Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/azCcZIUY02HV79Tu8rWdxxVI_Z8.roa
File: azCcZIUY02HV79Tu8rWdxxVI_Z8.roa (raw, json)
Hash identifier: qHsZdyFG09LuI3166y8yszewYlPrAFSF8WJ1h35CeQI=
Subject key identifier: 6B:30:9C:64:85:18:D3:61:D5:EF:D4:EE:F2:B5:9D:C7:15:48:FD:9F
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019EAD9A5227B53700FEB29925F1FDA7E588
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/azCcZIUY02HV79Tu8rWdxxVI_Z8.roa
Signing time: Tue 09 Jun 2026 18:17:12 +0000
ROA not before: Tue 09 Jun 2026 18:17:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 210546
IP address blocks: 2.26.64.0/22 maxlen: 24
2.26.64.0/24 maxlen: 24
2.26.65.0/24 maxlen: 24
2.26.72.0/23 maxlen: 24
2.26.73.0/24 maxlen: 24
2.26.121.0/24 maxlen: 24
2.27.1.0/24 maxlen: 24
2.27.48.0/23 maxlen: 24
2.27.49.0/24 maxlen: 24
2.27.50.0/23 maxlen: 24
31.76.40.0/22 maxlen: 24
31.76.56.0/22 maxlen: 24
31.77.192.0/22 maxlen: 24
37.46.16.0/24 maxlen: 24
37.46.17.0/24 maxlen: 24
37.46.18.0/24 maxlen: 24
37.46.19.0/24 maxlen: 24
64.188.72.0/24 maxlen: 24
64.188.99.0/24 maxlen: 24
77.239.106.0/24 maxlen: 24
144.31.80.0/24 maxlen: 24
144.31.81.0/24 maxlen: 24
144.31.132.0/24 maxlen: 24
144.31.133.0/24 maxlen: 24
144.31.184.0/24 maxlen: 24
144.31.185.0/24 maxlen: 24
144.31.194.0/24 maxlen: 24
144.31.195.0/24 maxlen: 24
150.241.76.0/24 maxlen: 24
150.241.77.0/24 maxlen: 24
150.241.113.0/24 maxlen: 24
150.241.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ad:9a:52:27:b5:37:00:fe:b2:99:25:f1:fd:a7:e5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Jun 9 18:17:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6b309c648518d361d5efd4eef2b59dc71548fd9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:56:14:37:7a:9d:11:95:9b:99:01:75:b2:72:
66:8f:68:12:9b:37:8e:80:24:c7:9d:6f:90:69:b2:
ea:76:84:eb:09:3f:42:cd:3c:fc:3d:89:11:18:60:
97:e2:10:f5:f6:03:46:30:04:c6:11:d8:a6:4d:ad:
c2:f2:b6:fd:e2:b0:6b:09:22:13:15:4e:d6:1b:a4:
ad:7f:d4:ba:4c:17:3d:5b:90:fc:ff:54:43:46:62:
c0:99:84:26:4e:8f:59:24:0c:e8:9d:5d:a2:1a:54:
b6:61:44:53:fc:37:96:18:1f:38:4b:12:66:e2:92:
30:e6:0b:dd:53:91:43:51:88:f6:5a:a3:cd:8f:1f:
33:e4:32:a0:44:95:0f:5c:46:66:c8:01:69:9e:d4:
89:71:5e:41:45:b1:14:0e:c7:aa:cc:05:c5:6a:1d:
12:a9:39:da:26:3c:5a:83:67:a6:85:4d:bd:f7:cd:
8b:53:c8:29:44:50:43:73:d2:cc:21:88:30:ae:c8:
63:22:ec:d1:07:ba:d0:ce:07:53:9c:c7:b3:aa:d3:
d9:68:00:0f:f8:4f:4f:51:06:ef:53:30:e6:c6:0f:
e5:c3:2e:cc:6d:9b:c1:c0:8f:53:61:55:16:68:fe:
c4:03:da:9a:1a:cd:96:e7:28:67:70:89:2a:18:25:
d3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:30:9C:64:85:18:D3:61:D5:EF:D4:EE:F2:B5:9D:C7:15:48:FD:9F
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/azCcZIUY02HV79Tu8rWdxxVI_Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.26.64.0/22
2.26.72.0/23
2.26.121.0/24
2.27.1.0/24
2.27.48.0/22
31.76.40.0/22
31.76.56.0/22
31.77.192.0/22
37.46.16.0/22
64.188.72.0/24
64.188.99.0/24
77.239.106.0/24
144.31.80.0/23
144.31.132.0/23
144.31.184.0/23
144.31.194.0/23
150.241.76.0/23
150.241.113.0-150.241.114.255
Signature Algorithm: sha256WithRSAEncryption
2b:e4:27:af:0c:53:bf:97:d3:27:80:8c:df:d3:1b:91:96:f3:
c8:3e:62:ac:bf:06:88:a7:3c:68:55:0d:a0:cf:4b:65:19:42:
99:ae:81:4d:80:ae:a8:f6:ee:e8:4d:8e:5d:64:1a:5b:e4:4c:
8c:63:fa:ee:3f:a6:c7:b3:eb:4f:ed:e3:34:08:45:a3:ea:b3:
b1:11:c2:7e:fe:00:19:0b:51:af:17:11:4c:fa:8b:8c:cc:da:
32:70:42:4c:a6:33:42:7e:d6:d9:0e:45:1b:f8:2f:ed:44:78:
ce:ed:92:c2:2b:1d:ca:f6:6c:f4:67:08:55:80:02:ed:b5:b8:
f3:b0:3d:12:ba:d0:ae:c2:9a:3b:86:90:26:99:a5:6d:5a:e1:
dd:d7:5d:76:93:d1:3c:f8:68:22:7d:b4:c4:3c:42:50:74:bd:
7d:d7:66:64:28:7f:5a:18:3d:8a:90:5d:19:09:57:b7:f6:a7:
07:86:bb:d1:b2:09:be:72:7c:a4:e7:7e:bf:21:1b:9c:f6:64:
22:a6:da:5d:c5:04:1a:29:61:5c:e6:cd:80:5d:f0:9f:26:3b:
49:2b:b4:53:f6:58:95:a3:3b:34:3d:3d:8a:1b:d3:03:40:6d:
cb:fc:1a:f1:ae:0b:6b:4a:83:12:2e:e5:9c:ef:b7:24:7a:0b:
28:a6:26:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:56:22 2026 by rpki-client