Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-somX45Sjt4PLjdvUQIjzOFtbK8.roa
File: 1-somX45Sjt4PLjdvUQIjzOFtbK8.roa (raw, json)
Hash identifier: yyEkn7YNw8pRFyXij0Pj1cLciSgxUxRn4dqrEB6ZymA=
Subject key identifier: FA:CA:26:5F:8E:52:8E:DE:0F:2E:37:6F:51:02:23:CC:E1:6D:6C:AF
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019C755A881D7BA6A036E7DBAA476A2277CC
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-somX45Sjt4PLjdvUQIjzOFtbK8.roa
Signing time: Thu 19 Feb 2026 10:03:13 +0000
ROA not before: Thu 19 Feb 2026 10:03:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 153914
IP address blocks: 45.66.165.0/24 maxlen: 24
45.88.183.0/24 maxlen: 24
45.89.105.0/24 maxlen: 24
45.89.106.0/24 maxlen: 24
45.149.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:75:5a:88:1d:7b:a6:a0:36:e7:db:aa:47:6a:22:77:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 19 10:03:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=faca265f8e528ede0f2e376f510223cce16d6caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:c3:2b:42:28:73:03:7c:b2:1d:5c:0c:ec:
4d:83:26:3d:29:01:3d:73:44:b9:a5:45:25:42:9b:
04:a1:1c:af:b2:f6:c8:50:c2:a8:23:10:a4:7e:2b:
ca:aa:7c:63:33:ca:8c:54:59:d5:3e:4b:61:a3:d3:
86:7b:1e:fc:2f:71:d0:72:8a:11:7c:ea:76:4c:54:
46:8b:26:4e:e3:bc:ba:19:5a:d8:6b:12:ff:26:62:
8c:20:4b:3e:1b:1c:69:0b:e5:ab:94:91:f8:44:cc:
a5:65:bb:6b:9f:8f:13:66:bc:4b:48:fc:16:89:d3:
61:9e:9e:ad:e2:fa:0b:6a:c3:c0:7e:df:17:c8:bf:
13:8f:59:eb:ba:56:3b:3d:a5:a6:fd:cb:9a:7d:bc:
5d:45:c6:36:8a:59:a9:75:54:44:00:f5:e3:29:5d:
c5:7f:c4:31:13:93:a1:09:8a:74:71:36:4e:9d:d9:
18:0f:11:3b:2d:61:02:ce:80:cf:16:ee:b3:c5:b5:
ba:32:35:14:23:83:51:3f:c8:4a:e6:dc:77:09:1f:
71:6d:7f:46:9e:0b:0b:1e:ee:25:87:fd:88:61:ea:
31:dc:d8:58:0f:43:ff:56:6c:95:31:61:22:31:75:
f0:ba:b7:91:53:34:09:5b:40:3d:26:23:3e:86:26:
25:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CA:26:5F:8E:52:8E:DE:0F:2E:37:6F:51:02:23:CC:E1:6D:6C:AF
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-somX45Sjt4PLjdvUQIjzOFtbK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.165.0/24
45.88.183.0/24
45.89.105.0-45.89.106.255
45.149.114.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:04:80:ba:ed:a1:0d:01:fa:e3:b2:00:78:9c:8c:85:b8:c7:
74:05:cf:a6:14:11:d2:c4:26:ef:7a:a9:c1:ae:3b:5e:53:2f:
d4:26:a6:fa:3f:fa:33:3a:7a:c8:d3:8f:12:4c:b8:50:27:13:
4c:81:0c:2e:50:7d:54:f2:9c:33:b2:50:e6:36:61:8f:09:38:
c9:c6:4a:d5:23:8c:45:9a:76:4a:c7:77:c9:ed:e8:cc:e7:6f:
26:ba:17:e0:f9:93:b7:65:4c:07:21:76:98:75:16:35:30:ec:
92:5f:b8:0b:c7:84:6e:51:64:e2:58:eb:5d:42:fa:ae:cb:fa:
03:62:50:5e:a6:39:77:c1:34:41:79:38:78:43:ad:03:44:93:
ee:36:2b:61:fa:35:13:7b:d5:ec:35:6c:6e:b5:2e:96:56:e2:
4b:10:7c:f9:cd:01:0a:a5:d1:36:32:93:be:1a:74:39:20:06:
77:8e:09:7c:94:09:c0:ea:f0:d3:d7:b1:89:93:84:c8:7a:bb:
c1:7e:90:39:97:80:b5:c5:4b:2d:d8:2d:4f:1b:63:85:8e:4a:
70:24:04:1a:d7:65:da:67:43:15:05:1f:e7:9b:61:50:67:96:
36:b4:ad:37:6e:e0:b1:67:8c:79:6e:fa:45:b0:10:41:d2:22:
b1:f6:d2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:18:46 2026 by rpki-client