Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/Wyw6f7z9XFhQdDF9UwLgPYFT6_Q.roa
File: Wyw6f7z9XFhQdDF9UwLgPYFT6_Q.roa (raw, json)
Hash identifier: 1RzZ4RihPLYHjPztE9UylSZaMNlezfJjIV9fNaanWRg=
Subject key identifier: 5B:2C:3A:7F:BC:FD:5C:58:50:74:31:7D:53:02:E0:3D:81:53:EB:F4
Certificate issuer: /CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Certificate serial: 0197F947737C14BB6D360C5BE7CFCA1BA188
Authority key identifier: B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/Wyw6f7z9XFhQdDF9UwLgPYFT6_Q.roa
Signing time: Fri 11 Jul 2025 11:38:18 +0000
ROA not before: Fri 11 Jul 2025 11:38:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61275
IP address blocks: 5.100.176.0/21 maxlen: 21
5.100.184.0/22 maxlen: 22
5.100.188.0/22 maxlen: 22
77.223.161.0/24 maxlen: 24
77.223.162.0/23 maxlen: 23
77.223.164.0/22 maxlen: 22
77.223.168.0/22 maxlen: 22
77.223.172.0/22 maxlen: 22
77.223.176.0/20 maxlen: 20
85.93.224.0/19 maxlen: 19
91.135.48.0/21 maxlen: 21
91.135.56.0/23 maxlen: 23
91.135.58.0/23 maxlen: 23
91.135.58.0/24 maxlen: 24
91.135.59.0/24 maxlen: 24
91.135.60.0/22 maxlen: 22
93.89.112.0/20 maxlen: 20
178.248.96.0/21 maxlen: 21
185.3.0.0/22 maxlen: 22
185.24.188.0/22 maxlen: 22
185.193.92.0/22 maxlen: 22
185.209.224.0/22 maxlen: 22
185.237.36.0/22 maxlen: 22
188.93.184.0/21 maxlen: 21
2a03:ba00::/32 maxlen: 32
2a03:ba01::/32 maxlen: 32
2a03:ba02::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.mft
rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:f9:47:73:7c:14:bb:6d:36:0c:5b:e7:cf:ca:1b:a1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Validity
Not Before: Jul 11 11:38:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b2c3a7fbcfd5c585074317d5302e03d8153ebf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d1:c8:c8:e2:12:67:8c:fb:22:8b:e7:d2:54:
19:e1:95:19:4a:b9:74:fc:e6:ef:4a:9b:66:7f:fb:
6e:13:a6:94:9c:e4:16:82:1a:f9:79:73:b5:73:1b:
7b:34:7e:d5:56:4a:25:86:34:1e:09:cd:bf:b4:92:
d6:c3:9d:26:c3:06:da:ac:90:90:71:31:e9:9a:72:
00:ca:8a:e3:10:9b:4c:f4:94:83:21:f7:04:77:15:
1c:5b:3f:ed:dc:28:58:c4:89:45:d7:41:88:b2:37:
4b:66:84:c1:64:8e:db:f6:3d:e8:20:7f:80:4f:83:
00:c1:b3:09:76:0a:2b:42:d2:fe:66:ad:0e:e3:41:
ae:ae:50:59:d5:61:d7:1b:fd:13:dc:a8:20:a5:26:
c6:90:fb:c7:3a:89:97:4d:9a:74:7e:69:be:c0:8f:
41:b3:f2:5e:38:55:6e:41:2f:06:91:b7:18:cd:d7:
77:1c:9c:19:40:ad:c3:12:a3:31:18:79:1a:f6:fc:
6e:0b:e3:cb:bc:ba:7a:81:4a:9c:fc:df:84:df:30:
d2:7f:9d:96:21:a0:85:79:91:60:70:80:6f:4c:59:
05:b5:10:19:6e:07:b8:d9:70:a8:24:97:d6:49:35:
54:19:44:b6:7e:b1:9f:f8:19:ae:94:97:42:45:e3:
86:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:2C:3A:7F:BC:FD:5C:58:50:74:31:7D:53:02:E0:3D:81:53:EB:F4
X509v3 Authority Key Identifier:
keyid:B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/Wyw6f7z9XFhQdDF9UwLgPYFT6_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.176.0/20
77.223.161.0-77.223.191.255
85.93.224.0/19
91.135.48.0/20
93.89.112.0/20
178.248.96.0/21
185.3.0.0/22
185.24.188.0/22
185.193.92.0/22
185.209.224.0/22
185.237.36.0/22
188.93.184.0/21
IPv6:
2a03:ba00::-2a03:ba02:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
93:a7:97:3d:f5:f4:e6:b0:2d:dc:d2:ac:0d:77:b5:01:8f:46:
ae:c5:5b:04:f1:bf:24:a8:86:d2:8b:dd:35:00:95:34:e8:5a:
7f:71:c1:0a:fe:8f:22:dd:2c:65:17:f1:04:4f:21:5d:78:e9:
32:c4:4c:8a:24:d7:db:45:fb:f8:57:89:5d:a8:70:f1:3d:50:
3e:ce:da:93:6f:16:aa:b2:4a:cc:4a:c6:b0:bc:fe:5b:e8:d5:
5e:4a:94:14:05:1e:0d:42:22:08:c8:ab:43:d1:82:94:2b:2e:
b8:ca:f0:78:59:61:36:c4:fe:a2:a2:b7:50:58:4d:1c:a8:c6:
6b:02:33:04:38:72:66:35:f0:3e:a7:ab:99:3d:87:b1:ef:ab:
3f:ea:e2:47:71:d8:90:68:b3:c6:2b:7b:4b:3a:e2:90:a0:6f:
80:f3:9f:2f:9c:a0:4c:5e:c4:66:29:6f:a3:26:bf:f1:f8:e1:
2a:33:df:92:06:6e:a7:af:7c:74:d6:ae:fc:f9:56:38:df:c0:
ce:06:13:3a:b5:90:7d:20:58:d4:53:fa:51:ea:1d:1b:59:4a:
24:24:04:b1:ae:cc:28:ca:6e:e8:4c:e8:08:bd:9b:00:04:e6:
20:fc:6f:d1:e6:ed:61:ed:61:54:9b:d4:84:d2:4e:c4:43:a5:
ef:25:04:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:28:55 2025 by rpki-client