Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/EeQ_3plfKgauj6b36xCS6UlXePc.roa
File: EeQ_3plfKgauj6b36xCS6UlXePc.roa (raw, json)
Hash identifier: sg+lcJT7w6LfDo8pNVo8apUeN+1ikdBB3ZJ0CJY92+A=
Subject key identifier: 11:E4:3F:DE:99:5F:2A:06:AE:8F:A6:F7:EB:10:92:E9:49:57:78:F7
Certificate issuer: /CN=e91ef22adaa16d53dcf637c569f4131f26215b91
Certificate serial: 019EA8246B891E917F6F770BC6D1500A6F93
Authority key identifier: E9:1E:F2:2A:DA:A1:6D:53:DC:F6:37:C5:69:F4:13:1F:26:21:5B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/EeQ_3plfKgauj6b36xCS6UlXePc.roa
Signing time: Mon 08 Jun 2026 16:50:19 +0000
ROA not before: Mon 08 Jun 2026 16:50:19 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 205007
IP address blocks: 88.210.20.0/24 maxlen: 24
130.49.160.0/22 maxlen: 24
185.216.85.0/24 maxlen: 24
185.216.87.0/24 maxlen: 24
2a09:31c0:babe::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a8:24:6b:89:1e:91:7f:6f:77:0b:c6:d1:50:0a:6f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e91ef22adaa16d53dcf637c569f4131f26215b91
Validity
Not Before: Jun 8 16:50:19 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=11e43fde995f2a06ae8fa6f7eb1092e9495778f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9c:d5:b9:8c:be:49:9b:79:db:b2:ba:aa:3e:
25:77:80:b2:7a:a1:4b:80:f2:8b:4c:05:b3:01:35:
cf:84:48:8b:20:cd:d5:0e:c1:0e:94:16:5c:15:12:
04:8b:4c:4e:ce:43:9a:28:4f:a8:5b:0b:5d:70:f3:
33:9e:71:02:8c:22:44:1f:4f:42:01:26:02:19:8c:
4e:91:0b:65:d0:03:8c:da:2f:48:92:3b:8c:6c:10:
49:a2:27:4b:de:b3:16:99:d9:a2:fc:e8:25:f2:e8:
b9:c0:7d:27:20:66:a6:14:b9:6c:ae:7d:4d:b8:64:
3f:72:17:28:3b:65:ec:10:3d:93:f1:ce:d3:75:c7:
1c:27:3e:56:4c:7e:37:4c:20:fe:7d:e9:96:ca:a9:
d4:a9:23:56:28:9f:bc:4c:97:32:a2:2d:f6:c5:5e:
44:81:bf:12:32:e7:64:bd:e2:af:72:35:73:5b:29:
9f:e1:ef:d0:89:7c:c2:ef:e8:f8:70:4e:8a:25:66:
14:ff:7c:9b:4b:66:01:ae:39:7e:62:a0:b0:0f:80:
c9:79:12:6e:ed:b1:d4:bd:e5:4b:fd:72:0c:46:4c:
3d:25:d0:3a:6e:4b:d9:dd:7a:9d:55:7a:64:f8:34:
ac:d8:70:33:cb:27:cc:6d:ea:b8:46:2c:26:59:1f:
1d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E4:3F:DE:99:5F:2A:06:AE:8F:A6:F7:EB:10:92:E9:49:57:78:F7
X509v3 Authority Key Identifier:
keyid:E9:1E:F2:2A:DA:A1:6D:53:DC:F6:37:C5:69:F4:13:1F:26:21:5B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6R7yKtqhbVPc9jfFafQTHyYhW5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/EeQ_3plfKgauj6b36xCS6UlXePc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/111385-2eb6-4c6a-b9c4-34ae891a72cf/1/6R7yKtqhbVPc9jfFafQTHyYhW5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.210.20.0/24
130.49.160.0/22
185.216.85.0/24
185.216.87.0/24
IPv6:
2a09:31c0:babe::/48
Signature Algorithm: sha256WithRSAEncryption
08:3e:5d:69:6e:71:63:33:a3:7c:1c:a3:e5:99:df:b1:3b:34:
bc:7a:2f:db:f7:be:f1:31:33:d3:f2:2b:b7:8e:f6:fe:a6:c3:
68:17:c0:60:7c:aa:2d:ab:02:2b:2f:09:d2:b8:31:7c:f2:7e:
e1:24:13:6b:c6:11:29:86:cc:6c:1e:ca:81:16:c2:42:16:9b:
4d:1c:39:a6:bf:65:62:85:23:52:2a:b3:f2:22:f4:1a:69:d9:
18:f5:ea:96:f9:aa:eb:ff:8b:35:32:3a:89:89:8c:63:bf:87:
20:a5:e6:33:a9:86:83:6f:0f:d8:f6:6a:82:c2:4f:db:c9:5c:
ba:91:8a:53:d9:85:d2:2d:2a:6a:db:61:37:5d:83:ed:d8:16:
d7:63:04:17:68:56:10:98:8c:bb:c7:d2:f5:44:de:5c:d6:72:
9b:6d:b7:47:80:d0:db:e8:c6:1e:23:b6:b4:ad:36:2c:2e:50:
92:e7:50:3c:39:eb:42:3f:65:9d:da:39:b7:2f:d6:1e:d9:55:
ff:66:cb:80:08:22:ed:57:8c:b0:7b:43:de:69:60:2c:09:b9:
0a:02:7f:b0:8a:14:5c:7d:5c:59:ab:af:4c:c1:65:4b:e8:03:
31:fe:34:b2:8f:17:38:37:f4:49:57:7e:a7:63:40:80:ac:f0:
4b:01:e4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:39:07 2026 by rpki-client