Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/E0FhH7aNsDOMh5ZSlQ4FDkv-nU0.roa
File: E0FhH7aNsDOMh5ZSlQ4FDkv-nU0.roa (raw, json)
Hash identifier: q/8wfiJe6Z5yCg6R7Ws4sjAshSjQMW+hXl1C4xiGP+U=
Subject key identifier: 13:41:61:1F:B6:8D:B0:33:8C:87:96:52:95:0E:05:0E:4B:FE:9D:4D
Certificate issuer: /CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Certificate serial: 019E40BC34CB0984F3552DBD183C58B46FF2
Authority key identifier: A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/E0FhH7aNsDOMh5ZSlQ4FDkv-nU0.roa
Signing time: Tue 19 May 2026 14:55:36 +0000
ROA not before: Tue 19 May 2026 14:55:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206996
IP address blocks: 5.249.160.0/24 maxlen: 24
5.249.161.0/24 maxlen: 24
5.249.162.0/24 maxlen: 24
5.249.163.0/24 maxlen: 24
5.249.164.0/24 maxlen: 24
5.249.165.0/24 maxlen: 24
5.249.166.0/24 maxlen: 24
45.141.36.0/24 maxlen: 24
45.141.37.0/24 maxlen: 24
45.146.252.0/24 maxlen: 24
45.146.253.0/24 maxlen: 24
45.146.254.0/24 maxlen: 24
45.146.255.0/24 maxlen: 24
88.214.56.0/24 maxlen: 24
88.214.57.0/24 maxlen: 24
88.214.58.0/24 maxlen: 24
88.214.59.0/24 maxlen: 24
92.42.44.0/24 maxlen: 24
92.42.45.0/24 maxlen: 24
92.42.46.0/24 maxlen: 24
92.42.47.0/24 maxlen: 24
134.255.216.0/24 maxlen: 24
134.255.217.0/24 maxlen: 24
134.255.218.0/24 maxlen: 24
134.255.219.0/24 maxlen: 24
134.255.231.0/24 maxlen: 24
134.255.232.0/24 maxlen: 24
134.255.233.0/24 maxlen: 24
134.255.234.0/24 maxlen: 24
147.189.168.0/24 maxlen: 24
147.189.169.0/24 maxlen: 24
147.189.170.0/24 maxlen: 24
147.189.171.0/24 maxlen: 24
147.189.172.0/24 maxlen: 24
147.189.173.0/24 maxlen: 24
147.189.174.0/24 maxlen: 24
147.189.175.0/24 maxlen: 24
185.223.28.0/24 maxlen: 24
185.223.29.0/24 maxlen: 24
185.223.30.0/24 maxlen: 24
185.223.31.0/24 maxlen: 24
185.239.236.0/24 maxlen: 24
185.239.237.0/24 maxlen: 24
185.239.238.0/24 maxlen: 24
185.239.239.0/24 maxlen: 24
185.249.196.0/24 maxlen: 24
185.249.197.0/24 maxlen: 24
185.249.198.0/24 maxlen: 24
185.249.199.0/24 maxlen: 24
193.23.126.0/24 maxlen: 24
193.23.127.0/24 maxlen: 24
193.23.160.0/24 maxlen: 24
193.23.161.0/24 maxlen: 24
193.34.69.0/24 maxlen: 24
193.203.238.0/24 maxlen: 24
194.156.88.0/24 maxlen: 24
194.156.89.0/24 maxlen: 24
194.156.90.0/24 maxlen: 24
194.156.91.0/24 maxlen: 24
2a0c:3580::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:bc:34:cb:09:84:f3:55:2d:bd:18:3c:58:b4:6f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Validity
Not Before: May 19 14:55:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1341611fb68db0338c879652950e050e4bfe9d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:db:2d:77:b4:fd:85:02:73:51:1e:78:39:d9:
0f:e9:cb:b9:7c:e2:fc:82:12:3d:d1:69:cc:f7:85:
5a:b8:a5:f3:79:e6:a4:45:58:7c:43:ea:c1:74:09:
c5:d3:a0:ff:66:7b:1e:4d:f4:4a:12:19:30:77:1a:
58:c9:0d:89:a7:14:57:91:51:ae:b3:1f:55:d7:1b:
92:8f:2d:67:ce:c6:99:38:21:14:6a:12:1f:11:45:
da:fa:0f:33:02:ec:8d:31:3e:68:43:ae:8f:a5:7b:
18:7f:33:ad:b0:5b:17:2f:f9:bb:85:60:ad:01:40:
6a:bb:84:cb:59:9d:65:1f:b0:99:7b:e0:bb:b9:4c:
b6:26:04:66:1d:bb:e6:13:92:c8:40:fd:f4:6e:55:
68:8f:d2:b7:2b:b3:47:7f:b5:e1:47:25:38:1f:fa:
65:3d:35:95:15:00:a2:56:8f:0e:1b:0f:32:11:a8:
1c:f7:fe:8d:35:56:94:51:2b:9a:db:58:fd:2a:47:
26:4d:4f:88:d3:66:bb:98:86:c5:a2:26:7a:f4:bf:
94:e4:9c:3f:9e:9b:d3:25:b1:c4:a0:63:c4:d9:ca:
72:20:f2:50:25:88:cd:7c:9f:b5:7a:47:1a:4f:f6:
35:8c:48:69:f3:00:19:7f:4f:08:d6:69:e5:8d:ee:
92:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:41:61:1F:B6:8D:B0:33:8C:87:96:52:95:0E:05:0E:4B:FE:9D:4D
X509v3 Authority Key Identifier:
keyid:A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/E0FhH7aNsDOMh5ZSlQ4FDkv-nU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.160.0-5.249.166.255
45.141.36.0/23
45.146.252.0/22
88.214.56.0/22
92.42.44.0/22
134.255.216.0/22
134.255.231.0-134.255.234.255
147.189.168.0/21
185.223.28.0/22
185.239.236.0/22
185.249.196.0/22
193.23.126.0/23
193.23.160.0/23
193.34.69.0/24
193.203.238.0/24
194.156.88.0/22
IPv6:
2a0c:3580::/29
Signature Algorithm: sha256WithRSAEncryption
24:75:00:c8:e9:32:d6:72:c9:36:09:d3:ab:ac:aa:15:6b:0f:
98:77:06:1a:26:0b:8a:16:19:84:4e:89:6f:50:4b:3d:b5:37:
e7:fb:3d:26:20:c5:f8:6a:55:0d:c3:06:67:f8:99:7d:99:6c:
ad:48:e9:78:b2:86:28:8c:81:74:44:65:7a:9f:11:0f:6a:27:
c6:06:4f:d5:c4:3f:da:b4:cd:9e:3f:b7:38:6e:9e:32:b3:88:
cd:f3:53:8c:16:94:57:a2:eb:a4:bf:1a:7f:97:2b:98:14:7b:
4a:a5:e0:04:4b:73:da:ef:8e:04:0c:33:8f:e0:5f:3b:87:a8:
37:dc:88:20:34:e6:ed:98:45:bd:99:51:b7:b6:ef:8d:f6:74:
aa:4c:b6:fa:dc:2a:2e:89:8a:8b:21:1f:3d:e6:da:5e:2a:20:
1e:f9:7f:5d:3f:78:e0:cd:e9:ca:02:0a:8f:5f:03:0e:27:3c:
e3:14:cb:1a:be:a5:56:05:a1:c9:2e:f0:86:8a:ad:73:b3:80:
65:d7:92:05:6c:0e:09:52:42:5e:d5:d9:71:a1:9c:5b:0e:e6:
f4:72:d5:34:92:05:20:c6:b6:35:ea:3d:5c:ea:6f:3d:c0:fe:
c0:09:e5:4a:9f:7e:72:8f:00:74:a9:2e:28:be:c2:01:d7:c3:
4c:6f:8e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:31:17 2026 by rpki-client