Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/SBLZeIJXD3Iok5gT5e4Uj-A0C7k.roa
File: SBLZeIJXD3Iok5gT5e4Uj-A0C7k.roa (raw, json)
Hash identifier: rx/yJfhhixvb/560wKVAPp4PPBkdDEWYgcp5l237Szs=
Subject key identifier: 48:12:D9:78:82:57:0F:72:28:93:98:13:E5:EE:14:8F:E0:34:0B:B9
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 01995DF2E653F09E023C0179078CC96D70A3
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/SBLZeIJXD3Iok5gT5e4Uj-A0C7k.roa
Signing time: Thu 18 Sep 2025 17:50:23 +0000
ROA not before: Thu 18 Sep 2025 17:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44565
IP address blocks: 79.171.16.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
185.93.248.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.4.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.17.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Oct 2025 20:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5d:f2:e6:53:f0:9e:02:3c:01:79:07:8c:c9:6d:70:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Sep 18 17:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4812d97882570f7228939813e5ee148fe0340bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:20:f9:49:c2:85:5d:b9:c7:4c:d1:da:ec:5d:
ca:fc:70:0a:0a:f3:85:ad:31:e4:6b:7f:b3:a7:c5:
07:3f:07:0b:ec:92:f3:91:db:9c:4a:4b:84:8f:42:
f2:94:5e:42:09:c5:c2:d8:7b:21:eb:be:a8:db:62:
34:e5:ba:98:b1:8a:72:ed:b6:15:3b:57:37:c2:2f:
4b:0d:c3:66:16:e1:36:5f:88:e5:b3:fd:8b:da:ba:
e3:21:22:14:a5:f9:0d:a9:5b:26:28:41:1b:24:4f:
9b:0f:6a:32:e1:2f:4b:23:46:32:9a:92:ba:f0:a1:
bc:4a:ee:2f:cf:51:72:3d:27:28:ba:d2:81:81:bf:
49:f6:e0:4d:4d:90:3f:b4:5d:32:a9:72:04:30:ef:
06:d9:ea:97:47:52:72:24:59:38:fa:d6:4f:66:c6:
c3:a4:d5:46:a9:29:7c:a6:89:d6:f4:a3:8c:fd:c8:
94:20:6a:ea:96:4c:55:29:dc:66:72:eb:c6:bb:dc:
d1:45:20:0b:be:e6:ed:fe:69:0c:e8:13:ab:0a:60:
a5:ee:1a:94:24:96:01:81:2d:6a:ed:f3:8e:d5:8f:
90:e2:7d:f2:69:60:2d:20:9e:8c:23:c6:bc:8a:b3:
a2:b6:ad:12:34:07:93:3e:09:f7:2e:e0:7e:a8:02:
86:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:12:D9:78:82:57:0F:72:28:93:98:13:E5:EE:14:8F:E0:34:0B:B9
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/SBLZeIJXD3Iok5gT5e4Uj-A0C7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
185.93.248.0/24
188.124.1.0-188.124.2.255
188.124.4.0/24
188.124.7.0-188.124.21.255
188.124.23.0-188.124.30.255
Signature Algorithm: sha256WithRSAEncryption
6e:85:30:27:42:7c:38:51:06:87:8f:cf:b8:ac:a2:99:0f:15:
cd:a1:ac:5f:6f:9f:6b:f6:f2:fb:d8:f3:9e:15:19:96:1a:be:
5d:d7:99:05:86:e9:b3:ea:04:f4:e7:2f:8f:e1:e8:10:b6:93:
21:74:c5:bf:5f:ed:ef:2b:66:37:6a:7c:fc:fd:79:42:98:7a:
a5:c2:3a:db:00:78:e5:08:31:34:f8:a7:1f:6f:e2:7a:37:0b:
2c:44:70:9d:3e:54:d2:93:c7:a4:0f:83:65:16:80:89:93:1a:
94:7c:66:ac:38:d9:58:d2:5b:df:fe:2c:63:56:cc:30:d4:9c:
5e:21:5b:e4:fb:62:c2:52:89:e7:2e:60:95:6d:41:e8:f7:c0:
9b:19:3d:08:61:0d:f0:5d:d6:44:07:20:32:fa:eb:e7:0e:57:
74:2d:65:ba:3c:1f:86:61:c3:85:10:8a:e6:27:7a:a3:84:b9:
45:5e:a9:1a:38:7f:1e:db:88:ac:f3:0e:c5:dc:5b:ea:3d:a1:
4c:89:62:0a:ea:74:a1:e8:54:4d:26:c0:4d:20:56:e7:34:8d:
83:94:4e:30:2e:df:22:02:51:a8:51:35:60:9f:bf:22:73:be:
c5:e6:c9:35:f6:28:5d:8e:fa:9f:b2:8a:93:1d:31:34:61:01:
5c:10:7c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 12 00:12:16 2025 by rpki-client