Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/Gza78Sw2rPwU0qzN5jBJIkH3rBg.roa
File: Gza78Sw2rPwU0qzN5jBJIkH3rBg.roa (raw, json)
Hash identifier: mDM/zKZnr/1RAt2xpzi5U56rCqzi7aa5HltLEWsWA88=
Subject key identifier: 1B:36:BB:F1:2C:36:AC:FC:14:D2:AC:CD:E6:30:49:22:41:F7:AC:18
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 0197D4AC79ECA25AD269A08C66747528093B
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/Gza78Sw2rPwU0qzN5jBJIkH3rBg.roa
Signing time: Fri 04 Jul 2025 09:02:42 +0000
ROA not before: Fri 04 Jul 2025 09:02:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35470
IP address blocks: 31.3.96.0/21 maxlen: 24
79.170.88.0/21 maxlen: 24
81.4.84.0/22 maxlen: 24
83.96.200.0/22 maxlen: 24
83.96.204.0/22 maxlen: 24
83.96.212.0/22 maxlen: 24
83.96.216.0/22 maxlen: 24
83.96.220.0/22 maxlen: 24
83.96.236.0/22 maxlen: 24
83.96.240.0/22 maxlen: 24
83.96.244.0/22 maxlen: 24
83.96.252.0/22 maxlen: 24
85.10.176.0/22 maxlen: 24
85.10.184.0/22 maxlen: 22
85.10.184.0/24 maxlen: 24
85.10.185.0/24 maxlen: 24
85.10.186.0/24 maxlen: 24
85.10.187.0/24 maxlen: 24
85.10.188.0/22 maxlen: 22
85.222.224.0/21 maxlen: 24
85.222.224.0/22 maxlen: 24
89.31.96.0/21 maxlen: 24
89.31.98.0/23 maxlen: 24
93.191.128.0/21 maxlen: 24
93.191.134.0/24 maxlen: 24
141.138.192.0/20 maxlen: 24
141.138.207.0/24 maxlen: 24
185.3.208.0/22 maxlen: 24
185.110.172.0/22 maxlen: 24
185.110.200.0/22 maxlen: 24
193.138.205.0/24 maxlen: 24
193.138.206.0/23 maxlen: 24
194.60.207.0/24 maxlen: 24
213.187.240.0/21 maxlen: 24
2a02:348::/32 maxlen: 48
2a02:348:14::/48 maxlen: 48
2a02:348:15::/48 maxlen: 48
2a02:348:1e::/48 maxlen: 48
2a02:348:28::/48 maxlen: 48
2a02:348:29::/48 maxlen: 48
2a02:348:32::/48 maxlen: 48
2a02:348:33::/48 maxlen: 48
2a02:348:35::/48 maxlen: 48
2a02:348:36::/48 maxlen: 48
2a02:348:37::/48 maxlen: 48
2a02:348:38::/48 maxlen: 48
2a02:348:39::/48 maxlen: 48
2a02:348:3a::/48 maxlen: 48
2a02:348:3b::/48 maxlen: 48
2a02:348:3c::/48 maxlen: 48
2a02:348:46::/48 maxlen: 48
2a02:348:47::/48 maxlen: 48
2a02:348:4b::/48 maxlen: 48
2a02:348:4c::/48 maxlen: 48
2a02:348:4f::/48 maxlen: 48
2a02:348:50::/48 maxlen: 48
2a02:348:53::/48 maxlen: 48
2a02:348:54::/48 maxlen: 48
2a02:348:55::/48 maxlen: 48
2a02:348:56::/48 maxlen: 48
2a02:348:57::/48 maxlen: 48
2a02:348:58::/48 maxlen: 48
2a02:348:59::/48 maxlen: 48
2a02:348:5a::/48 maxlen: 48
2a02:348:5b::/48 maxlen: 48
2a02:348:5d::/48 maxlen: 48
2a02:348:5e::/48 maxlen: 48
2a02:348:5f::/48 maxlen: 48
2a02:348:60::/48 maxlen: 48
2a02:348:61::/48 maxlen: 48
2a02:348:62::/48 maxlen: 48
2a02:348:63::/48 maxlen: 48
2a02:348:6e::/48 maxlen: 48
2a02:348:6f::/48 maxlen: 48
2a02:348:70::/48 maxlen: 48
2a02:348:71::/48 maxlen: 48
2a02:348:73::/48 maxlen: 48
2a02:348:74::/48 maxlen: 48
2a02:348:75::/48 maxlen: 48
2a02:348:76::/48 maxlen: 48
2a02:348:77::/48 maxlen: 48
2a02:348:78::/48 maxlen: 48
2a02:348:79::/48 maxlen: 48
2a02:348:7b::/48 maxlen: 48
2a02:348:7c::/48 maxlen: 48
2a02:348:7d::/48 maxlen: 48
2a02:348:7e::/48 maxlen: 48
2a02:348:7f::/48 maxlen: 48
2a02:348:80::/48 maxlen: 48
2a02:348:81::/48 maxlen: 48
2a02:348:82::/48 maxlen: 48
2a02:348:83::/48 maxlen: 48
2a02:348:84::/48 maxlen: 48
2a02:348:85::/48 maxlen: 48
2a02:348:86::/48 maxlen: 48
2a02:348:87::/48 maxlen: 48
2a02:348:88::/48 maxlen: 48
2a02:348:89::/48 maxlen: 48
2a02:348:8a::/48 maxlen: 48
2a02:348:8b::/48 maxlen: 48
2a02:348:8c::/48 maxlen: 48
2a02:348:8d::/48 maxlen: 48
2a02:348:8e::/48 maxlen: 48
2a02:348:8f::/48 maxlen: 48
2a02:348:90::/48 maxlen: 48
2a02:348:91::/48 maxlen: 48
2a02:348:92::/48 maxlen: 48
2a02:348:94::/48 maxlen: 48
2a02:348:95::/48 maxlen: 48
2a02:348:96::/48 maxlen: 48
2a02:348:97::/48 maxlen: 48
2a02:348:98::/48 maxlen: 48
2a02:348:99::/48 maxlen: 48
2a02:348:9a::/48 maxlen: 48
2a02:348:9b::/48 maxlen: 48
2a02:348:9c::/48 maxlen: 48
2a02:348:ac::/48 maxlen: 48
2a02:348:b1::/48 maxlen: 48
2a02:348:b2::/48 maxlen: 48
2a02:348:b3::/48 maxlen: 48
2a02:348:b4::/48 maxlen: 48
2a02:348:b9::/48 maxlen: 48
2a02:348:ba::/48 maxlen: 48
2a02:348:bb::/48 maxlen: 48
2a02:348:bc::/48 maxlen: 48
2a02:348:c8::/48 maxlen: 48
2a02:348:5e6::/48 maxlen: 48
2a02:348:1001::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 22:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:ac:79:ec:a2:5a:d2:69:a0:8c:66:74:75:28:09:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jul 4 09:02:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b36bbf12c36acfc14d2accde630492241f7ac18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:25:10:1a:63:ad:4d:83:33:18:d9:93:96:ee:
90:7a:21:10:77:42:af:07:5f:fa:05:c7:fb:99:ed:
e8:15:8d:49:99:4c:d5:c4:fb:9d:a5:35:c9:47:17:
7c:b7:a6:a6:0d:07:9f:5f:8b:e6:2b:9a:33:87:39:
88:41:c7:a2:e1:86:df:c0:51:05:86:2a:0b:a9:85:
7c:6a:52:69:5f:4a:b8:17:ee:bd:ea:ab:94:f1:3f:
92:00:0f:41:a7:93:dc:49:5a:40:58:af:a6:47:66:
a6:57:1e:f9:9f:2c:e4:ad:11:e0:63:4d:02:86:ee:
6e:34:d6:dd:63:3f:f0:5e:21:26:f5:57:bc:71:82:
32:40:d2:5c:43:b7:89:1e:1e:c3:fd:b1:60:ff:b0:
88:f7:dd:a3:f5:31:97:39:b0:5f:f8:ed:7d:d9:50:
53:71:96:bc:8f:f6:0d:eb:0c:6f:b2:76:08:41:a9:
b9:93:d2:f8:30:1d:cf:7a:1c:8a:33:44:4a:43:e8:
10:ca:84:f7:5c:a0:6b:04:0c:85:79:80:c1:ed:3b:
a4:8f:38:42:61:e5:3e:dd:27:72:44:df:f3:c1:31:
b2:60:91:c8:04:50:a3:ab:89:fe:3a:ad:60:ce:5a:
a9:9c:90:b1:da:72:05:46:8d:69:53:52:0a:41:f6:
63:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:36:BB:F1:2C:36:AC:FC:14:D2:AC:CD:E6:30:49:22:41:F7:AC:18
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/Gza78Sw2rPwU0qzN5jBJIkH3rBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.96.0/21
79.170.88.0/21
81.4.84.0/22
83.96.200.0/21
83.96.212.0-83.96.223.255
83.96.236.0-83.96.247.255
83.96.252.0/22
85.10.176.0/22
85.10.184.0/21
85.222.224.0/21
89.31.96.0/21
93.191.128.0/21
141.138.192.0/20
185.3.208.0/22
185.110.172.0/22
185.110.200.0/22
193.138.205.0-193.138.207.255
194.60.207.0/24
213.187.240.0/21
IPv6:
2a02:348::/32
Signature Algorithm: sha256WithRSAEncryption
50:b4:6f:b6:ac:17:e7:37:f5:58:15:3c:8f:64:3c:a0:00:a3:
6d:2e:66:b2:38:fc:3a:09:e1:e1:8e:c3:05:9e:34:1d:35:29:
ea:14:01:4a:0c:78:a3:c8:8f:6e:c5:fe:9f:c0:56:a7:31:19:
23:e9:6e:7e:86:99:68:38:b8:74:79:dc:37:aa:06:9c:5c:0a:
c0:b0:d8:bb:87:8e:a4:fd:e8:8b:81:27:c5:99:2a:9b:44:1a:
e0:4f:6f:02:87:4e:a1:3d:9e:7c:1a:e4:94:4c:2c:92:e1:96:
7e:99:5c:50:c9:1b:b5:25:4a:53:02:60:0d:24:b9:a5:fc:6b:
da:22:a0:c9:87:3b:75:f1:64:b8:e4:36:6f:3f:bf:d2:23:8e:
94:a9:d8:1b:92:25:5a:01:34:58:42:cf:66:a2:7a:18:35:e4:
c7:d7:4f:c5:1e:50:2a:5b:4c:4f:dc:31:7f:11:d5:4b:64:03:
d4:10:b5:7e:c8:38:6a:43:c5:d1:d8:81:01:a9:1f:01:4d:57:
d8:13:7a:40:42:b7:e6:30:f4:cc:9b:eb:6c:11:c7:50:af:5f:
37:02:08:d6:b2:9e:82:db:ba:07:3c:f0:85:d6:4a:0e:14:bd:
77:cc:72:ad:63:00:c7:2c:aa:25:f4:93:ff:4f:7e:76:2b:9e:
74:f4:7d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 07:37:23 2025 by rpki-client