Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vSrmDlVPvcbpa4TNpFRUv-deUg4.roa
File: vSrmDlVPvcbpa4TNpFRUv-deUg4.roa (raw, json)
Hash identifier: U/6f8DveHrGmVToTuErk3OHAoU1lj5DpDvJ+urB/cfA=
Subject key identifier: BD:2A:E6:0E:55:4F:BD:C6:E9:6B:84:CD:A4:54:54:BF:E7:5E:52:0E
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 019B7EA66D38A91D4A369A0C5104FD4DF7A6
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vSrmDlVPvcbpa4TNpFRUv-deUg4.roa
Signing time: Fri 02 Jan 2026 12:19:54 +0000
ROA not before: Fri 02 Jan 2026 12:19:54 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 21438
IP address blocks: 5.149.147.0/24 maxlen: 24
5.149.148.0/24 maxlen: 24
86.110.162.0/23 maxlen: 23
86.110.164.0/23 maxlen: 23
86.110.166.0/23 maxlen: 23
86.110.172.0/24 maxlen: 24
178.76.192.0/24 maxlen: 24
178.76.193.0/24 maxlen: 24
178.76.200.0/22 maxlen: 22
178.76.204.0/24 maxlen: 24
178.76.206.0/24 maxlen: 24
178.76.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7e:a6:6d:38:a9:1d:4a:36:9a:0c:51:04:fd:4d:f7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 12:19:54 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bd2ae60e554fbdc6e96b84cda45454bfe75e520e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:12:0d:54:67:3f:24:e3:7d:73:4e:31:d7:c0:
97:f4:53:cf:f4:3c:35:04:2b:bf:a7:11:b4:e1:38:
b6:48:9c:18:18:e5:22:a9:d2:ea:2a:77:d8:5c:57:
bc:ad:49:fb:e2:47:40:50:e8:2f:45:a6:be:04:e3:
7d:2a:64:c2:68:65:ac:82:91:c8:61:92:bd:55:5b:
95:2e:7a:f3:fb:fb:01:46:eb:f4:95:54:7c:cb:5e:
56:d6:21:a7:1f:1a:31:b8:e4:f1:04:65:b0:1f:62:
61:6e:51:a2:03:25:7d:2c:f2:c8:d6:39:69:7d:fb:
d6:d1:ab:00:a5:6a:8a:89:98:80:c1:29:5d:b9:70:
e1:92:af:cd:d7:bb:86:66:f1:e5:a6:25:c0:d6:32:
27:3e:ba:18:52:9e:a2:e6:22:18:04:05:28:fc:e1:
f4:e7:7c:f8:83:7b:96:40:9a:e7:c5:23:9e:ff:f8:
34:21:ed:74:ca:03:45:13:d3:67:e9:26:d7:79:06:
cf:70:69:05:f4:9a:22:88:3a:e5:0a:8e:4a:2c:af:
ed:ea:aa:78:de:6e:06:47:e7:cd:5c:14:a0:08:25:
fd:cf:02:a3:61:59:9d:95:de:57:02:a2:55:a3:b8:
e6:70:18:cf:e8:4a:6b:b1:ed:11:8e:0b:df:d6:d3:
b7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2A:E6:0E:55:4F:BD:C6:E9:6B:84:CD:A4:54:54:BF:E7:5E:52:0E
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/vSrmDlVPvcbpa4TNpFRUv-deUg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.147.0-5.149.148.255
86.110.162.0-86.110.167.255
86.110.172.0/24
178.76.192.0/23
178.76.200.0-178.76.204.255
178.76.206.0/24
178.76.215.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:75:3b:92:6c:a5:dd:6c:d5:b9:34:94:69:11:01:df:4b:bb:
cb:8c:a6:94:eb:86:96:95:3a:91:2c:96:7b:ae:1c:17:56:f3:
d3:1d:69:ef:e8:31:c4:a8:18:0f:e6:c5:14:a2:2c:49:71:5d:
73:8f:b6:9a:9e:64:07:4d:3a:64:53:23:78:8a:f6:b6:7b:b2:
55:62:48:28:67:44:0c:c9:b9:56:e3:39:bb:bd:6f:02:b1:be:
ef:e1:38:eb:82:9f:f0:80:05:2c:b4:44:e0:ca:ea:e8:8b:8f:
37:03:65:8f:52:c3:fb:de:72:25:a1:ad:10:ad:c5:03:c4:0d:
eb:71:b8:d7:8f:f7:9e:dc:ea:99:4b:80:f8:49:cd:dd:ce:58:
90:c5:81:28:ac:0b:38:72:bf:6d:2f:d5:18:dd:7f:52:79:69:
d1:fa:7c:3a:d3:e7:d1:6e:42:97:35:59:35:50:88:5d:c7:73:
55:9e:03:32:45:c1:06:7d:5e:42:a6:98:89:1b:d2:ca:94:1a:
d8:e8:c1:fd:eb:f5:cf:6d:26:5f:71:d8:6e:58:d6:06:8b:7e:
6a:a6:88:12:ee:5d:71:db:71:e3:e8:d6:2c:1d:db:62:e9:bd:
ce:85:54:63:ba:95:ee:5e:74:8c:e9:22:37:1a:53:de:98:90:
55:0a:44:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:03:53 2026 by rpki-client