Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5ehTC2JCfs2MQwmPtVa9QU8zu3I.roa
File: 5ehTC2JCfs2MQwmPtVa9QU8zu3I.roa (raw, json)
Hash identifier: OOIm1NGAg78CrgVbVQY8rZpUYCo0Z8If87gxxhJsBns=
Subject key identifier: E5:E8:53:0B:62:42:7E:CD:8C:43:09:8F:B5:56:BD:41:4F:33:BB:72
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 019D774DCB46957A550CF34531E746C5BDFB
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5ehTC2JCfs2MQwmPtVa9QU8zu3I.roa
Signing time: Fri 10 Apr 2026 12:11:20 +0000
ROA not before: Fri 10 Apr 2026 12:11:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 57043
IP address blocks: 193.104.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:77:4d:cb:46:95:7a:55:0c:f3:45:31:e7:46:c5:bd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Apr 10 12:11:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e5e8530b62427ecd8c43098fb556bd414f33bb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:c0:66:b7:4c:f9:b8:e9:19:78:6d:f2:3c:
48:8a:7e:db:a8:16:53:ad:d6:85:4c:3d:ab:86:ea:
e9:99:5f:65:82:1b:f4:35:98:96:59:3e:ae:db:41:
5f:b2:92:1e:65:c0:40:a8:53:02:06:49:0e:56:07:
f9:72:81:59:e1:d6:ae:f5:7e:91:0e:71:88:4d:de:
d0:8e:10:8c:08:68:d8:f9:d8:7a:6a:f8:b8:15:b1:
e5:80:6b:6b:5f:45:dc:9a:bb:e3:8b:45:cf:d9:db:
1b:0a:a4:3e:96:4e:a2:00:3c:1c:cd:f5:4f:61:4b:
ba:4d:0c:29:67:ac:9a:bf:a0:0f:81:ca:d2:31:17:
c4:72:a6:4d:dc:74:ee:15:b4:ab:d9:9a:8b:6c:47:
25:44:1c:06:2f:e5:b8:79:ca:e6:1a:4c:ae:7b:5f:
7c:a1:f2:a0:e6:90:19:18:cf:49:9f:0a:47:1d:7e:
2e:73:06:f3:f1:67:61:4c:b1:ce:02:bd:7f:e5:e4:
b1:31:ce:e9:ef:a1:e3:61:5c:bd:cc:55:fd:3c:bb:
46:80:5f:4e:29:3c:89:d9:63:1b:79:51:b0:1f:79:
1e:e9:68:f5:be:e2:04:95:fa:a3:8e:3f:a9:fa:8b:
01:5c:34:d5:4f:b2:20:cd:32:e1:df:42:88:29:a7:
54:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E8:53:0B:62:42:7E:CD:8C:43:09:8F:B5:56:BD:41:4F:33:BB:72
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/5ehTC2JCfs2MQwmPtVa9QU8zu3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:11:98:91:6a:72:2a:91:a0:09:12:12:1f:8d:a0:13:fa:ab:
5e:c2:04:03:d9:7c:86:d0:6b:2e:c1:93:03:a3:55:dc:de:80:
d1:91:d9:ad:17:42:5c:bd:18:08:b4:4e:39:91:04:5e:9e:82:
2d:e7:4a:10:db:c7:20:85:37:d4:9d:32:de:14:40:db:7b:d8:
0b:3d:6a:72:aa:e7:0f:47:b5:62:13:cc:e7:1f:42:20:d6:9b:
65:3c:03:5b:6a:03:b4:91:57:97:ad:92:c4:17:78:84:99:e5:
0f:e0:00:80:46:b2:77:9a:0a:d9:19:10:f3:6d:e9:19:26:6b:
16:74:1a:8b:1c:56:72:8b:f5:dc:ab:58:06:bc:d4:d9:cd:28:
72:32:45:ce:52:19:18:2f:77:dc:f1:38:df:87:c4:14:89:49:
4a:ab:2d:77:80:ab:fc:2f:22:7e:c1:23:21:a4:ed:57:36:e2:
95:49:8e:d0:7f:bc:c7:3f:c9:8e:6c:84:a9:4b:06:f7:7f:4e:
cc:a9:9b:0a:5b:cc:d0:74:ea:ba:d1:50:b5:c2:bc:8e:45:76:
84:c1:da:13:5c:2e:56:5f:2e:73:88:d7:42:6d:51:58:b3:75:
ba:ac:2d:be:f6:bf:76:c8:c1:3e:f1:b1:24:7c:97:30:63:9d:
38:9a:ce:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZ13TctGlXpVDPNFMedGxb37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy
NjhmNTQwHhcNMjYwNDEwMTIxMTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWU4NTMwYjYyNDI3ZWNkOGM0MzA5OGZiNTU2YmQ0MTRmMzNiYjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7bAZrdM+bjpGXht8jxIin7bqBZT
rdaFTD2rhurpmV9lghv0NZiWWT6u20FfspIeZcBAqFMCBkkOVgf5coFZ4dau9X6R
DnGITd7QjhCMCGjY+dh6avi4FbHlgGtrX0Xcmrvji0XP2dsbCqQ+lk6iADwczfVP
YUu6TQwpZ6yav6APgcrSMRfEcqZN3HTuFbSr2ZqLbEclRBwGL+W4ecrmGkyue198
ofKg5pAZGM9JnwpHHX4ucwbz8WdhTLHOAr1/5eSxMc7p76HjYVy9zFX9PLtGgF9O
KTyJ2WMbeVGwH3ke6Wj1vuIElfqjjj+p+osBXDTVT7IgzTLh30KIKadU5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOXoUwtiQn7NjEMJj7VWvUFPM7tyMB8GA1UdIwQY
MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt
N2FhN2ZjMzU5NjU1LzEvNWVoVEMySkNmczJNUXdtUHRWYTlRVTh6dTNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1
LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWghMA0G
CSqGSIb3DQEBCwUAA4IBAQCPEZiRanIqkaAJEhIfjaAT+qtewgQD2XyG0GsuwZMD
o1Xc3oDRkdmtF0JcvRgItE45kQRenoIt50oQ28cghTfUnTLeFEDbe9gLPWpyqucP
R7ViE8znH0Ig1ptlPANbagO0kVeXrZLEF3iEmeUP4ACARrJ3mgrZGRDzbekZJmsW
dBqLHFZyi/Xcq1gGvNTZzShyMkXOUhkYL3fc8Tjfh8QUiUlKqy13gKv8LyJ+wSMh
pO1XNuKVSY7Qf7zHP8mObISpSwb3f07MqZsKW8zQdOq60VC1wryORXaEwdoTXC5W
Xy5ziNdCbVFYs3W6rC2+9r92yME+8bEkfJcwY504ms4J
-----END CERTIFICATE-----
Generated at Fri Apr 17 04:34:33 2026 by rpki-client