Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/5sITtlNKM7t60210AUBp_MNFelY.roa
File: 5sITtlNKM7t60210AUBp_MNFelY.roa (raw, json)
Hash identifier: WCuNMPZvNV2cZDWHYzBYLEsyLHu/NPxJGgRX6UeNesQ=
Subject key identifier: E6:C2:13:B6:53:4A:33:BB:7A:D3:6D:74:01:40:69:FC:C3:45:7A:56
Certificate issuer: /CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Certificate serial: 019B7FF2787298ADD99775DB0F6677A57B0F
Authority key identifier: 0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/5sITtlNKM7t60210AUBp_MNFelY.roa
Signing time: Fri 02 Jan 2026 18:22:35 +0000
ROA not before: Fri 02 Jan 2026 18:22:35 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 208545
IP address blocks: 82.215.65.0/24 maxlen: 24
178.175.180.0/23 maxlen: 23
178.175.180.0/24 maxlen: 24
178.175.181.0/24 maxlen: 24
2a12:be40::/29 maxlen: 29
2a12:be40::/48 maxlen: 48
2a12:be40:1::/48 maxlen: 48
2a12:be40:2::/48 maxlen: 48
2a12:be40:3::/48 maxlen: 48
2a12:be40:4::/48 maxlen: 48
2a12:be40:5::/48 maxlen: 48
2a12:be40:6::/48 maxlen: 48
2a12:be40:7::/48 maxlen: 48
2a12:be40:8::/48 maxlen: 48
2a12:be40:9::/48 maxlen: 48
2a12:be40:a::/48 maxlen: 48
2a12:be40:b::/48 maxlen: 48
2a12:be40:c::/48 maxlen: 48
2a12:be40:d::/48 maxlen: 48
2a12:be40:e::/48 maxlen: 48
2a12:be40:f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/DaPL8eDoVupMU7WrroZZTsmTOYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/DaPL8eDoVupMU7WrroZZTsmTOYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7f:f2:78:72:98:ad:d9:97:75:db:0f:66:77:a5:7b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Validity
Not Before: Jan 2 18:22:35 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e6c213b6534a33bb7ad36d74014069fcc3457a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:70:22:ac:f5:71:ad:8e:ea:06:05:8a:85:1d:
09:c4:dc:21:09:28:39:ee:e2:b8:72:85:3d:39:3f:
c3:9a:dc:fd:bc:5b:65:75:00:31:2b:56:02:aa:5b:
40:80:fe:59:6a:af:27:99:b2:3e:3a:19:31:32:ab:
e1:c7:11:b4:74:26:88:83:09:c5:6d:f7:e7:90:56:
fe:5f:52:3b:49:f5:88:cf:9a:4d:57:5a:c0:50:19:
2e:15:87:cf:d1:37:f2:05:58:17:86:bf:23:79:1e:
2a:93:c4:1f:0f:5a:38:03:9a:3d:3b:a8:34:cf:09:
bf:81:fd:dc:57:d5:69:e8:c3:4d:3e:e9:5e:e7:18:
74:ff:5e:40:9c:08:b4:c7:18:a6:1d:f2:93:06:f2:
62:d5:f7:01:d0:9c:6a:d0:c5:67:a6:08:bc:41:fe:
e3:49:5f:cd:12:4e:2d:cf:d5:18:19:79:70:23:82:
c4:24:bd:a9:e8:02:e9:87:63:52:5e:c8:f9:bd:e0:
d1:06:71:d0:ef:48:c9:72:93:b5:59:b1:fa:af:e9:
1c:72:81:fc:e2:e4:1e:75:cc:9b:2c:51:ed:e7:49:
6f:3e:01:d7:a4:e2:3a:ba:8f:4a:ad:05:ad:8e:e1:
e8:3b:68:c5:9a:97:ba:18:44:a3:dd:45:21:2f:fe:
da:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C2:13:B6:53:4A:33:BB:7A:D3:6D:74:01:40:69:FC:C3:45:7A:56
X509v3 Authority Key Identifier:
keyid:0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/5sITtlNKM7t60210AUBp_MNFelY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/DaPL8eDoVupMU7WrroZZTsmTOYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.65.0/24
178.175.180.0/23
IPv6:
2a12:be40::/29
Signature Algorithm: sha256WithRSAEncryption
97:6b:14:5c:c0:cd:0d:a0:ef:d0:2e:85:ed:01:d2:5b:a3:f4:
81:d0:1f:7f:d1:a6:d6:dc:45:51:31:57:f0:71:ec:54:91:bc:
11:a0:4e:48:c7:3e:19:24:d2:f4:0a:3a:46:69:42:98:28:85:
1d:c5:e4:58:d7:b0:0a:77:ea:1f:6d:c7:ba:ab:7c:88:f3:40:
84:f7:64:b4:e9:05:a9:f5:8c:b0:49:bb:a9:27:4d:82:de:53:
e1:be:24:a3:2c:65:3f:f7:1f:c6:0e:0e:6e:fd:75:10:0b:03:
88:df:e0:c8:27:71:89:ce:c9:42:2e:48:cf:1b:74:05:17:da:
9b:a9:6a:03:7b:13:a7:f7:f2:c6:1c:61:4e:74:b0:41:10:e3:
10:e0:fd:69:ea:63:de:ae:27:b4:45:4e:7b:85:e5:c6:b0:1d:
b9:04:9c:c6:d3:bc:c1:0a:c0:06:8f:45:e2:99:e0:0e:a1:b5:
bc:49:78:b9:48:37:90:eb:d6:1a:de:0c:9b:10:16:29:4d:8c:
09:ba:10:9e:d5:46:9a:ba:65:7b:35:d4:80:37:bc:43:1c:75:
99:99:36:60:53:99:8c:62:f0:8b:31:a0:c2:05:72:a5:20:90:
45:12:fc:47:e0:35:30:dd:0f:af:99:1c:99:75:88:19:bf:94:
f7:07:bd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:52:51 2026 by rpki-client