Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-VCpQJG0JZRxOYXqA6_HYcWE5ck.roa
File: 1-VCpQJG0JZRxOYXqA6_HYcWE5ck.roa (raw, json)
Hash identifier: RLPS9uz3jz2USJ608HhCaozt/5FYsPdAHtArJa9u8hk=
Subject key identifier: F9:50:A9:40:91:B4:25:94:71:39:85:EA:03:AF:C7:61:C5:84:E5:C9
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E6EACE9301715B8DEA463CDF4D43A629C
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-VCpQJG0JZRxOYXqA6_HYcWE5ck.roa
Signing time: Thu 28 May 2026 13:01:26 +0000
ROA not before: Thu 28 May 2026 13:01:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198805
IP address blocks: 151.242.101.0/24 maxlen: 24
151.242.105.0/24 maxlen: 24
151.246.164.0/24 maxlen: 24
151.246.176.0/24 maxlen: 24
151.246.252.0/24 maxlen: 24
151.246.253.0/24 maxlen: 24
151.247.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:13:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6e:ac:e9:30:17:15:b8:de:a4:63:cd:f4:d4:3a:62:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 28 13:01:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f950a94091b42594713985ea03afc761c584e5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:db:07:f4:1b:53:88:0b:85:37:e5:94:6b:
36:3d:5b:ec:d6:37:ab:24:08:ec:09:a9:e4:c6:6c:
13:9e:55:30:e6:43:d8:e4:0b:4e:92:6c:60:71:45:
74:46:dd:9a:c0:f8:31:9a:9e:9c:35:66:b1:69:92:
03:fd:ab:21:56:fc:47:94:4a:02:f1:19:3d:0c:16:
da:01:45:49:05:02:64:6c:be:60:91:66:d7:e9:d8:
02:65:48:6f:7a:4c:2e:1c:53:e1:05:59:47:0a:f1:
ab:af:c3:1f:5c:30:8b:1d:e0:ee:5e:d1:e6:b4:4a:
09:c0:99:1b:e2:a2:27:6d:b1:b5:03:e0:c0:b8:dc:
79:70:17:e7:8c:9c:9c:e7:e4:e6:eb:0a:b5:6d:b4:
dc:96:23:84:ff:1c:25:76:e9:f7:b6:e8:db:02:05:
2c:82:aa:50:32:33:25:81:97:c4:8f:c4:da:b5:58:
a7:e9:d5:8c:10:1b:f8:2d:1f:fc:40:f7:4e:b4:63:
d4:47:d2:15:f6:f9:07:6b:0c:18:7d:de:b4:69:23:
c2:f3:ef:f7:3e:1b:6b:c5:0e:65:48:67:05:a5:db:
d9:2c:6a:7b:bd:2f:84:1e:8f:bd:03:3c:ba:4c:3e:
c7:d7:b5:81:37:90:7a:bc:c5:8d:dc:69:65:ac:d4:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:50:A9:40:91:B4:25:94:71:39:85:EA:03:AF:C7:61:C5:84:E5:C9
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-VCpQJG0JZRxOYXqA6_HYcWE5ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.101.0/24
151.242.105.0/24
151.246.164.0/24
151.246.176.0/24
151.246.252.0/23
151.247.225.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3b:c2:30:61:fe:3f:d4:be:7b:10:1e:8d:09:8f:7e:26:b1:
91:60:5b:fe:29:21:82:1a:4d:36:06:35:8b:28:a4:96:62:5d:
ab:0b:88:f4:2a:b7:66:c8:8c:a5:8c:e8:9d:d0:6a:8c:a6:ae:
86:4c:b8:17:87:7c:8f:9d:4a:da:9c:58:f3:e0:c8:38:7c:d6:
30:c7:75:47:c8:65:f6:8b:82:85:e9:00:7d:c6:be:3b:58:1c:
dc:87:e4:7d:3b:20:97:12:bb:9b:9d:26:7a:a4:54:18:1e:0c:
c7:1d:aa:b2:ee:61:2d:81:3a:6e:83:1a:f4:93:b3:35:ce:4d:
6a:26:13:f1:38:6c:b2:1d:d4:e3:92:51:f4:d2:2c:13:db:22:
a3:57:12:2b:87:c6:a2:31:28:8d:1d:ae:79:8f:b4:a4:2a:9f:
24:36:b0:31:6b:78:f1:1b:78:35:8f:87:38:35:f2:6b:76:97:
15:69:32:03:c9:0c:a5:2c:7c:17:e5:ac:89:0f:ad:f0:19:ac:
7a:e5:8c:31:23:12:66:3f:b9:7b:00:47:ed:16:dc:ae:df:a0:
a6:2f:62:44:c2:10:be:df:fd:eb:8c:1e:6a:54:6a:75:68:d4:
fc:f7:9d:2b:b5:0a:d7:55:bc:b2:4b:5f:08:82:54:4c:23:20:
b6:e0:cb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:53:54 2026 by rpki-client