Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W9BGxKGVJpBmeALWzsyI0nuTklg.roa
File: W9BGxKGVJpBmeALWzsyI0nuTklg.roa (raw, json)
Hash identifier: FWeMhDmFxlLVFRy1EiOr2jkBLq7AGFcuM4GljxqYBhM=
Subject key identifier: 5B:D0:46:C4:A1:95:26:90:66:78:02:D6:CE:CC:88:D2:7B:93:92:58
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0197E99078561937DB08E9E24C587C2A0A80
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W9BGxKGVJpBmeALWzsyI0nuTklg.roa
Signing time: Tue 08 Jul 2025 10:24:08 +0000
ROA not before: Tue 08 Jul 2025 10:24:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.50.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
167.17.183.0/24 maxlen: 24
167.17.184.0/24 maxlen: 24
167.17.185.0/24 maxlen: 24
167.17.186.0/24 maxlen: 24
167.17.187.0/24 maxlen: 24
167.17.188.0/24 maxlen: 24
167.17.189.0/24 maxlen: 24
167.17.190.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.193.102.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
188.212.121.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.21.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Jul 2025 19:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e9:90:78:56:19:37:db:08:e9:e2:4c:58:7c:2a:0a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 8 10:24:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5bd046c4a1952690667802d6cecc88d27b939258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:0f:6e:58:78:55:ea:97:23:b3:fe:9a:89:
4c:0b:b5:3d:5a:3d:fe:7a:18:17:e6:63:2a:c4:99:
fa:90:b6:32:13:5a:50:61:86:19:d2:fc:8b:1d:62:
ab:0e:46:6f:af:42:bc:6b:0b:ce:15:45:1a:05:ea:
53:e1:45:1f:7a:47:e1:1a:fd:ba:3c:03:fe:d3:53:
dc:e2:7e:8d:a7:8c:85:1f:63:a9:f5:81:63:46:8a:
a6:46:4d:97:5a:e5:8f:39:75:bd:5e:e8:40:ef:44:
08:14:3a:c1:55:c5:37:5a:47:fd:15:57:95:e9:46:
24:19:1a:72:92:59:96:cc:8a:8a:05:d3:67:c5:ea:
b0:d2:8f:82:d4:5e:c0:db:43:d5:e5:b1:9e:08:c6:
64:ae:8d:dd:84:53:49:aa:5d:3c:ce:a8:93:3b:77:
ae:87:36:64:27:7e:9d:45:49:c9:5a:65:6d:b5:8f:
41:f4:dd:72:75:57:1c:fc:16:06:92:69:63:98:84:
37:97:f4:5b:28:e6:83:d9:16:85:15:bc:4a:bc:a6:
76:2f:f9:39:47:ac:62:65:dc:1c:c3:de:b1:7f:a2:
08:f7:7e:b9:45:0e:e6:40:22:e1:0a:19:7d:f4:c3:
6d:01:bc:68:87:01:4f:b6:c1:89:11:ca:da:14:fb:
7c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D0:46:C4:A1:95:26:90:66:78:02:D6:CE:CC:88:D2:7B:93:92:58
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W9BGxKGVJpBmeALWzsyI0nuTklg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.50.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
167.17.183.0-167.17.190.255
185.72.8.0/24
185.141.219.0/24
185.193.102.0/24
185.198.235.0/24
188.64.142.0/24
188.212.121.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
195.88.89.0/24
195.133.192.0/23
212.192.6.0/24
212.192.12.0/23
212.192.15.0/24
212.192.20.0/23
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
10:56:6a:34:a4:3a:3b:53:79:0a:c2:c2:82:73:bd:54:73:66:
9b:82:0f:a6:34:9c:26:34:60:a9:40:db:90:69:3c:72:fe:5f:
a9:47:15:19:01:77:ea:5e:26:f3:63:25:b5:c5:d7:7b:8e:2d:
02:3d:70:dc:5d:5a:db:5f:53:d9:fc:f0:21:86:de:f8:9e:24:
81:eb:55:14:ba:26:8f:1d:78:60:3a:49:5f:87:ed:16:b2:dc:
14:46:6f:11:ad:fe:4b:13:32:45:45:23:34:39:64:40:02:08:
e0:d8:d8:b8:1b:10:b8:eb:07:c2:28:cf:a3:c1:40:bf:ac:d4:
2e:c2:58:1c:cd:fc:60:b1:a2:5b:a0:cd:9e:86:82:41:f6:28:
cc:e9:80:a4:4f:de:db:04:9c:1b:ec:ea:5d:da:5e:b8:cb:fb:
60:3e:cb:35:6e:18:06:b9:9a:99:69:79:66:7b:8d:b1:d8:3f:
90:de:6a:27:3f:c6:86:80:5b:68:d3:85:56:51:10:3b:ad:89:
e7:6e:3c:4e:f1:07:99:02:17:e4:c5:b6:0e:76:64:c8:9a:74:
1e:74:6e:22:4f:da:90:ca:5f:02:45:0d:2c:a9:e8:c9:0f:15:
9f:a2:7d:ef:1c:a3:28:bd:1c:89:d7:d2:b5:44:ae:db:fc:bb:
e3:26:19:6a
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgISAZfpkHhWGTfbCOniTFh8KgqAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwNzA4MTAyNDA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmQwNDZjNGExOTUyNjkwNjY3ODAyZDZjZWNjODhkMjdiOTM5MjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzIPblh4VeqXI7P+molMC7U9Wj3+
ehgX5mMqxJn6kLYyE1pQYYYZ0vyLHWKrDkZvr0K8awvOFUUaBepT4UUfekfhGv26
PAP+01Pc4n6Np4yFH2Op9YFjRoqmRk2XWuWPOXW9XuhA70QIFDrBVcU3Wkf9FVeV
6UYkGRpyklmWzIqKBdNnxeqw0o+C1F7A20PV5bGeCMZkro3dhFNJql08zqiTO3eu
hzZkJ36dRUnJWmVttY9B9N1ydVcc/BYGkmljmIQ3l/RbKOaD2RaFFbxKvKZ2L/k5
R6xiZdwcw96xf6II9365RQ7mQCLhChl99MNtAbxohwFPtsGJEcraFPt8xwIDAQAB
o4ICqDCCAqQwHQYDVR0OBBYEFFvQRsShlSaQZngC1s7MiNJ7k5JYMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvVzlCR3hLR1ZKcEJtZUFMV3pzeUkwbnVUa2xnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG9BggrBgEFBQcBBwEB/wSBrTCBqjCBpwQCAAEwgaADBAAt
kKwDBAAtkK4DBABWazIDBABWa2QDBABccjYDBABdcaswDAMEAKcRtwMEAKcRvgME
ALlICAMEALmN2wMEALnBZgMEALnG6wMEALxAjgMEALzUeQMEAMF8MQMEAMI6IjAM
AwQCwjosAwQAwjouAwQAw1hZAwQBw4XAAwQA1MAGAwQB1MAMAwQA1MAPAwQB1MAU
AwQA1MAXAwQB1MDWMA0GCSqGSIb3DQEBCwUAA4IBAQAQVmo0pDo7U3kKwsKCc71U
c2abgg+mNJwmNGCpQNuQaTxy/l+pRxUZAXfqXibzYyW1xdd7ji0CPXDcXVrbX1PZ
/PAhht74niSB61UUuiaPHXhgOklfh+0WstwURm8Rrf5LEzJFRSM0OWRAAgjg2Ni4
GxC46wfCKM+jwUC/rNQuwlgczfxgsaJboM2ehoJB9ijM6YCkT97bBJwb7Opd2l64
y/tgPss1bhgGuZqZaXlme42x2D+Q3monP8aGgFto04VWURA7rYnnbjxO8QeZAhfk
xbYOdmTImnQedG4iT9qQyl8CRQ0sqejJDxWfon3vHKMovRyJ19K1RK7b/LvjJhlq
-----END CERTIFICATE-----
Generated at Tue Jul 22 04:27:57 2025 by rpki-client