Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/ovLtvuErkYW3JV-5FyXwUkABVrg.roa
File: ovLtvuErkYW3JV-5FyXwUkABVrg.roa (raw, json)
Hash identifier: dC4dQZ1mX3nPadXU0G7tzcioIJQ9K57JJCxbTMySTvU=
Subject key identifier: A2:F2:ED:BE:E1:2B:91:85:B7:25:5F:B9:17:25:F0:52:40:01:56:B8
Certificate issuer: /CN=054ab196a5b113660d401f806b32be66625afbaa
Certificate serial: 019EACFBEBAC346757798DC6A8A70AF04BB3
Authority key identifier: 05:4A:B1:96:A5:B1:13:66:0D:40:1F:80:6B:32:BE:66:62:5A:FB:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUqxlqWxE2YNQB-AazK-ZmJa-6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/ovLtvuErkYW3JV-5FyXwUkABVrg.roa
Signing time: Tue 09 Jun 2026 15:24:11 +0000
ROA not before: Tue 09 Jun 2026 15:24:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 216139
IP address blocks: 45.151.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/BUqxlqWxE2YNQB-AazK-ZmJa-6o.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/BUqxlqWxE2YNQB-AazK-ZmJa-6o.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUqxlqWxE2YNQB-AazK-ZmJa-6o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ac:fb:eb:ac:34:67:57:79:8d:c6:a8:a7:0a:f0:4b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054ab196a5b113660d401f806b32be66625afbaa
Validity
Not Before: Jun 9 15:24:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=a2f2edbee12b9185b7255fb91725f052400156b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ec:f1:78:ae:e7:0b:8b:b5:37:26:b7:08:31:
5a:a8:23:86:6e:1d:7b:c8:d5:e5:85:8a:c1:69:57:
ad:b1:e2:ac:6f:39:9f:19:4c:ce:4f:46:10:8d:93:
96:cf:71:d2:40:39:51:ec:75:74:7b:50:bc:14:27:
60:ef:f2:f5:2e:c3:a4:e0:04:cb:42:20:d1:46:6c:
82:20:0e:5e:55:9c:b1:cf:df:8a:c6:89:c4:f2:28:
31:07:73:ab:64:86:fa:2d:61:f3:f2:f8:f4:a7:18:
09:8e:c0:12:b4:28:80:70:a5:8c:f1:e5:6d:ca:34:
e6:1d:5a:a0:f6:a7:a9:3c:74:62:9d:a1:15:62:9b:
13:c1:7f:41:45:93:d1:aa:16:03:58:92:33:86:22:
d8:ed:a8:a7:2b:d6:0a:04:cf:a4:e8:d2:95:c9:d6:
00:07:e5:4e:d9:9f:16:8d:a4:2f:51:e7:b8:41:61:
10:44:8f:95:ee:ef:76:9b:e5:30:a9:70:90:cb:f2:
f2:fb:53:91:df:28:a2:89:ce:88:5f:7f:8e:3b:a2:
a6:28:85:d7:8e:96:d7:aa:28:a1:e4:4d:d1:b1:e2:
3b:5a:a5:9e:41:a3:70:2e:7e:3a:41:33:b1:db:e5:
a3:18:aa:87:d7:f8:aa:ab:8c:0f:8d:ca:7e:da:00:
c4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F2:ED:BE:E1:2B:91:85:B7:25:5F:B9:17:25:F0:52:40:01:56:B8
X509v3 Authority Key Identifier:
keyid:05:4A:B1:96:A5:B1:13:66:0D:40:1F:80:6B:32:BE:66:62:5A:FB:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUqxlqWxE2YNQB-AazK-ZmJa-6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/ovLtvuErkYW3JV-5FyXwUkABVrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/dc450f-11a8-4e92-b6e8-d2da517a96fd/1/BUqxlqWxE2YNQB-AazK-ZmJa-6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.69.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:a1:34:c5:ce:79:a6:52:02:28:fc:26:d2:ce:45:9f:63:16:
e0:42:fb:83:c0:03:e6:39:02:65:8b:5f:c8:29:2b:5f:61:1d:
78:5b:0b:3f:0a:33:b2:a1:f8:82:37:ee:9f:cc:53:55:a6:10:
a0:da:02:1e:07:1c:26:f8:f1:76:83:46:48:8d:15:13:ae:8d:
d5:b9:c8:ef:eb:e5:2c:23:89:00:0e:c7:19:74:6e:9a:5e:aa:
5b:0b:f0:c2:a2:b2:90:d6:c9:fc:3b:00:9f:61:3b:86:b3:e2:
3e:51:3b:d5:24:58:e0:06:74:0f:10:04:d1:78:14:85:56:23:
33:96:07:2b:18:42:5a:0c:ac:7d:b6:ac:f2:ae:f3:5b:57:51:
70:2a:85:31:17:f9:74:17:d4:20:22:4d:dc:16:9c:d4:b1:8b:
c2:4e:4b:63:0a:85:be:7b:94:df:45:3b:c1:86:bd:6e:03:60:
33:37:2c:c7:c7:9f:ed:25:a0:c1:ce:56:e8:0c:18:0f:6a:cb:
69:30:d2:db:2c:4c:14:d9:02:2b:48:3e:77:89:46:3e:e3:f5:
94:cc:1b:7e:0a:1a:ac:ab:fb:c4:ab:e2:8e:46:25:55:d3:c8:
67:02:93:21:a6:fd:64:fa:78:e1:22:20:c1:6e:36:c5:c7:95:
f9:e1:07:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:50:01 2026 by rpki-client