Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/tewthjvDRTV6Llns-ofLT9ySk6I.roa
File: tewthjvDRTV6Llns-ofLT9ySk6I.roa (raw, json)
Hash identifier: 9VVRmH4pvIwTcAhbhxW75aK9VyYPNrqqS3ugyfOnRFk=
Subject key identifier: B5:EC:2D:86:3B:C3:45:35:7A:2E:59:EC:FA:87:CB:4F:DC:92:93:A2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019C940912709DC2916FEEC29BE9151A43BC
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/tewthjvDRTV6Llns-ofLT9ySk6I.roa
Signing time: Wed 25 Feb 2026 09:02:28 +0000
ROA not before: Wed 25 Feb 2026 09:02:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 207350
IP address blocks: 94.183.159.0/24 maxlen: 24
94.183.236.0/24 maxlen: 24
94.183.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:94:09:12:70:9d:c2:91:6f:ee:c2:9b:e9:15:1a:43:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 25 09:02:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b5ec2d863bc345357a2e59ecfa87cb4fdc9293a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:75:a9:8c:31:1f:a6:89:54:9e:3c:ac:8d:
9c:29:22:dc:2c:b8:99:62:70:1e:f2:19:d2:7d:e5:
15:d7:a2:7e:7c:69:57:f8:03:6d:c4:3c:77:58:27:
c7:fd:92:0d:b2:43:e2:0b:a2:e8:2d:8e:1e:4f:8f:
2b:44:7b:fc:aa:27:44:7b:12:e9:1d:f6:9c:12:de:
db:47:ea:f5:60:8b:dd:ac:be:e3:bb:50:f5:81:63:
4e:12:bc:d9:59:c0:e1:80:07:9b:4e:b5:3f:36:8b:
7c:06:3c:94:3e:5a:de:9f:17:8a:22:f1:96:df:96:
2a:4b:1a:35:78:3a:ab:4f:8d:78:1d:02:8a:85:af:
b0:80:4a:84:ee:93:3f:fd:ca:a0:55:39:47:14:17:
31:e7:4e:c1:25:a4:34:97:d1:5a:41:cc:15:b4:40:
10:e2:b7:a3:e7:a6:b1:94:2c:77:2b:f2:aa:42:fa:
9e:c5:9e:a6:5a:df:28:fe:18:13:21:26:ca:ca:91:
a3:3c:d6:5d:bc:87:2d:40:54:44:1a:4e:8d:15:66:
f0:20:d3:7b:4a:3d:98:ad:b9:93:e3:aa:a7:64:ad:
56:79:c9:ed:11:97:05:bc:0b:29:cb:fa:75:74:a5:
0f:c0:01:37:ab:a4:7d:fd:23:b3:84:d1:73:5c:10:
aa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EC:2D:86:3B:C3:45:35:7A:2E:59:EC:FA:87:CB:4F:DC:92:93:A2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/tewthjvDRTV6Llns-ofLT9ySk6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.183.159.0/24
94.183.236.0/24
94.183.241.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:50:bb:c9:d8:4d:71:51:9a:ad:41:d0:6c:80:d8:68:c1:d6:
69:93:d0:47:33:ff:cc:1c:bb:6b:cc:15:58:bd:f2:05:7f:10:
53:e2:35:fb:2b:f7:86:3f:01:09:3c:ed:e1:4b:01:e1:90:9c:
61:f4:6b:68:8c:3b:91:4c:92:7d:3c:d0:91:e2:9a:bc:08:1a:
69:af:4f:48:eb:4b:12:e6:ac:ac:40:3e:45:95:ce:2a:05:67:
4d:bb:79:a5:0e:24:5f:8f:c4:82:d8:f0:d0:72:08:d6:f0:03:
37:86:67:64:31:22:1c:e7:af:42:4f:7e:07:d1:b5:70:79:8b:
70:7c:34:de:52:c7:96:c3:86:5f:5e:e4:9c:08:b5:4a:89:8a:
61:79:31:89:72:f7:71:f9:a5:38:9d:fc:a4:d4:23:b8:8b:f4:
35:7c:5e:cd:0d:4d:54:ee:5f:a8:cf:2d:56:0b:2a:93:59:db:
cc:a8:47:95:56:e9:10:c1:04:61:cf:41:65:5a:09:56:79:d3:
34:39:2e:9e:61:72:25:75:35:e0:ed:14:fd:1e:63:30:00:de:
f2:c0:b3:1c:23:bb:23:1d:d4:50:dd:2c:a4:e8:d5:2f:2d:44:
da:d7:c7:29:2f:44:fe:e9:4b:e2:2c:bf:34:d2:23:f7:42:51:
da:ea:c9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:18:41 2026 by rpki-client