Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/IJG_JRq8zqVeP27DEEQlEOWiORs.roa
File: IJG_JRq8zqVeP27DEEQlEOWiORs.roa (raw, json)
Hash identifier: KQiGsENOOusiUE4UCS33mYYGJOSPmGw08JsBGm2uPG4=
Subject key identifier: 20:91:BF:25:1A:BC:CE:A5:5E:3F:6E:C3:10:44:25:10:E5:A2:39:1B
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0198385313D0724732C746DA22ABEBD4A900
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/IJG_JRq8zqVeP27DEEQlEOWiORs.roa
Signing time: Wed 23 Jul 2025 17:27:05 +0000
ROA not before: Wed 23 Jul 2025 17:27:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3356
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.0.0/17 maxlen: 17
195.203.128.0/17 maxlen: 17
195.203.152.0/23 maxlen: 23
195.203.156.0/22 maxlen: 22
217.27.0.0/23 maxlen: 23
217.27.2.0/23 maxlen: 23
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
2a03:5000:271::/48 maxlen: 48
2a03:5000:272::/48 maxlen: 48
2a03:5000:291::/48 maxlen: 48
2a03:5000:292::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.mft
rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:38:53:13:d0:72:47:32:c7:46:da:22:ab:eb:d4:a9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Jul 23 17:27:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2091bf251abccea55e3f6ec310442510e5a2391b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ab:b3:55:88:bf:6d:bb:a5:00:54:d5:c9:c5:
54:49:f4:cd:8f:cc:2b:5a:6a:e6:41:36:88:7d:ae:
7b:49:74:33:c2:d5:8f:5d:2d:d4:18:5c:5c:7f:83:
73:cb:a4:e4:81:1d:aa:90:c4:7b:94:d6:d2:f3:63:
e1:c0:de:d6:58:e1:76:90:02:30:18:71:aa:27:7e:
60:46:f3:ae:ae:62:9c:8f:84:ba:b8:cc:fd:8d:3a:
10:06:5a:a4:62:03:b9:9c:9f:76:43:6e:b1:2d:5c:
f7:10:9d:66:c5:fc:b1:79:30:9c:2b:58:6a:ad:9e:
5f:ca:fa:b8:21:6c:f8:3c:62:be:3f:91:ef:c5:3f:
06:cf:6e:40:47:0a:d9:c3:05:b0:d3:6d:ce:c0:71:
e5:5c:b7:75:7f:04:d2:2c:f4:1f:d3:f6:80:e3:9d:
32:93:ca:3f:22:4b:53:85:5b:91:f2:80:e8:f4:13:
a6:53:38:41:64:7f:70:c2:04:6a:12:00:05:93:c8:
95:85:f0:fb:d8:80:79:e1:15:0a:d4:23:c9:b2:cd:
65:a7:3c:26:96:f3:ab:d7:fa:2d:cb:2c:ce:3b:98:
63:3e:08:c7:a1:6b:01:a4:cc:a4:54:9a:23:b7:32:
0c:30:75:8d:7b:2c:34:96:70:fa:ac:b4:b5:5d:9f:
17:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:91:BF:25:1A:BC:CE:A5:5E:3F:6E:C3:10:44:25:10:E5:A2:39:1B
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/IJG_JRq8zqVeP27DEEQlEOWiORs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.0.0/16
217.27.0.0-217.27.4.255
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
2a03:5000:271::-2a03:5000:272:ffff:ffff:ffff:ffff:ffff
2a03:5000:291::-2a03:5000:292:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ab:2a:5c:01:bd:29:2c:3a:63:bb:45:50:ce:e0:8b:76:42:34:
9d:e2:b0:9b:f6:b6:2f:38:6a:ae:a8:68:a9:24:21:03:f1:4f:
18:ac:6f:a9:9a:0a:b6:dc:d5:5e:fc:9c:3b:1f:dc:69:91:6c:
6d:d2:94:10:5c:ba:3e:03:69:20:39:02:c9:66:91:28:45:d3:
37:45:db:be:60:77:8e:20:b2:94:38:34:1c:7e:4c:77:5a:72:
22:5e:f8:88:62:d1:88:95:f6:72:0c:a4:a5:c9:cf:3c:22:e5:
37:f0:25:a3:ad:30:03:17:7f:ce:54:c4:73:7c:82:05:c7:bf:
24:5b:d7:3d:cc:c4:b0:03:2d:6a:b7:9a:2d:b6:64:0b:61:60:
a8:38:8d:07:8e:55:19:b9:56:6a:23:7b:96:a8:71:ab:5a:06:
0b:e6:87:72:88:6c:6b:f8:17:f5:5d:4a:04:5a:27:4d:ec:fb:
e2:f7:3f:7a:b7:e9:9f:34:9d:55:e5:50:08:41:84:b0:81:26:
30:ef:46:b0:e4:66:e6:7c:7e:42:ab:77:e9:bf:65:cd:46:58:
b1:e1:2c:e6:91:e6:16:23:17:8a:f3:23:fb:b2:c9:f6:6c:6f:
77:40:4c:48:03:11:be:72:b5:45:f5:2c:ea:b3:d7:ff:07:4f:
0e:b7:68:85
-----BEGIN CERTIFICATE-----
MIIHXDCCBkSgAwIBAgISAZg4UxPQckcyx0baIqvr1KkAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0Y2M2YjljMzdmYWEwZGEzYjQxMjAwN2MwYjEwYjJjNWJm
MmNmNGUwHhcNMjUwNzIzMTcyNzA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDkxYmYyNTFhYmNjZWE1NWUzZjZlYzMxMDQ0MjUxMGU1YTIzOTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6uzVYi/bbulAFTVycVUSfTNj8wr
WmrmQTaIfa57SXQzwtWPXS3UGFxcf4Nzy6TkgR2qkMR7lNbS82PhwN7WWOF2kAIw
GHGqJ35gRvOurmKcj4S6uMz9jToQBlqkYgO5nJ92Q26xLVz3EJ1mxfyxeTCcK1hq
rZ5fyvq4IWz4PGK+P5HvxT8Gz25ARwrZwwWw023OwHHlXLd1fwTSLPQf0/aA450y
k8o/IktThVuR8oDo9BOmUzhBZH9wwgRqEgAFk8iVhfD72IB54RUK1CPJss1lpzwm
lvOr1/otyyzOO5hjPgjHoWsBpMykVJojtzIMMHWNeyw0lnD6rLS1XZ8X1wIDAQAB
o4IEaDCCBGQwHQYDVR0OBBYEFCCRvyUavM6lXj9uwxBEJRDlojkbMB8GA1UdIwQY
MBaAFCTMa5w3+qDaO0EgB8CxCyxb8s9OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk14cm5EZjZvTm83UVNBSHdMRUxMRnZ5ejA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8wZmY0NDktYWQ5OC00ODJkLWFjNzUt
ODY0MjM4YmMwNDliLzEvSUpHX0pScTh6cVZlUDI3REVFUWxFT1dpT1JzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC8wZmY0NDktYWQ5OC00ODJkLWFjNzUtODY0MjM4YmMwNDli
LzEvSk14cm5EZjZvTm83UVNBSHdMRUxMRnZ5ejA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICfAYIKwYBBQUHAQcBAf8EggJrMIICZzApBAIAATAjAwMA
lfoDBADAbewDAwDDyzALAwMA2RsDBADZGwQDBAHZGwYwggI4BAIAAjCCAjAwEgMH
ACoDUAAAAQMHACoDUAAAAjASAwcAKgNQAAARAwcAKgNQAAASMBIDBwUqA1AAACAD
BwAqA1AAACIwEgMHBCoDUAAAMAMHACoDUAAAMjASAwcAKgNQAABBAwcAKgNQAABC
MBIDBwAqA1AAAFEDBwAqA1AAAFIwEgMHACoDUAAAYQMHACoDUAAAYjASAwcAKgNQ
AABxAwcAKgNQAAByMBIDBwAqA1AAAIEDBwAqA1AAAIIwEgMHACoDUAAAkQMHACoD
UAAAkjASAwcAKgNQAAEBAwcAKgNQAAECMBIDBwAqA1AAAREDBwAqA1AAARIwEgMH
ACoDUAABIQMHACoDUAABIjASAwcAKgNQAAExAwcAKgNQAAEyMBIDBwAqA1AAAUED
BwAqA1AAAUIwEgMHACoDUAABUQMHACoDUAABUjASAwcAKgNQAAFhAwcAKgNQAAFi
MBIDBwAqA1AAAXEDBwAqA1AAAXIwEgMHACoDUAABgQMHACoDUAABgjASAwcAKgNQ
AAGRAwcAKgNQAAGSMBIDBwAqA1AAAgEDBwAqA1AAAgIwEgMHACoDUAACEQMHACoD
UAACEjASAwcAKgNQAAIhAwcAKgNQAAIiMBIDBwAqA1AAAjEDBwAqA1AAAjIwEgMH
ACoDUAACQQMHACoDUAACQjASAwcAKgNQAAJRAwcAKgNQAAJSMBIDBwAqA1AAAnED
BwAqA1AAAnIwEgMHACoDUAACkQMHACoDUAACkjANBgkqhkiG9w0BAQsFAAOCAQEA
qypcAb0pLDpju0VQzuCLdkI0neKwm/a2LzhqrqhoqSQhA/FPGKxvqZoKttzVXvyc
Ox/caZFsbdKUEFy6PgNpIDkCyWaRKEXTN0XbvmB3jiCylDg0HH5Md1pyIl74iGLR
iJX2cgykpcnPPCLlN/Alo60wAxd/zlTEc3yCBce/JFvXPczEsAMtareaLbZkC2Fg
qDiNB45VGblWaiN7lqhxq1oGC+aHcohsa/gX9V1KBFonTez74vc/erfpnzSdVeVQ
CEGEsIEmMO9GsORm5nx+Qqt36b9lzUZYseEs5pHmFiMXivMj+7LJ9mxvd0BMSAMR
vnK1RfUs6rPX/wdPDrdohQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 05:03:27 2025 by rpki-client