Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Fep6qr8rRobHKsNR16UZ8IogVaU.roa
File: Fep6qr8rRobHKsNR16UZ8IogVaU.roa (raw, json)
Hash identifier: uZWJyhzdZhmIt386GPPzhnoAhK/Him80kP4WtX/gQ6o=
Subject key identifier: 15:EA:7A:AA:BF:2B:46:86:C7:2A:C3:51:D7:A5:19:F0:8A:20:55:A5
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 019E4FD3BC1967A0E0236FBC295F91A68F38
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Fep6qr8rRobHKsNR16UZ8IogVaU.roa
Signing time: Fri 22 May 2026 13:15:36 +0000
ROA not before: Fri 22 May 2026 13:15:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62240
IP address blocks: 45.86.230.0/24 maxlen: 24
91.231.186.0/24 maxlen: 24
194.213.18.0/24 maxlen: 24
195.54.161.0/24 maxlen: 24
213.232.236.0/24 maxlen: 24
2a10:1fc0:7::/48 maxlen: 48
2a10:1fc0:a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4f:d3:bc:19:67:a0:e0:23:6f:bc:29:5f:91:a6:8f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: May 22 13:15:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=15ea7aaabf2b4686c72ac351d7a519f08a2055a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:15:88:2f:cc:3d:57:b0:a5:72:63:31:03:
ad:9c:72:ab:ba:3b:83:09:74:da:cd:10:64:0e:2b:
84:3b:03:77:ba:a5:89:44:4d:82:c7:09:be:b6:88:
16:b9:54:cb:db:a1:69:e3:7d:10:b7:e0:9b:e3:17:
60:e3:d6:cc:5b:2d:da:eb:5e:39:21:11:dd:98:b5:
87:7d:26:ff:e9:86:78:c9:bf:9e:be:8e:a2:f6:da:
39:50:09:9e:0c:39:a5:61:c0:8b:02:6e:d9:5f:1a:
b9:38:0d:ff:d9:41:ad:ea:b0:67:0b:48:e3:b1:57:
d9:e7:d0:f2:e7:f7:3b:da:17:1d:1e:e3:fe:c6:e5:
72:4a:b8:0d:05:ab:24:90:aa:38:12:ac:74:75:30:
77:d7:ea:d6:54:10:8d:82:3f:73:ab:27:5f:20:6e:
2f:e1:48:54:74:ca:88:39:1c:6b:c8:4b:cb:67:aa:
6a:92:6d:e3:55:e5:33:fe:ca:38:04:9d:86:1c:3d:
19:26:7c:bf:82:02:9b:63:d3:d4:d4:60:b6:93:fe:
d5:32:26:35:53:bf:3e:91:2e:8d:ac:d0:b7:d4:22:
b2:2a:c8:95:e1:bb:a8:f2:15:c3:f5:2f:db:e4:88:
3b:a2:0d:95:85:6d:d6:78:9e:67:7a:1b:86:77:d8:
69:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EA:7A:AA:BF:2B:46:86:C7:2A:C3:51:D7:A5:19:F0:8A:20:55:A5
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Fep6qr8rRobHKsNR16UZ8IogVaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.230.0/24
91.231.186.0/24
194.213.18.0/24
195.54.161.0/24
213.232.236.0/24
IPv6:
2a10:1fc0:7::/48
2a10:1fc0:a::/48
Signature Algorithm: sha256WithRSAEncryption
60:08:5a:80:7d:aa:75:0a:85:50:25:8d:f9:0a:a5:ec:53:83:
8d:e0:d1:46:6d:8f:28:eb:d3:16:56:16:59:b1:8e:75:d0:67:
43:32:d5:cd:57:bc:f9:69:1b:57:eb:b2:da:09:3e:42:d5:b2:
b6:31:c8:bd:68:f0:c9:fb:8b:a9:cc:c2:7f:65:5a:1b:b9:dc:
2b:84:c7:61:0b:46:72:a7:20:c3:30:4a:61:74:c3:a1:85:80:
5f:3a:c7:15:bc:40:82:75:f0:52:56:a2:4b:7f:94:3a:a7:5b:
a4:24:83:50:52:15:ad:b1:45:fb:f4:ff:e2:81:40:d5:c8:fd:
84:1a:fd:8f:3e:de:89:ef:ab:3f:d2:6c:30:e7:32:19:58:c6:
dd:3e:bb:b1:cb:59:b7:6c:aa:55:bc:d1:aa:1d:ce:e8:f3:a0:
12:9a:30:d9:36:c2:07:32:53:e2:ed:73:19:f8:61:25:f6:a6:
42:b0:ad:e8:47:1c:76:8f:bf:c6:97:94:d7:5f:7d:cb:22:ec:
ea:88:f3:71:eb:21:29:da:7b:7d:89:f5:b5:2f:4b:fa:4f:81:
fb:98:42:3c:49:c2:4d:02:a5:4e:44:a1:0d:d8:00:76:2a:13:
cd:61:f5:27:72:54:0b:f5:78:3d:2a:f4:96:d2:25:c4:7a:bb:
9a:0c:bf:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:05:51 2026 by rpki-client