Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/vYkoROpPCpTSAMpNJRxV38Xmb-0.roa
File: vYkoROpPCpTSAMpNJRxV38Xmb-0.roa (raw, json)
Hash identifier: IjyyO7EqFV9D2XeO1B6G5digiIuYSGK9sOSKLCrfBvA=
Subject key identifier: BD:89:28:44:EA:4F:0A:94:D2:00:CA:4D:25:1C:55:DF:C5:E6:6F:ED
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 019EBAAD84972790C0754C20CFDDF5A2CE2C
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/vYkoROpPCpTSAMpNJRxV38Xmb-0.roa
Signing time: Fri 12 Jun 2026 07:13:14 +0000
ROA not before: Fri 12 Jun 2026 07:13:14 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 197200
IP address blocks: 83.245.5.0/24 maxlen: 24
83.245.68.0/24 maxlen: 24
83.245.71.0/24 maxlen: 24
83.245.78.0/24 maxlen: 24
83.245.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:ad:84:97:27:90:c0:75:4c:20:cf:dd:f5:a2:ce:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jun 12 07:13:14 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bd892844ea4f0a94d200ca4d251c55dfc5e66fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:ec:4e:e8:77:49:44:7d:fc:75:ed:32:f0:
35:80:13:a7:6e:aa:6d:b9:2d:d3:a3:97:80:15:45:
68:9f:27:cf:a9:72:66:80:2b:81:ac:64:ed:d3:b2:
c5:25:f1:3d:05:91:35:48:aa:d1:6d:70:9e:7b:ec:
aa:94:f7:fa:9d:37:42:00:2a:44:22:f2:12:9c:85:
59:d9:40:1a:b3:d8:97:74:68:60:4d:a5:a2:46:9c:
65:a5:c9:05:32:54:78:89:1a:6c:5e:43:2a:8e:c0:
d9:2a:0c:03:dc:2d:f7:f3:67:3c:d3:1c:3c:85:34:
e7:bd:5a:c0:df:d5:70:b3:6f:69:b2:82:d9:af:d5:
d4:ff:3f:92:45:14:27:ee:77:87:48:e1:99:86:1f:
0d:88:55:d1:d9:ab:42:cd:c9:6d:72:de:20:0e:02:
7b:5f:09:e9:64:c5:3f:74:c1:50:96:6f:1f:65:71:
f9:eb:cf:bf:68:78:7f:6b:99:2b:30:5b:7e:f7:c7:
3d:cd:0c:fd:71:e4:2f:cb:fc:b6:1c:53:97:32:45:
64:47:db:1f:dc:ad:5e:ac:d4:45:0a:33:f5:23:c3:
e7:50:c0:03:a6:18:dc:58:f9:bc:74:ce:e3:c9:29:
81:52:8c:0a:bb:d0:02:9d:4b:f8:69:0e:85:29:5b:
51:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:89:28:44:EA:4F:0A:94:D2:00:CA:4D:25:1C:55:DF:C5:E6:6F:ED
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/vYkoROpPCpTSAMpNJRxV38Xmb-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.245.5.0/24
83.245.68.0/24
83.245.71.0/24
83.245.78.0/24
83.245.108.0/24
Signature Algorithm: sha256WithRSAEncryption
45:0d:29:5e:99:b5:d3:e3:3d:21:f5:5f:3a:2a:8a:b5:5a:b9:
14:a9:20:2d:ff:5e:50:99:8c:4f:86:04:05:af:c2:cf:f1:05:
36:63:9c:9a:0a:5c:a2:3f:6a:80:bc:e8:53:c0:8d:d1:fa:5f:
69:ae:f9:1e:b0:3d:54:e0:5d:4e:fb:25:f4:82:53:b8:d6:a1:
77:98:9a:d4:32:40:04:a3:3b:56:bd:98:e6:64:2b:93:2d:a2:
f2:95:5c:3a:47:3b:59:08:b6:13:52:ad:76:5d:d9:05:e2:df:
f0:44:5f:9e:8d:3c:7b:3a:6b:a7:35:46:90:5c:05:58:66:3c:
be:d0:51:95:4d:30:f7:cb:a7:14:d3:f9:8c:5d:4d:ab:59:0e:
98:74:82:db:28:bb:b9:53:e5:47:e7:69:58:3c:74:32:bb:f6:
05:ce:5f:65:8f:19:4a:50:99:29:de:5f:50:ba:12:f0:fb:53:
1e:fe:93:0b:0f:98:0e:13:66:67:e0:a4:3b:10:21:26:7e:e9:
c3:88:20:c9:8a:e6:79:61:78:d8:67:ea:f5:78:22:bd:53:a2:
13:45:94:e6:86:a1:68:07:aa:85:3b:99:6c:67:66:d3:b1:a8:
4c:92:2a:88:58:c5:8b:c8:8b:c5:e8:30:df:26:fb:10:52:ad:
0d:1f:68:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 11:42:19 2026 by rpki-client