Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/R5YaZdeKaE_tzcDWxSiph-wQ9ng.roa
File: R5YaZdeKaE_tzcDWxSiph-wQ9ng.roa (raw, json)
Hash identifier: iypioRKImPjktkZ8iN8JUSQLct/6zZ5lTah8wNL5PCw=
Subject key identifier: 47:96:1A:65:D7:8A:68:4F:ED:CD:C0:D6:C5:28:A9:87:EC:10:F6:78
Certificate issuer: /CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Certificate serial: 019888D124B94981BDB72E5899D16310409C
Authority key identifier: 72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/R5YaZdeKaE_tzcDWxSiph-wQ9ng.roa
Signing time: Fri 08 Aug 2025 08:34:24 +0000
ROA not before: Fri 08 Aug 2025 08:34:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206521
IP address blocks: 5.182.189.0/24 maxlen: 24
185.183.200.0/24 maxlen: 24
185.183.201.0/24 maxlen: 24
185.183.202.0/24 maxlen: 24
185.183.203.0/24 maxlen: 24
2a0b:1b80::/32 maxlen: 32
2a0b:1b81::/32 maxlen: 32
2a0b:1b82::/32 maxlen: 32
2a0b:1b83::/32 maxlen: 32
2a0b:1b84::/32 maxlen: 32
2a0b:1b85::/32 maxlen: 32
2a0b:1b86::/32 maxlen: 32
2a0b:1b87::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/cowr_Wu1A6AdAYYCvaFS1zTtVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/cowr_Wu1A6AdAYYCvaFS1zTtVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:d1:24:b9:49:81:bd:b7:2e:58:99:d1:63:10:40:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728c2bfd6bb503a01d018602bda152d734ed56f0
Validity
Not Before: Aug 8 08:34:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47961a65d78a684fedcdc0d6c528a987ec10f678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:e5:4a:41:00:ac:61:84:60:03:9d:32:b8:
d6:74:22:20:d2:76:41:d8:b0:74:8a:5c:55:99:ae:
84:52:ce:2f:04:3f:9e:ce:c3:12:fa:dc:42:ae:35:
b1:32:2b:9f:6b:9e:a5:af:3b:53:f4:e7:cd:17:8a:
77:1e:02:32:97:52:96:c8:de:88:94:19:fd:9e:b5:
b7:34:29:03:c5:fa:c9:40:67:19:f3:22:49:df:ba:
55:52:33:63:a1:4f:53:85:ec:f8:83:db:b6:4b:bb:
e0:e8:ee:59:08:9e:e8:2e:05:6a:1a:0b:b5:bf:b7:
cb:e1:49:10:5f:93:f6:a5:95:3c:ff:07:4b:ef:8a:
1b:ff:5b:78:8a:b2:0d:ff:7f:9d:3c:ff:bb:3b:cf:
00:51:54:19:d4:bb:00:bb:92:a6:57:bd:f0:d6:fd:
7d:dd:61:59:81:21:9e:5b:3f:c0:62:f7:ce:db:0b:
0a:f9:27:66:fa:63:38:32:5c:92:0e:3f:e1:cd:b3:
06:8b:5e:3c:b3:10:f5:11:1a:54:d9:49:57:3f:aa:
08:1d:1d:09:f0:5a:02:fe:39:d4:ff:30:33:1f:78:
91:c3:04:36:e8:87:12:f8:fc:55:bc:f0:f9:7e:bd:
24:d3:5f:3c:35:8f:81:9e:54:9f:3f:6d:5e:bb:94:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:96:1A:65:D7:8A:68:4F:ED:CD:C0:D6:C5:28:A9:87:EC:10:F6:78
X509v3 Authority Key Identifier:
keyid:72:8C:2B:FD:6B:B5:03:A0:1D:01:86:02:BD:A1:52:D7:34:ED:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cowr_Wu1A6AdAYYCvaFS1zTtVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/R5YaZdeKaE_tzcDWxSiph-wQ9ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/67f42e-7062-4112-ad42-9349f10a2649/1/cowr_Wu1A6AdAYYCvaFS1zTtVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.189.0/24
185.183.200.0/22
IPv6:
2a0b:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
c9:0e:96:aa:51:33:04:90:0f:7b:13:98:14:8a:af:d6:54:94:
44:9f:fb:16:66:fb:8e:19:e6:81:d2:3e:b8:6b:0f:b8:48:ca:
93:73:1d:57:37:d8:66:6b:a3:a4:1c:5f:c6:40:69:78:8d:52:
13:c3:63:f5:5e:d0:67:4b:aa:40:e0:a3:33:fb:9f:12:ec:7b:
74:82:92:91:88:ca:6d:87:79:62:9b:78:f2:f7:f2:ac:15:3a:
31:c9:0a:b9:1e:1b:65:93:86:90:60:77:8a:17:5e:fa:70:14:
82:8a:3c:72:f1:46:c3:f4:61:4a:2e:79:59:7b:51:be:62:28:
b8:93:85:f0:97:89:36:6f:83:8c:55:dc:2f:11:d0:20:5f:da:
e1:27:78:e7:3c:66:67:47:3d:29:f8:63:69:b0:0b:48:7c:57:
60:63:a8:6a:b7:97:09:a7:4e:66:7b:e0:b1:9c:96:00:38:6d:
6d:09:d8:5a:cd:22:9b:04:05:b6:ec:84:5f:3e:2d:8b:45:ce:
37:df:08:13:cf:98:c9:05:b0:19:34:14:f0:55:0a:4f:03:79:
d1:0d:e7:d3:3e:10:38:82:f2:c8:c9:3a:e0:7d:f0:32:15:c4:
bd:6e:bf:05:0c:cf:cc:cb:3f:13:90:b0:b7:4d:62:03:51:37:
40:77:d2:ad
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZiI0SS5SYG9ty5YmdFjEECcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyOGMyYmZkNmJiNTAzYTAxZDAxODYwMmJkYTE1MmQ3MzRl
ZDU2ZjAwHhcNMjUwODA4MDgzNDI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Nzk2MWE2NWQ3OGE2ODRmZWRjZGMwZDZjNTI4YTk4N2VjMTBmNjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEjlSkEArGGEYAOdMrjWdCIg0nZB
2LB0ilxVma6EUs4vBD+ezsMS+txCrjWxMiufa56lrztT9OfNF4p3HgIyl1KWyN6I
lBn9nrW3NCkDxfrJQGcZ8yJJ37pVUjNjoU9Thez4g9u2S7vg6O5ZCJ7oLgVqGgu1
v7fL4UkQX5P2pZU8/wdL74ob/1t4irIN/3+dPP+7O88AUVQZ1LsAu5KmV73w1v19
3WFZgSGeWz/AYvfO2wsK+Sdm+mM4MlySDj/hzbMGi148sxD1ERpU2UlXP6oIHR0J
8FoC/jnU/zAzH3iRwwQ26IcS+PxVvPD5fr0k0188NY+BnlSfP21eu5QqTQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFEeWGmXXimhP7c3A1sUoqYfsEPZ4MB8GA1UdIwQY
MBaAFHKMK/1rtQOgHQGGAr2hUtc07VbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY293cl9XdTFBNkFkQVlZQ3ZhRlMxelR0VnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS82N2Y0MmUtNzA2Mi00MTEyLWFkNDIt
OTM0OWYxMGEyNjQ5LzEvUjVZYVpkZUthRV90emNEV3hTaXBoLXdROW5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS82N2Y0MmUtNzA2Mi00MTEyLWFkNDItOTM0OWYxMGEyNjQ5
LzEvY293cl9XdTFBNkFkQVlZQ3ZhRlMxelR0VnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQABba9AwQC
ubfIMA0EAgACMAcDBQMqCxuAMA0GCSqGSIb3DQEBCwUAA4IBAQDJDpaqUTMEkA97
E5gUiq/WVJREn/sWZvuOGeaB0j64aw+4SMqTcx1XN9hma6OkHF/GQGl4jVITw2P1
XtBnS6pA4KMz+58S7Ht0gpKRiMpth3lim3jy9/KsFToxyQq5Hhtlk4aQYHeKF176
cBSCijxy8UbD9GFKLnlZe1G+Yii4k4Xwl4k2b4OMVdwvEdAgX9rhJ3jnPGZnRz0p
+GNpsAtIfFdgY6hqt5cJp05me+CxnJYAOG1tCdhazSKbBAW27IRfPi2LRc433wgT
z5jJBbAZNBTwVQpPA3nRDefTPhA4gvLIyTrgffAyFcS9br8FDM/Myz8TkLC3TWID
UTdAd9Kt
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:09:33 2025 by rpki-client