Identifier:
keyid:52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/1-qZzL_zoIIUhiy2Fq0fn6diCd-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.184.3.0/24
80.184.9.0-80.184.13.255
80.184.17.0/24
80.184.19.0/24
80.184.21.0/24
80.184.24.0/22
80.184.29.0/24
80.184.55.0-80.184.56.255
80.184.77.0/24
80.184.85.0/24
80.184.95.0/24
80.184.107.0/24
80.184.109.0-80.184.110.255
80.184.117.0/24
80.184.120.0-80.184.125.255
80.184.127.0/24
80.184.135.0/24
80.184.140.0/23
80.184.144.0/21
80.184.165.0/24
80.184.176.0/23
80.184.190.0/24
80.184.200.0/24
80.184.204.0/22
80.184.216.0/22
80.184.221.0/24
80.184.224.0/22
80.184.229.0/24
80.184.245.0/24
158.94.180.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:3b:fb:9e:f3:0f:93:86:b5:3a:b0:ba:36:ec:b4:31:ad:27:
91:4f:e7:34:a9:b1:13:de:1d:8b:4d:13:3c:a4:2f:59:6c:ea:
84:bc:06:bc:ac:93:bf:47:98:0d:8e:65:6e:da:3d:8c:71:8b:
df:f5:5a:3c:0b:6e:be:a6:fd:cd:44:36:67:49:6b:f3:df:3e:
36:d2:f4:89:a9:4e:b2:8f:dd:8e:23:87:d3:61:75:85:57:47:
89:7c:a4:8b:a1:19:7e:c7:2d:a5:7d:b1:6a:64:91:a0:08:47:
42:f1:58:bb:7c:84:78:7b:1f:cf:82:82:0d:e8:02:0d:47:8e:
c0:95:9f:af:02:3b:67:ab:d5:e6:04:6e:b6:ec:5f:80:67:63:
19:42:02:95:eb:1a:2d:ed:07:29:a0:30:0a:53:9a:65:3d:f5:
cb:0e:b3:2a:46:1e:23:bd:29:aa:32:3a:d0:a2:4e:ca:4b:a3:
3c:97:45:60:f0:0e:7b:c6:31:39:92:9d:17:83:a7:0c:0c:cd:
57:78:ea:5b:62:32:38:30:27:fa:4d:d1:8a:34:2e:be:27:ef:
cb:2b:01:72:17:28:81:af:56:03:3a:a0:95:41:3b:39:d7:77:
c6:7c:e1:97:8f:48:59:bf:69:3a:db:f6:14:82:aa:c3:74:7b:
e5:6c:21:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:05:01 2026 by rpki-client