Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5Uqqze0EA8rQbpzcQK8e22XUd0s.roa
File: 5Uqqze0EA8rQbpzcQK8e22XUd0s.roa (raw, json)
Hash identifier: VagYyiLv9xrM+IBBxSvL16xoewVk+69H1JA53nMSGNw=
Subject key identifier: E5:4A:AA:CD:ED:04:03:CA:D0:6E:9C:DC:40:AF:1E:DB:65:D4:77:4B
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 019D3DA94B1CAAD5C93A1F8E457B5AC01362
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5Uqqze0EA8rQbpzcQK8e22XUd0s.roa
Signing time: Mon 30 Mar 2026 07:33:18 +0000
ROA not before: Mon 30 Mar 2026 07:33:18 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 6079
IP address blocks: 77.111.117.0/24 maxlen: 24
77.111.119.0/24 maxlen: 24
77.111.123.0/24 maxlen: 24
91.190.187.0/24 maxlen: 24
92.61.103.0/24 maxlen: 24
92.61.106.0/24 maxlen: 24
92.61.109.0/24 maxlen: 24
185.112.241.0/24 maxlen: 24
185.112.242.0/24 maxlen: 24
185.112.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3d:a9:4b:1c:aa:d5:c9:3a:1f:8e:45:7b:5a:c0:13:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Mar 30 07:33:18 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e54aaacded0403cad06e9cdc40af1edb65d4774b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f3:81:cb:1b:b9:63:db:fd:a8:48:8c:49:17:
b6:b5:92:45:9f:59:3e:97:73:28:9f:83:02:ef:b5:
b0:98:5d:67:fc:50:f7:79:20:60:22:83:5d:46:4c:
b9:c6:97:11:37:33:88:19:06:12:17:0f:85:6b:f3:
6d:d3:44:e4:ab:57:2b:c6:16:9d:c3:ff:b6:d1:b5:
42:4c:40:ea:11:de:5b:6d:00:08:47:ae:31:19:12:
f4:b3:27:bc:13:43:79:f7:0c:47:51:66:8e:f3:5f:
d1:63:47:66:e2:b6:aa:21:29:8a:e1:c8:22:04:05:
89:94:52:7a:16:b5:75:c2:5f:90:fe:28:e0:37:a1:
df:b4:13:d5:8d:88:30:96:48:8d:33:d9:53:df:d2:
1d:81:cd:a9:70:64:f9:b7:f2:0b:b7:ed:30:d0:f6:
72:7e:3c:b6:d0:58:34:93:53:c6:60:74:3e:73:1a:
1d:53:34:a9:4d:bb:48:f3:bf:85:49:2a:0e:7e:70:
9a:bc:eb:d4:4a:9d:02:17:dd:ac:0c:74:49:4c:59:
c2:6f:65:ee:f5:b7:0b:9b:da:c5:90:53:2d:a3:1d:
74:39:3a:4f:36:ee:61:94:08:e9:17:9b:f3:e4:7f:
c5:8f:33:c8:25:ea:9d:d5:af:6c:0a:9c:ff:04:b6:
8a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4A:AA:CD:ED:04:03:CA:D0:6E:9C:DC:40:AF:1E:DB:65:D4:77:4B
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5Uqqze0EA8rQbpzcQK8e22XUd0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.117.0/24
77.111.119.0/24
77.111.123.0/24
91.190.187.0/24
92.61.103.0/24
92.61.106.0/24
92.61.109.0/24
185.112.241.0-185.112.243.255
Signature Algorithm: sha256WithRSAEncryption
09:94:2f:93:83:ae:ee:90:c0:f0:4c:6a:ed:92:56:b2:4b:27:
08:d2:7d:9c:48:5e:b5:40:02:de:c3:80:bd:a0:b4:bd:e5:0d:
71:96:09:3c:e7:62:34:f7:0d:d2:48:1a:45:70:8b:e7:e8:b4:
47:33:13:5b:22:37:1e:7e:11:84:9e:da:87:7e:6e:ee:a9:bc:
2b:e3:4f:b4:f7:a9:04:db:0d:7e:eb:80:f6:9b:20:b4:cb:6c:
46:17:f6:3c:70:19:65:b6:14:fe:46:82:25:23:6a:3b:4d:27:
24:d2:9b:8a:7a:7e:47:5d:07:bd:ac:b8:d2:3f:bc:f6:98:87:
50:b4:99:17:19:18:7d:ac:18:a8:e4:ee:16:93:07:9b:29:c2:
5e:a3:02:20:24:e4:e9:48:62:c1:52:ed:c0:4c:d5:30:b3:90:
3f:5a:cd:db:a6:91:eb:f2:0f:42:86:87:c0:64:44:a9:c4:34:
d2:23:73:fe:7e:a8:41:eb:c1:6e:01:32:99:6d:d0:1f:e2:f7:
21:77:07:87:06:29:a4:af:70:91:13:0f:43:d2:37:39:bd:78:
53:d8:15:50:29:d6:c4:d0:e8:99:46:89:8c:ee:3a:cb:d7:00:
8a:fb:2d:9d:ff:c0:fe:dc:ac:e2:c3:c3:1f:fb:3a:b1:24:8f:
e4:bf:56:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 01:49:29 2026 by rpki-client