Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ugdE2fHJoj1nrT-1CnezyW_werE.roa
File: ugdE2fHJoj1nrT-1CnezyW_werE.roa (raw, json)
Hash identifier: x83Ck/wwwYTnq7o4JXvJeOIx2gORXTKJDX2nPlY8DAI=
Subject key identifier: BA:07:44:D9:F1:C9:A2:3D:67:AD:3F:B5:0A:77:B3:C9:6F:F0:7A:B1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01980A92CA6371F3C491E7582C111C395D65
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ugdE2fHJoj1nrT-1CnezyW_werE.roa
Signing time: Mon 14 Jul 2025 20:14:08 +0000
ROA not before: Mon 14 Jul 2025 20:14:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44559
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.227.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.57.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
212.192.251.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:0a:92:ca:63:71:f3:c4:91:e7:58:2c:11:1c:39:5d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 20:14:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba0744d9f1c9a23d67ad3fb50a77b3c96ff07ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:53:b4:f9:98:fa:1f:38:1f:27:2f:73:b2:84:
f2:e4:e6:fd:91:45:eb:aa:82:58:d9:8c:9d:b2:d8:
c6:49:1e:1a:28:64:20:60:32:05:1c:57:f3:3d:e0:
7f:1c:50:a2:8e:ef:a4:e6:84:6b:e3:b4:8c:1d:fe:
e0:cc:10:6f:9c:38:e5:54:03:28:f9:d4:4a:bd:3d:
91:34:cf:cf:d2:d1:17:19:ac:73:17:1e:2c:2d:b9:
0e:a7:cf:c7:d0:7b:0b:42:26:e2:12:8d:35:c8:43:
b4:10:06:9c:e8:be:4b:79:64:5b:87:5a:81:fd:a9:
a2:ec:a1:27:03:11:6e:c5:bf:67:d1:3c:e8:45:b4:
09:0a:13:55:de:1d:81:3c:a7:1a:8c:90:13:94:90:
93:61:e1:6d:4c:93:2f:0b:9a:44:e9:1e:9a:34:36:
1b:47:54:3b:4a:b0:9a:2e:93:99:47:10:a6:8c:11:
de:c4:50:c6:86:fe:f3:46:02:e6:f6:13:9d:8d:14:
d9:6b:58:c0:1e:79:05:2b:3b:fd:87:b0:e3:80:96:
e9:e3:8c:51:c5:bb:77:86:f8:46:13:2a:eb:1a:c8:
a0:b7:02:55:85:0e:3b:6b:c8:cf:92:f6:d8:88:bb:
e7:54:9a:66:30:57:d8:d6:21:a7:f1:c1:35:b9:86:
43:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:07:44:D9:F1:C9:A2:3D:67:AD:3F:B5:0A:77:B3:C9:6F:F0:7A:B1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ugdE2fHJoj1nrT-1CnezyW_werE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/23
62.76.231.0/24
62.76.235.0/24
185.72.10.0/24
192.124.183.0/24
192.124.188.0/24
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.91.0/24
193.124.94.0/24
193.124.226.0/24
194.58.43.0/24
194.58.58.0/24
194.58.60.0/24
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.33.0-194.87.34.255
194.87.36.0/24
194.87.42.0/24
194.87.63.0/24
194.87.78.0/24
194.87.116.0/23
194.87.120.0/23
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.229.0/24
194.87.231.0/24
194.135.23.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.35.0/24
195.133.56.0-195.133.58.255
195.133.60.0/23
195.133.80.0/24
195.133.82.0/24
212.192.210.0/23
212.192.242.0/24
212.192.251.0/24
212.193.10.0/24
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
97:7a:06:bb:50:c8:7e:f6:51:12:26:aa:5e:37:e3:12:9c:08:
81:f3:ac:9d:78:4d:69:d1:8e:35:55:4f:52:2e:12:03:88:60:
0a:79:ec:a3:c7:80:4a:41:e7:c4:d8:a0:85:8d:b6:11:e7:e3:
13:3d:2e:76:ed:08:9c:ed:8c:e6:2e:d3:18:17:d4:81:0f:a5:
8b:d6:38:03:32:5c:49:51:95:5c:8e:af:e2:97:5e:4d:6a:a8:
7b:0b:e7:53:21:3d:7f:8b:f3:c7:8d:24:f8:a8:99:0b:a7:2b:
6b:7a:87:06:a5:fa:90:b3:65:a7:98:39:fb:47:54:24:14:ae:
cc:10:f3:9f:a8:bd:3d:2e:aa:e9:da:5e:9f:9c:8d:a1:b0:63:
92:79:8c:80:4b:e0:e7:de:30:e8:4d:b6:b3:77:75:34:c9:18:
07:a8:03:c5:36:34:79:a8:38:c6:77:69:74:1a:65:d0:a2:27:
1f:1b:cf:06:58:5c:f7:e1:e8:00:7e:ac:d3:aa:49:0f:dd:36:
9e:4d:4a:8c:54:7b:da:3d:d2:c2:5b:c5:df:0f:ad:84:94:1b:
3f:62:94:6d:5d:a0:63:7e:4f:f9:60:4c:2f:ec:08:bf:4b:5c:
53:0b:84:6b:c6:87:86:08:dd:9c:64:a9:d3:05:20:1e:97:b0:
0e:67:ca:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 02:06:26 2025 by rpki-client