Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uP-fAvFvobRbaY-tuVNSvxjd8Pk.roa
File: uP-fAvFvobRbaY-tuVNSvxjd8Pk.roa (raw, json)
Hash identifier: Xo/hIPHKY0gj9xaTXvvbQYV5yR7+D5C4GK3YyWkkoMk=
Subject key identifier: B8:FF:9F:02:F1:6F:A1:B4:5B:69:8F:AD:B9:53:52:BF:18:DD:F0:F9
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0197353A3C770A40A0247F15C84E4EA6666B
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uP-fAvFvobRbaY-tuVNSvxjd8Pk.roa
Signing time: Tue 03 Jun 2025 09:58:18 +0000
ROA not before: Tue 03 Jun 2025 09:58:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210644
IP address blocks: 62.60.148.0/22 maxlen: 24
62.60.152.0/23 maxlen: 24
62.60.154.0/23 maxlen: 24
62.60.156.0/22 maxlen: 24
62.60.186.0/24 maxlen: 24
62.60.216.0/23 maxlen: 24
62.60.228.0/22 maxlen: 24
62.60.235.0/24 maxlen: 24
62.60.236.0/22 maxlen: 24
62.60.240.0/22 maxlen: 24
62.60.244.0/22 maxlen: 24
62.60.248.0/22 maxlen: 24
62.60.252.0/22 maxlen: 24
213.176.64.0/22 maxlen: 24
213.176.74.0/23 maxlen: 24
213.176.92.0/22 maxlen: 24
213.176.112.0/22 maxlen: 24
213.176.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 20:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:35:3a:3c:77:0a:40:a0:24:7f:15:c8:4e:4e:a6:66:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 3 09:58:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8ff9f02f16fa1b45b698fadb95352bf18ddf0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6a:e1:30:98:f7:42:44:7a:49:ed:45:6c:cc:
83:b5:1b:67:78:60:4a:8e:6c:14:5b:30:0f:ee:d1:
07:9f:c2:5a:3a:2a:9b:12:24:e4:63:d3:8c:b4:97:
56:39:3b:c4:32:81:3a:46:df:09:57:8e:85:0b:43:
3f:6e:d9:9b:d3:7c:1f:63:7a:54:58:c8:1a:39:df:
22:e6:2c:07:73:fe:c6:c3:4d:af:a9:72:ee:1e:81:
59:67:aa:37:10:49:f5:52:5c:f2:bf:fd:96:37:2b:
d2:64:0c:16:b8:06:34:7d:ba:70:ca:d5:ae:2b:a1:
b2:aa:58:cb:ca:3c:fd:ce:d4:40:d1:28:fb:81:74:
30:45:cb:5a:da:f4:88:02:6c:5c:9d:99:63:c7:d1:
58:2b:ec:b2:ae:07:51:7a:dc:db:8c:e1:e4:6c:d4:
2d:9e:3d:39:3b:16:26:b3:e3:55:bf:7e:ef:ad:5e:
10:fe:1d:83:bf:9a:04:ca:12:03:69:ce:ee:05:60:
cf:a2:7f:db:fc:79:ad:64:2e:5a:0b:0f:c5:ff:22:
93:d0:37:2f:cb:a7:97:14:ad:b1:d5:50:51:53:d4:
c7:29:65:03:f8:38:73:c3:0d:ca:9c:db:f4:1c:5d:
1b:9e:91:ee:ff:4c:06:c4:2d:67:73:83:c3:84:88:
dc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FF:9F:02:F1:6F:A1:B4:5B:69:8F:AD:B9:53:52:BF:18:DD:F0:F9
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uP-fAvFvobRbaY-tuVNSvxjd8Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.148.0-62.60.159.255
62.60.186.0/24
62.60.216.0/23
62.60.228.0/22
62.60.235.0-62.60.255.255
213.176.64.0/22
213.176.74.0/23
213.176.92.0/22
213.176.112.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:9c:48:14:da:6c:dc:9a:3c:0b:98:2b:80:f7:23:79:bb:70:
ec:9a:7e:f5:33:ee:14:ee:97:06:b0:02:35:93:a8:da:95:e3:
67:d0:64:83:93:73:a7:e8:fc:29:93:9e:52:3f:17:77:b6:95:
44:2d:35:a3:05:4c:0f:d5:1d:58:8e:50:a5:36:58:7f:65:79:
c2:0a:0b:4e:8e:01:e0:29:08:c7:9e:1e:3c:28:19:71:85:a0:
a6:8f:d5:95:4f:46:f5:87:18:cb:31:cd:7c:9f:f1:8b:c2:8d:
f8:86:55:82:e8:6d:ce:97:f0:5f:4b:80:86:34:7e:08:36:d1:
23:77:d7:ef:ac:6e:73:0e:e8:68:63:e2:7a:a8:7c:7e:55:42:
70:1f:5e:de:cf:0b:09:5a:e9:44:a9:f7:06:11:3a:41:4d:7e:
32:de:b7:e6:a2:b3:ad:6b:38:09:47:51:b4:fa:2a:10:5c:c7:
b3:35:13:9a:cd:4d:34:95:d2:1d:95:0e:e7:42:03:68:09:20:
87:ff:b1:11:67:61:e8:b1:56:09:e4:eb:3b:f1:ab:ff:e8:3c:
3a:6b:3b:3c:8d:af:b6:f1:c3:a0:6c:88:cd:43:db:79:e4:2f:
e4:e6:81:db:3a:95:8e:85:72:28:69:72:17:3a:a0:15:45:4e:
d9:6f:f3:6f
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAZc1Ojx3CkCgJH8VyE5OpmZrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjUwNjAzMDk1ODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGZmOWYwMmYxNmZhMWI0NWI2OThmYWRiOTUzNTJiZjE4ZGRmMGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGrhMJj3QkR6Se1FbMyDtRtneGBK
jmwUWzAP7tEHn8JaOiqbEiTkY9OMtJdWOTvEMoE6Rt8JV46FC0M/btmb03wfY3pU
WMgaOd8i5iwHc/7Gw02vqXLuHoFZZ6o3EEn1Ulzyv/2WNyvSZAwWuAY0fbpwytWu
K6GyqljLyjz9ztRA0Sj7gXQwRcta2vSIAmxcnZljx9FYK+yyrgdRetzbjOHkbNQt
nj05OxYms+NVv37vrV4Q/h2Dv5oEyhIDac7uBWDPon/b/HmtZC5aCw/F/yKT0Dcv
y6eXFK2x1VBRU9THKWUD+Dhzww3KnNv0HF0bnpHu/0wGxC1nc4PDhIjcjQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFLj/nwLxb6G0W2mPrblTUr8Y3fD5MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvdVAtZkF2RnZvYlJiYVktdHVWTlN2eGpkOFBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTBLBAIAATBFMAwDBAI+PJQD
BAU+PIADBAA+PLoDBAE+PNgDBAI+POQwCwMEAD486wMDAD48AwQC1bBAAwQB1bBK
AwQC1bBcAwQD1bBwMA0GCSqGSIb3DQEBCwUAA4IBAQCNnEgU2mzcmjwLmCuA9yN5
u3Dsmn71M+4U7pcGsAI1k6jaleNn0GSDk3On6Pwpk55SPxd3tpVELTWjBUwP1R1Y
jlClNlh/ZXnCCgtOjgHgKQjHnh48KBlxhaCmj9WVT0b1hxjLMc18n/GLwo34hlWC
6G3Ol/BfS4CGNH4INtEjd9fvrG5zDuhoY+J6qHx+VUJwH17ezwsJWulEqfcGETpB
TX4y3rfmorOtazgJR1G0+ioQXMezNROazU00ldIdlQ7nQgNoCSCH/7ERZ2HosVYJ
5Os78av/6Dw6azs8ja+28cOgbIjNQ9t55C/k5oHbOpWOhXIoaXIXOqAVRU7Zb/Nv
-----END CERTIFICATE-----
Generated at Fri Jun 6 06:47:57 2025 by rpki-client