Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/WIk_614l7j76lNt4fSXO-ozoUZ8.roa
File: WIk_614l7j76lNt4fSXO-ozoUZ8.roa (raw, json)
Hash identifier: xKI6sYZCOkO3AbE0x/y4vnowWaer7MuoYMEigmVZOYg=
Subject key identifier: 58:89:3F:EB:5E:25:EE:3E:FA:94:DB:78:7D:25:CE:FA:8C:E8:51:9F
Certificate issuer: /CN=abc2de820e02f3c3f86e5b8c9c49ddc49325123f
Certificate serial: 019D952B5C099AD00073F45FC9841913C180
Authority key identifier: AB:C2:DE:82:0E:02:F3:C3:F8:6E:5B:8C:9C:49:DD:C4:93:25:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8Legg4C88P4bluMnEndxJMlEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/WIk_614l7j76lNt4fSXO-ozoUZ8.roa
Signing time: Thu 16 Apr 2026 07:22:20 +0000
ROA not before: Thu 16 Apr 2026 07:22:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201072
IP address blocks: 193.57.185.0/24 maxlen: 24
193.57.186.0/24 maxlen: 24
193.57.187.0/24 maxlen: 24
193.57.188.0/24 maxlen: 24
193.57.189.0/24 maxlen: 24
193.57.190.0/24 maxlen: 24
193.57.193.0/24 maxlen: 24
193.57.199.0/24 maxlen: 24
193.57.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/q8Legg4C88P4bluMnEndxJMlEj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/q8Legg4C88P4bluMnEndxJMlEj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/q8Legg4C88P4bluMnEndxJMlEj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:95:2b:5c:09:9a:d0:00:73:f4:5f:c9:84:19:13:c1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc2de820e02f3c3f86e5b8c9c49ddc49325123f
Validity
Not Before: Apr 16 07:22:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=58893feb5e25ee3efa94db787d25cefa8ce8519f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:7d:2d:9f:e4:02:cf:5e:59:44:79:f9:4e:
e1:08:63:e0:84:4f:91:09:7c:69:dc:8d:e7:c2:cc:
36:4a:eb:ac:b2:f6:c4:2e:1e:fb:e3:60:ba:b9:7e:
10:60:8e:1f:d1:9c:e8:81:01:3a:32:95:85:d2:97:
a3:08:ab:3f:02:39:3c:16:fe:6b:ed:15:c8:af:99:
72:f3:1f:04:21:08:47:e1:53:92:30:e9:1e:a7:95:
50:51:75:14:db:0f:ec:95:24:f0:25:e4:8c:ad:d9:
43:a6:0e:c4:43:97:41:22:4b:af:6d:79:99:d1:3b:
ca:48:3a:d5:69:c7:55:ef:74:ea:12:81:57:b2:d1:
a2:36:3f:9d:58:5b:1c:e5:23:74:ea:fa:3d:85:56:
e4:ab:8a:96:9f:87:6a:d4:b9:d8:39:a4:73:bf:2f:
ce:12:03:8c:27:6c:bb:62:e7:f3:bb:14:10:9c:c7:
48:f7:66:b0:52:b6:2d:9b:bf:a4:00:6d:a8:6b:3a:
ad:ec:7f:d3:cc:d5:05:77:53:8f:a5:22:15:97:57:
a3:67:4b:a9:a8:0e:bd:7c:b2:43:ff:8d:6d:48:6f:
fc:57:ae:ef:c6:b3:70:af:29:b0:bd:36:85:55:96:
e4:4d:43:de:47:ac:92:4e:fe:0a:ee:c4:7e:42:29:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:89:3F:EB:5E:25:EE:3E:FA:94:DB:78:7D:25:CE:FA:8C:E8:51:9F
X509v3 Authority Key Identifier:
keyid:AB:C2:DE:82:0E:02:F3:C3:F8:6E:5B:8C:9C:49:DD:C4:93:25:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8Legg4C88P4bluMnEndxJMlEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/WIk_614l7j76lNt4fSXO-ozoUZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/56748e-c297-4de7-8e96-89783317ea29/1/q8Legg4C88P4bluMnEndxJMlEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.185.0-193.57.190.255
193.57.193.0/24
193.57.199.0/24
193.57.204.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a1:c5:17:8a:16:32:b8:4b:2f:87:39:a0:79:ab:3c:6c:6c:
90:a4:25:18:e6:5a:d0:96:c1:dd:a7:b8:d6:c7:3f:02:48:48:
15:42:7f:3d:4e:5d:c2:d5:ef:2c:7a:98:87:28:2f:d2:67:2f:
b4:af:1a:63:ff:42:9f:ba:43:35:4d:5a:2a:e0:de:d3:42:17:
b1:cc:12:68:26:17:c8:21:67:09:64:a4:08:f9:f3:07:57:71:
19:17:03:eb:63:52:f1:b9:16:b4:2e:20:30:5a:67:c9:67:ae:
d3:28:af:05:ba:b2:24:2b:18:c1:97:ca:73:b9:c1:e2:67:c4:
4e:e7:60:60:54:79:98:5a:95:d6:7a:83:c1:ab:8b:4b:65:73:
93:4c:eb:b4:16:7f:e1:13:16:b5:4c:d6:bc:8c:cb:94:5d:6b:
3c:80:2d:55:eb:0d:58:14:c4:b9:ba:e4:f2:73:b6:f8:7e:16:
d3:0e:d3:b3:31:a1:91:1e:58:5c:4c:f8:c2:15:a4:b9:5c:af:
83:b5:68:d0:9c:76:c1:b4:26:1a:28:76:7a:43:b9:c9:41:00:
46:6d:a4:06:7b:a2:c6:4e:03:37:9e:79:25:8f:2d:58:b8:49:
a8:0d:30:a2:d9:ef:ff:6a:16:e5:ce:62:09:18:be:e1:d8:1c:
ff:0b:c9:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:54:40 2026 by rpki-client