Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fjsl99y-zvNrIPuI2J8AjW3ASGw.roa
File: fjsl99y-zvNrIPuI2J8AjW3ASGw.roa (raw, json)
Hash identifier: hdHYpc4JRnOKQmfCg6qLZKZQOhCK0scFvg0ADawRhwA=
Subject key identifier: 7E:3B:25:F7:DC:BE:CE:F3:6B:20:FB:88:D8:9F:00:8D:6D:C0:48:6C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01991D3609EDE120E0815F8FC86800870AFD
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fjsl99y-zvNrIPuI2J8AjW3ASGw.roa
Signing time: Sat 06 Sep 2025 04:08:24 +0000
ROA not before: Sat 06 Sep 2025 04:08:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211066
IP address blocks: 5.83.128.0/24 maxlen: 24
5.83.131.0/24 maxlen: 24
5.83.132.0/24 maxlen: 24
5.83.134.0/24 maxlen: 24
5.83.138.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.175.192.0/24 maxlen: 24
5.175.224.0/24 maxlen: 24
5.231.61.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.80.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
77.90.27.0/24 maxlen: 24
85.93.5.0/24 maxlen: 24
89.106.75.0/24 maxlen: 24
89.106.76.0/24 maxlen: 24
89.106.84.0/24 maxlen: 24
89.106.85.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.31.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
89.144.61.0/24 maxlen: 24
94.103.170.0/24 maxlen: 24
94.103.171.0/24 maxlen: 24
94.103.173.0/24 maxlen: 24
94.103.174.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.229.0/24 maxlen: 24
95.215.33.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:36:09:ed:e1:20:e0:81:5f:8f:c8:68:00:87:0a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 6 04:08:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e3b25f7dcbecef36b20fb88d89f008d6dc0486c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:be:00:1f:4b:73:ec:65:8e:8f:f9:b5:4d:b6:
71:60:da:9a:df:c4:ce:16:af:4e:53:d2:d5:4a:b6:
e3:c9:db:ec:57:17:e4:fa:31:35:49:fb:67:7c:0d:
3e:6f:6c:26:17:7b:be:95:2e:42:f9:3a:21:c3:d8:
9a:47:38:86:56:07:1f:35:e7:6e:4a:49:de:a2:71:
92:3e:df:f6:62:b8:19:d6:06:1a:48:f6:f5:29:10:
72:c3:28:64:81:ad:ad:ae:cd:dc:3e:50:86:2f:b7:
44:90:f6:65:41:63:4f:96:49:8d:a0:a2:79:bb:2c:
a0:f5:c8:5e:ea:16:e5:3f:c2:56:2f:ad:31:9e:ce:
bf:e8:e4:7d:0c:18:81:ff:fd:61:77:9b:04:fd:1c:
96:69:30:ce:90:8d:e5:db:1e:86:76:8a:bb:f8:8f:
b2:72:e2:31:54:34:d0:52:84:f0:02:8d:a6:b2:e7:
c0:13:b8:60:d3:06:ad:4d:dc:17:f5:88:4c:ff:bf:
04:c9:c1:c7:f1:6e:65:b1:60:1e:a7:70:c6:52:78:
aa:c9:e6:19:a6:72:2a:08:b2:3f:e8:1f:90:36:4e:
b3:a1:b8:7d:ce:1c:ed:e2:9f:f5:bc:eb:30:b6:3b:
70:c6:24:ab:6c:33:28:8d:3b:5d:db:21:9c:25:92:
34:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3B:25:F7:DC:BE:CE:F3:6B:20:FB:88:D8:9F:00:8D:6D:C0:48:6C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/fjsl99y-zvNrIPuI2J8AjW3ASGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/24
5.83.131.0-5.83.132.255
5.83.134.0/24
5.83.138.0/24
5.175.140.0/24
5.175.192.0/24
5.175.224.0/24
5.231.61.0/24
5.231.79.0-5.231.80.255
5.231.94.0/24
77.90.27.0/24
85.93.5.0/24
89.106.75.0-89.106.76.255
89.106.84.0/23
89.144.25.0/24
89.144.31.0/24
89.144.60.0/23
94.103.170.0/23
94.103.173.0-94.103.174.255
94.249.148.0/24
94.249.158.0/24
94.249.229.0/24
95.215.33.0/24
178.18.144.0/24
185.13.159.0/24
185.47.142.0/24
Signature Algorithm: sha256WithRSAEncryption
de:1c:a6:ed:20:67:96:38:bf:20:cf:24:e8:70:a4:ce:05:53:
63:4e:99:65:de:41:9a:fe:21:60:b1:c6:0b:f2:cd:8c:98:1c:
76:8c:6f:a9:c8:77:a6:32:3f:3e:67:b9:d5:76:64:c4:69:58:
1c:30:95:53:ae:1e:b9:fb:32:47:78:42:ca:bf:26:a5:51:db:
37:38:ad:b0:bc:40:ca:ff:46:0f:6c:1d:ef:6a:19:ea:0e:3f:
a9:97:63:ee:46:e9:84:d7:d4:ed:55:17:1d:90:8f:5f:57:da:
32:a9:2b:d3:8c:de:d9:ec:70:13:3b:f9:d4:aa:3d:f0:15:28:
bc:77:b7:45:71:3f:d6:48:d6:91:b8:f9:b5:70:b2:04:80:5c:
0f:74:94:8a:8b:db:1c:b7:c5:b9:bd:4f:39:1b:d5:72:d4:71:
85:f6:b1:d2:fe:65:59:85:92:e0:24:74:05:f4:06:97:d8:a7:
c7:b6:8d:fa:53:0e:53:a7:79:41:cc:60:47:95:24:a5:35:49:
07:b9:d5:99:af:3c:67:5c:8d:e1:61:b0:04:d7:b5:58:a2:8b:
65:32:37:a3:9b:6d:d2:97:3f:2a:f5:17:27:1c:22:53:fd:42:
e9:27:15:c3:5b:39:a0:15:63:d5:a1:54:d7:a7:62:d3:58:1d:
fc:f4:53:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 08:15:09 2025 by rpki-client