Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RUvdQjjD8LKGv90-350XjXXC3gU.roa
File: RUvdQjjD8LKGv90-350XjXXC3gU.roa (raw, json)
Hash identifier: fnYG5cx2ig4bfpVe/7Arjb7Y1Yf1UVlO9ssMf5VwGpw=
Subject key identifier: 45:4B:DD:42:38:C3:F0:B2:86:BF:DD:3E:DF:9D:17:8D:75:C2:DE:05
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019D7292A2CCE9F9EBBE7582A844977721C5
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RUvdQjjD8LKGv90-350XjXXC3gU.roa
Signing time: Thu 09 Apr 2026 14:08:25 +0000
ROA not before: Thu 09 Apr 2026 14:08:25 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 396547
IP address blocks: 81.19.194.0/24 maxlen: 24
81.19.194.30/32 maxlen: 32
81.19.195.0/24 maxlen: 24
81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.0/24 maxlen: 24
185.100.0.53/32 maxlen: 32
2a10:eec0:abcd::/48 maxlen: 48
2a10:eec0:abcd::30/128 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:72:92:a2:cc:e9:f9:eb:be:75:82:a8:44:97:77:21:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Apr 9 14:08:25 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=454bdd4238c3f0b286bfdd3edf9d178d75c2de05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d3:d0:e0:d3:3a:14:a7:df:38:6d:5f:e3:d0:
e5:07:1f:dc:84:bb:94:c9:de:83:13:b7:1d:6f:93:
4d:88:0d:09:ff:0e:c8:4e:8a:c7:d1:f5:5e:4e:c0:
92:90:3e:cc:a9:c3:29:02:8a:a4:96:95:dd:f2:7b:
cc:9c:d6:f4:f6:a6:d4:ed:8d:65:60:f0:c1:c0:fb:
d4:b1:0d:9d:97:2f:27:78:8b:c7:4a:11:3f:ba:27:
44:fc:ad:2d:a9:ff:9a:b6:f5:36:f7:b8:2d:30:9a:
6b:bb:d3:84:e2:94:ee:3d:1f:63:53:93:fa:bd:c3:
2d:80:aa:3f:ae:12:2e:6d:7f:0e:e3:28:cc:a7:a6:
31:e2:2c:bb:b1:0a:2c:a7:00:44:cd:3a:c2:4c:01:
73:f0:2e:08:49:3f:6d:0b:f4:98:37:23:f0:ef:3a:
5b:f4:3a:44:81:5a:de:a0:35:56:a6:25:43:58:a9:
cf:d7:bc:9f:9a:ab:09:0e:e6:69:ce:c0:8d:ca:8e:
b3:e7:46:b7:5b:e0:b9:c0:55:21:f0:eb:05:4c:35:
be:56:19:65:d5:8e:30:ee:87:10:81:47:38:dc:31:
ce:f2:5b:86:51:99:53:e0:5b:c2:ee:73:4f:8e:34:
9d:1a:83:20:99:4b:10:54:8a:00:4b:ef:b2:ba:5d:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4B:DD:42:38:C3:F0:B2:86:BF:DD:3E:DF:9D:17:8D:75:C2:DE:05
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RUvdQjjD8LKGv90-350XjXXC3gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.194.0/23
185.100.0.0/24
IPv6:
2a10:eec0:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
96:51:90:90:e2:00:d1:c0:79:ca:e5:4e:ee:e4:a0:dc:2c:f8:
a4:a0:34:4b:87:f5:b2:37:bd:a9:ce:42:75:cf:3f:94:b6:b5:
93:2f:55:de:5e:4c:45:e7:12:d1:ff:d0:aa:51:3d:12:dc:50:
da:33:00:6d:52:5c:76:fc:4c:74:bb:5c:df:d2:35:8a:23:47:
5e:89:40:ed:94:8d:6e:b0:6a:45:fa:9a:97:03:50:17:f2:7c:
f8:7f:75:d6:6b:f6:33:2f:3d:c1:29:e9:15:e6:a0:b8:40:2a:
4b:52:d9:64:53:09:31:17:52:fd:d6:39:5c:a9:81:27:17:1f:
45:81:56:cb:e9:03:d2:9b:d2:b9:9f:8c:39:66:b2:1c:4c:13:
0a:34:1f:bd:fc:f0:5a:2a:c6:7f:c4:5b:14:fb:8a:4d:c8:d1:
02:7e:0f:76:fc:e5:7f:ad:c9:19:e8:ed:56:8a:69:fa:06:de:
2a:3d:e5:73:c3:25:1b:51:8b:9a:38:e7:8d:00:01:49:73:af:
fd:34:95:e8:1d:d5:af:29:1b:d3:96:04:b1:f1:3b:2e:d2:2e:
b8:0e:d4:b4:15:a4:95:00:8e:ec:98:b1:3d:f2:6b:8c:a5:5a:
e2:72:a5:58:ec:41:5a:07:9c:cf:71:ad:86:11:89:eb:37:49:
09:b3:44:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:42:36 2026 by rpki-client