Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/Vp9zMJZ7cHH8T-q0YimFmb3cs6c.roa
File: Vp9zMJZ7cHH8T-q0YimFmb3cs6c.roa (raw, json)
Hash identifier: buD9UiHiGplAujptNaXrQomuCm+Wtm0wjSMGQqSvFks=
Subject key identifier: 56:9F:73:30:96:7B:70:71:FC:4F:EA:B4:62:29:85:99:BD:DC:B3:A7
Certificate issuer: /CN=e6faa0d2f5dec0201f55e40979c1909b6db77c3b
Certificate serial: 019E5F44FB6616878AFC52F95CCD1F9A5B88
Authority key identifier: E6:FA:A0:D2:F5:DE:C0:20:1F:55:E4:09:79:C1:90:9B:6D:B7:7C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vqg0vXewCAfVeQJecGQm223fDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/Vp9zMJZ7cHH8T-q0YimFmb3cs6c.roa
Signing time: Mon 25 May 2026 13:13:36 +0000
ROA not before: Mon 25 May 2026 13:13:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197075
IP address blocks: 5.152.149.0/24 maxlen: 24
37.77.160.0/21 maxlen: 24
45.156.60.0/23 maxlen: 24
45.156.62.0/23 maxlen: 23
46.31.104.0/21 maxlen: 24
81.29.176.0/22 maxlen: 23
85.208.76.0/22 maxlen: 24
185.25.234.0/23 maxlen: 23
185.47.138.0/24 maxlen: 24
185.59.20.0/22 maxlen: 24
185.186.12.0/22 maxlen: 23
185.246.95.0/24 maxlen: 24
195.177.114.0/24 maxlen: 24
2a02:2420::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/5vqg0vXewCAfVeQJecGQm223fDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/5vqg0vXewCAfVeQJecGQm223fDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/5vqg0vXewCAfVeQJecGQm223fDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5f:44:fb:66:16:87:8a:fc:52:f9:5c:cd:1f:9a:5b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6faa0d2f5dec0201f55e40979c1909b6db77c3b
Validity
Not Before: May 25 13:13:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=569f7330967b7071fc4feab462298599bddcb3a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ae:1a:58:a2:8e:53:b0:02:d6:52:5f:bc:79:
c9:64:2d:84:7d:7e:7c:41:d3:dd:12:53:bc:81:bb:
db:51:d2:09:f5:06:12:e4:5d:1c:ca:b9:13:7a:71:
9c:d1:55:cf:dd:6d:f7:b8:f6:c4:ce:ac:bd:3f:a7:
04:ea:57:5d:2d:a8:94:fb:3a:29:42:f0:f9:0c:1e:
c3:87:8b:b6:a0:87:f6:0e:e2:a6:56:15:49:58:e6:
4c:c7:11:3e:8f:a5:87:b8:8e:31:f4:86:b1:c8:d2:
0e:13:de:05:61:d4:93:c3:6c:6a:03:85:eb:37:f9:
54:1d:14:cb:5d:e9:d9:4d:2f:e3:0d:53:f1:89:5b:
a7:a2:bb:0e:86:f4:a2:64:11:8c:61:2c:4f:0a:44:
7a:70:23:bf:5a:ba:50:36:96:08:4f:03:ef:18:c5:
32:84:f1:6c:de:bc:8c:3e:e4:55:ec:c2:63:91:d0:
54:97:d8:d2:08:86:e4:0e:69:cc:e4:b9:29:64:46:
95:92:a1:d3:50:d7:69:5f:cb:0a:f3:48:7a:0c:e0:
0e:ca:91:e8:04:44:55:45:dc:28:69:3d:f1:73:86:
77:c2:97:23:50:98:c6:3d:15:fe:d9:da:36:fa:84:
e6:7a:3f:c6:9b:05:a5:be:5d:0f:2e:be:02:7f:a6:
ae:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9F:73:30:96:7B:70:71:FC:4F:EA:B4:62:29:85:99:BD:DC:B3:A7
X509v3 Authority Key Identifier:
keyid:E6:FA:A0:D2:F5:DE:C0:20:1F:55:E4:09:79:C1:90:9B:6D:B7:7C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vqg0vXewCAfVeQJecGQm223fDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/Vp9zMJZ7cHH8T-q0YimFmb3cs6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/5vqg0vXewCAfVeQJecGQm223fDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.149.0/24
37.77.160.0/21
45.156.60.0/22
46.31.104.0/21
81.29.176.0/22
85.208.76.0/22
185.25.234.0/23
185.47.138.0/24
185.59.20.0/22
185.186.12.0/22
185.246.95.0/24
195.177.114.0/24
IPv6:
2a02:2420::/32
Signature Algorithm: sha256WithRSAEncryption
a9:86:57:ad:c9:cf:9e:3d:89:f0:db:c9:6c:59:7a:97:6c:43:
a2:53:f2:89:e5:b8:8d:bb:ad:ad:49:99:36:71:1c:25:e2:41:
48:8b:84:17:3e:0b:e4:7e:b0:73:5d:cd:df:9a:e4:0c:26:e3:
98:d7:7d:7d:03:ab:e1:8f:77:cd:66:9e:de:5f:12:65:d7:77:
46:16:bf:5b:14:53:69:a1:7b:91:7d:c7:2f:13:cb:04:0e:e3:
92:8f:a2:4b:69:83:e3:58:b2:52:a7:82:b6:24:da:fe:ff:9d:
db:ae:c1:46:ea:3d:d6:d4:e1:09:85:4d:3c:87:c6:22:9d:90:
77:e0:34:9f:2f:ea:af:b7:d3:d1:e3:e1:3f:06:ef:77:65:04:
ca:fc:62:c0:56:1e:64:ce:07:d2:ef:8b:86:86:9e:70:ae:0e:
76:06:8d:c0:ae:18:ed:72:d4:04:83:05:75:38:7b:37:6e:93:
40:0b:62:01:91:49:b8:2a:7f:ea:b9:d0:ac:4e:68:b5:f2:a7:
71:0e:63:ea:4a:c7:18:a2:cf:79:79:4c:0c:77:cc:06:81:b9:
3e:3d:c1:a8:6d:40:11:35:8b:75:c6:5d:1f:94:9a:58:6a:42:
f6:38:5a:62:59:07:a5:10:ce:61:78:28:e9:41:fa:e7:6e:5c:
a4:0e:8e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:15:28 2026 by rpki-client