Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/dvLxlkeTDaml7PrAVt8aczTEUAc.roa
File: dvLxlkeTDaml7PrAVt8aczTEUAc.roa (raw, json)
Hash identifier: mpKOb113r9nmfGJNe12CHy39u2fx6Hc3Jd1CYKZC8AI=
Subject key identifier: 76:F2:F1:96:47:93:0D:A9:A5:EC:FA:C0:56:DF:1A:73:34:C4:50:07
Certificate issuer: /CN=002c8865bc2a07e4acfeb263b4d9cf62460fd523
Certificate serial: 019E7255821FBCE9C0A6C30DF3E9705844DF
Authority key identifier: 00:2C:88:65:BC:2A:07:E4:AC:FE:B2:63:B4:D9:CF:62:46:0F:D5:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/dvLxlkeTDaml7PrAVt8aczTEUAc.roa
Signing time: Fri 29 May 2026 06:04:26 +0000
ROA not before: Fri 29 May 2026 06:04:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 50257
IP address blocks: 138.16.232.0/23 maxlen: 23
138.16.232.0/24 maxlen: 24
138.16.233.0/24 maxlen: 24
185.10.172.0/22 maxlen: 22
185.10.172.0/23 maxlen: 23
185.10.172.0/24 maxlen: 24
185.10.173.0/24 maxlen: 24
185.10.174.0/23 maxlen: 23
185.10.174.0/24 maxlen: 24
185.10.175.0/24 maxlen: 24
185.99.4.0/23 maxlen: 23
185.99.4.0/24 maxlen: 24
185.99.5.0/24 maxlen: 24
185.99.6.0/24 maxlen: 24
185.99.7.0/24 maxlen: 24
195.191.4.0/23 maxlen: 23
195.191.4.0/24 maxlen: 24
195.191.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Jun 2026 03:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:72:55:82:1f:bc:e9:c0:a6:c3:0d:f3:e9:70:58:44:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002c8865bc2a07e4acfeb263b4d9cf62460fd523
Validity
Not Before: May 29 06:04:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=76f2f19647930da9a5ecfac056df1a7334c45007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3b:ec:30:01:e6:ef:ac:c6:c0:b8:be:88:e3:
65:e2:18:ce:1f:a1:d7:67:7c:54:aa:91:63:72:05:
63:6a:ca:dc:05:c2:ca:00:32:c7:c3:ec:9c:06:e3:
4b:29:43:3d:60:fa:98:5a:e4:32:a8:40:24:01:64:
b3:f6:00:43:c8:50:37:ab:d2:98:84:14:3e:45:05:
b1:48:16:99:4a:58:7d:61:42:36:ef:d1:76:bc:c6:
86:7b:43:83:c5:cd:e5:7b:86:24:7b:eb:9e:06:51:
db:ee:1a:cd:79:e0:34:2d:cd:e3:e1:f9:ee:67:93:
2a:a0:6f:82:92:22:23:27:54:36:c2:f7:76:93:99:
b8:50:a8:bb:f8:35:a6:82:05:60:66:79:96:26:91:
5e:b0:9a:76:55:17:fa:c5:b6:e3:12:10:95:cf:fe:
cd:97:70:ff:de:ba:eb:4f:3a:0f:d6:48:29:7f:2d:
dd:07:3b:64:59:ad:75:da:0c:6b:2d:26:55:de:42:
78:98:35:ed:68:4d:7f:4f:1c:c4:6f:82:fd:13:03:
05:9a:d0:55:a5:67:ad:9f:40:05:c0:59:25:6b:56:
38:5a:49:9c:73:f6:af:60:4e:52:ee:db:f1:1f:b3:
fa:8c:d3:d4:3b:67:45:7e:b3:1a:b2:28:2c:4f:af:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F2:F1:96:47:93:0D:A9:A5:EC:FA:C0:56:DF:1A:73:34:C4:50:07
X509v3 Authority Key Identifier:
keyid:00:2C:88:65:BC:2A:07:E4:AC:FE:B2:63:B4:D9:CF:62:46:0F:D5:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/dvLxlkeTDaml7PrAVt8aczTEUAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d7fadc-1ebf-42da-9b22-a60c20c8f717/1/ACyIZbwqB-Ss_rJjtNnPYkYP1SM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.16.232.0/23
185.10.172.0/22
185.99.4.0/22
195.191.4.0/23
Signature Algorithm: sha256WithRSAEncryption
11:9e:92:89:b9:bb:ce:12:bf:96:3e:c9:d4:8c:db:a4:40:c3:
1e:bc:d3:7a:af:e0:1b:05:de:0c:47:87:5d:eb:a1:aa:81:dd:
de:56:71:29:c6:b3:9d:8a:fd:64:e0:88:87:1a:e3:b3:24:30:
89:51:d5:b0:56:68:bb:13:ed:04:76:15:3d:9d:66:a1:4c:b2:
c4:47:17:15:80:b8:f0:02:7c:77:8f:2d:1a:bc:98:67:2f:f4:
59:39:ea:66:9a:d1:25:f9:47:ef:27:b0:59:5b:5e:2b:c9:0d:
4b:f1:18:8a:1c:0d:e4:2b:59:a5:29:18:a6:a0:98:26:11:79:
35:8b:14:26:c7:eb:a0:8b:de:64:38:9d:d3:ef:5f:39:5f:36:
78:0b:fb:99:4f:b8:c7:f2:cc:2b:c5:48:14:a6:f5:73:d3:7f:
c0:15:b3:8e:14:61:27:8c:27:e1:26:1d:95:40:3b:95:66:79:
54:11:34:e9:65:5a:0b:4f:46:14:2d:27:5a:43:e9:72:2a:6b:
b2:41:fd:c9:cd:6a:41:d3:6c:c9:89:1b:84:a2:b2:78:fa:cf:
ad:c4:cc:83:c0:f6:c0:1f:1e:aa:84:df:fd:96:5f:b6:de:ec:
8a:1a:3f:7d:8c:eb:57:ae:ae:fe:48:0b:cd:22:2f:34:3b:09:
48:79:1f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 15 12:44:10 2026 by rpki-client