Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/FvLNnNg2QeD0onnN_PS8DkWE6tQ.roa
File: FvLNnNg2QeD0onnN_PS8DkWE6tQ.roa (raw, json)
Hash identifier: OdpqbL6ypHKtLzlcZGiGn6TLNeSImmC1rcm6v3xp6Jc=
Subject key identifier: 16:F2:CD:9C:D8:36:41:E0:F4:A2:79:CD:FC:F4:BC:0E:45:84:EA:D4
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 019739BE89B98EAF10D2C72DC6FB6C5F7124
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/FvLNnNg2QeD0onnN_PS8DkWE6tQ.roa
Signing time: Wed 04 Jun 2025 07:01:17 +0000
ROA not before: Wed 04 Jun 2025 07:01:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 719
IP address blocks: 31.7.16.0/20 maxlen: 20
46.182.112.0/21 maxlen: 21
62.142.0.0/16 maxlen: 16
62.148.192.0/19 maxlen: 19
62.216.96.0/19 maxlen: 19
62.240.64.0/19 maxlen: 19
62.248.128.0/17 maxlen: 17
77.109.192.0/18 maxlen: 18
80.81.160.0/19 maxlen: 19
80.88.176.0/20 maxlen: 20
80.186.0.0/16 maxlen: 16
80.248.96.0/19 maxlen: 19
81.197.0.0/16 maxlen: 16
81.209.0.0/17 maxlen: 17
82.103.192.0/18 maxlen: 18
82.118.192.0/19 maxlen: 19
82.141.64.0/18 maxlen: 18
82.215.192.0/18 maxlen: 18
83.245.128.0/17 maxlen: 17
84.230.0.0/15 maxlen: 15
85.76.0.0/14 maxlen: 14
85.156.0.0/16 maxlen: 16
85.157.0.0/16 maxlen: 16
85.217.0.0/17 maxlen: 17
88.112.0.0/14 maxlen: 14
91.152.0.0/13 maxlen: 13
94.22.0.0/16 maxlen: 16
109.163.248.0/21 maxlen: 21
109.232.80.0/21 maxlen: 21
139.97.0.0/16 maxlen: 16
178.251.56.0/21 maxlen: 21
192.77.120.0/22 maxlen: 22
192.102.36.0/24 maxlen: 24
192.102.37.0/24 maxlen: 24
192.102.38.0/24 maxlen: 24
192.102.39.0/24 maxlen: 24
192.102.40.0/24 maxlen: 24
192.102.41.0/24 maxlen: 24
192.102.42.0/24 maxlen: 24
192.102.49.0/24 maxlen: 24
192.102.50.0/24 maxlen: 24
192.126.1.0/24 maxlen: 24
192.126.23.0/24 maxlen: 24
192.126.24.0/24 maxlen: 24
192.126.35.0/24 maxlen: 24
192.126.44.0/24 maxlen: 24
192.126.46.0/24 maxlen: 24
192.163.32.0/19 maxlen: 19
192.163.64.0/18 maxlen: 18
192.163.128.0/19 maxlen: 19
192.175.45.0/24 maxlen: 24
193.64.0.0/15 maxlen: 15
193.65.129.0/24 maxlen: 24
193.66.0.0/16 maxlen: 16
193.94.0.0/16 maxlen: 16
193.184.0.0/15 maxlen: 15
193.199.0.0/16 maxlen: 16
193.229.0.0/16 maxlen: 16
194.86.0.0/16 maxlen: 16
194.86.35.0/24 maxlen: 24
194.136.0.0/16 maxlen: 16
194.157.0.0/16 maxlen: 16
194.188.0.0/16 maxlen: 16
194.211.0.0/16 maxlen: 16
194.240.0.0/15 maxlen: 15
195.16.192.0/19 maxlen: 19
195.74.0.0/19 maxlen: 19
195.170.128.0/19 maxlen: 19
195.197.0.0/16 maxlen: 16
195.218.64.0/19 maxlen: 19
195.236.0.0/15 maxlen: 15
195.238.192.0/19 maxlen: 19
195.255.0.0/16 maxlen: 16
212.38.224.0/19 maxlen: 19
212.50.192.0/19 maxlen: 19
212.54.0.0/19 maxlen: 19
212.63.0.0/19 maxlen: 19
212.226.0.0/16 maxlen: 16
212.246.0.0/16 maxlen: 16
213.130.224.0/19 maxlen: 19
213.161.32.0/19 maxlen: 19
213.169.0.0/19 maxlen: 19
213.192.128.0/18 maxlen: 18
213.250.64.0/18 maxlen: 18
217.24.96.0/20 maxlen: 20
217.25.96.0/20 maxlen: 20
217.77.192.0/20 maxlen: 20
217.152.0.0/16 maxlen: 16
2001:670::/29 maxlen: 32
2001:671::/48 maxlen: 48
2001:998::/29 maxlen: 32
2001:9f0::/29 maxlen: 32
2001:1658::/29 maxlen: 32
2a00:1dd0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:39:be:89:b9:8e:af:10:d2:c7:2d:c6:fb:6c:5f:71:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jun 4 07:01:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16f2cd9cd83641e0f4a279cdfcf4bc0e4584ead4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:01:54:e4:3f:8a:35:2e:ee:96:b2:3b:48:
a2:27:08:ad:8e:31:9e:4a:3d:93:1a:d5:aa:7a:a5:
1e:7b:74:f4:78:4d:d4:dd:6c:f0:a4:e7:06:fb:69:
3b:97:92:5e:5d:91:55:72:89:c7:1e:81:f2:63:44:
4a:a5:e0:b3:e5:25:60:d0:74:aa:d0:5f:49:89:07:
ec:57:2b:5d:46:34:94:b3:ff:5e:fc:69:d3:53:f6:
14:83:1e:b3:95:70:4d:33:5b:98:61:db:e0:7b:0d:
b4:e1:6c:23:bb:60:47:a4:ec:65:cc:0c:98:db:7d:
6a:eb:a0:b5:86:b5:61:d5:e4:9f:f6:cf:b9:7b:93:
ba:45:2a:25:58:53:c2:39:30:62:ef:a4:0b:56:e2:
15:df:8c:2c:02:75:d4:30:b7:df:6b:26:4a:31:3d:
5c:fa:c1:5e:ba:e4:68:90:ff:8c:68:e1:25:e4:a5:
4a:a6:67:ef:b1:5b:44:ea:a6:05:db:3d:ff:3b:6b:
a3:3a:cb:16:07:09:1c:29:cd:46:95:ec:a4:38:f5:
fd:3b:39:11:1f:83:84:35:6c:82:c6:99:a0:9a:92:
99:c1:98:a6:58:4d:3d:84:65:ad:10:dd:ff:b2:c0:
70:fa:6e:7e:53:04:cf:83:2c:22:72:88:74:e5:1e:
64:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F2:CD:9C:D8:36:41:E0:F4:A2:79:CD:FC:F4:BC:0E:45:84:EA:D4
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/FvLNnNg2QeD0onnN_PS8DkWE6tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.16.0/20
46.182.112.0/21
62.142.0.0/16
62.148.192.0/19
62.216.96.0/19
62.240.64.0/19
62.248.128.0/17
77.109.192.0/18
80.81.160.0/19
80.88.176.0/20
80.186.0.0/16
80.248.96.0/19
81.197.0.0/16
81.209.0.0/17
82.103.192.0/18
82.118.192.0/19
82.141.64.0/18
82.215.192.0/18
83.245.128.0/17
84.230.0.0/15
85.76.0.0/14
85.156.0.0/15
85.217.0.0/17
88.112.0.0/14
91.152.0.0/13
94.22.0.0/16
109.163.248.0/21
109.232.80.0/21
139.97.0.0/16
178.251.56.0/21
192.77.120.0/22
192.102.36.0-192.102.42.255
192.102.49.0-192.102.50.255
192.126.1.0/24
192.126.23.0-192.126.24.255
192.126.35.0/24
192.126.44.0/24
192.126.46.0/24
192.163.32.0-192.163.159.255
192.175.45.0/24
193.64.0.0-193.66.255.255
193.94.0.0/16
193.184.0.0/15
193.199.0.0/16
193.229.0.0/16
194.86.0.0/16
194.136.0.0/16
194.157.0.0/16
194.188.0.0/16
194.211.0.0/16
194.240.0.0/15
195.16.192.0/19
195.74.0.0/19
195.170.128.0/19
195.197.0.0/16
195.218.64.0/19
195.236.0.0/15
195.238.192.0/19
195.255.0.0/16
212.38.224.0/19
212.50.192.0/19
212.54.0.0/19
212.63.0.0/19
212.226.0.0/16
212.246.0.0/16
213.130.224.0/19
213.161.32.0/19
213.169.0.0/19
213.192.128.0/18
213.250.64.0/18
217.24.96.0/20
217.25.96.0/20
217.77.192.0/20
217.152.0.0/16
IPv6:
2001:670::/29
2001:998::/29
2001:9f0::/29
2001:1658::/29
2a00:1dd0::/29
Signature Algorithm: sha256WithRSAEncryption
ad:eb:70:66:e7:c4:94:05:f2:31:93:56:70:b2:0c:33:9e:e8:
02:a0:9b:c1:03:b8:89:e8:5e:84:3b:4b:0b:06:7d:cf:39:d3:
a3:67:ce:5e:ee:9f:ea:dd:b7:ce:6b:3d:c4:ae:37:10:4c:60:
63:4a:aa:e7:60:86:cf:ca:61:30:7e:e2:f5:cd:e7:07:6e:97:
15:fb:4f:4e:82:61:76:e1:05:30:bb:dd:9d:8a:3c:3c:47:3f:
f3:29:46:c0:1e:70:dd:92:09:6b:fc:14:55:a5:fb:a6:0c:e3:
12:8c:3c:a7:e3:d6:aa:bb:e3:e8:3e:5e:06:e6:df:8c:2e:9d:
1c:30:6b:0f:16:5f:4c:90:f6:1b:65:df:ed:2a:19:5b:58:01:
95:3f:59:71:83:34:23:04:f6:a3:d2:df:c8:a1:66:11:54:e2:
d6:82:ff:2c:77:e6:5d:a3:42:39:97:22:82:8d:c8:d5:b0:72:
7f:8a:9a:0a:1c:2b:67:d1:b1:78:02:f0:12:4e:30:00:ca:f8:
a6:4d:53:43:a8:5b:49:3a:dc:90:1c:77:e9:94:c1:79:48:50:
28:0a:1a:23:52:21:85:cf:f7:b5:de:1d:38:7a:fb:26:b1:8f:
d1:72:fa:f0:ae:2e:8c:df:8d:2c:83:26:fa:62:58:db:a1:3a:
46:3f:e5:1f
-----BEGIN CERTIFICATE-----
MIIG9DCCBdygAwIBAgISAZc5vom5jq8Q0sctxvtsX3EkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZGVlMWIwNmJhMjRhNjc2MjEzZjk3NmE0YjUwYzEyOWRj
YjJiNzMwHhcNMjUwNjA0MDcwMTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmYyY2Q5Y2Q4MzY0MWUwZjRhMjc5Y2RmY2Y0YmMwZTQ1ODRlYWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFMBVOQ/ijUu7payO0iiJwitjjGe
Sj2TGtWqeqUee3T0eE3U3WzwpOcG+2k7l5JeXZFVconHHoHyY0RKpeCz5SVg0HSq
0F9JiQfsVytdRjSUs/9e/GnTU/YUgx6zlXBNM1uYYdvgew204Wwju2BHpOxlzAyY
231q66C1hrVh1eSf9s+5e5O6RSolWFPCOTBi76QLVuIV34wsAnXUMLffayZKMT1c
+sFeuuRokP+MaOEl5KVKpmfvsVtE6qYF2z3/O2ujOssWBwkcKc1GleykOPX9OzkR
H4OENWyCxpmgmpKZwZimWE09hGWtEN3/ssBw+m5+UwTPgywicoh05R5kEwIDAQAB
o4IEADCCA/wwHQYDVR0OBBYEFBbyzZzYNkHg9KJ5zfz0vA5FhOrUMB8GA1UdIwQY
MBaAFODe4bBrokpnYhP5dqS1DBKdyytzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMt
MTVlOTBiZjg3ZmFiLzEvRnZMTm5OZzJRZUQwb25uTl9QUzhEa1dFNnRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMtMTVlOTBiZjg3ZmFi
LzEvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICFAYIKwYBBQUHAQcBAf8EggIDMIIB/zCCAdAEAgABMIIB
yAMEBB8HEAMEAy62cAMDAD6OAwQFPpTAAwQFPthgAwQFPvBAAwQHPviAAwQGTW3A
AwQFUFGgAwQEUFiwAwMAULoDBAVQ+GADAwBRxQMEB1HRAAMEBlJnwAMEBVJ2wAME
BlKNQAMEBlLXwAMEB1P1gAMDAVTmAwMCVUwDAwFVnAMEB1XZAAMDAlhwAwMDW5gD
AwBeFgMEA22j+AMEA23oUAMDAIthAwQDsvs4AwQCwE14MAwDBALAZiQDBADAZiow
DAMEAMBmMQMEAMBmMgMEAMB+ATAMAwQAwH4XAwQAwH4YAwQAwH4jAwQAwH4sAwQA
wH4uMAwDBAXAoyADBAXAo4ADBADAry0wCgMDBsFAAwMAwUIDAwDBXgMDAcG4AwMA
wccDAwDB5QMDAMJWAwMAwogDAwDCnQMDAMK8AwMAwtMDAwHC8AMEBcMQwAMEBcNK
AAMEBcOqgAMDAMPFAwQFw9pAAwMBw+wDBAXD7sADAwDD/wMEBdQm4AMEBdQywAME
BdQ2AAMEBdQ/AAMDANTiAwMA1PYDBAXVguADBAXVoSADBAXVqQADBAbVwIADBAbV
+kADBATZGGADBATZGWADBATZTcADAwDZmDApBAIAAjAjAwUDIAEGcAMFAyABCZgD
BQMgAQnwAwUDIAEWWAMFAyoAHdAwDQYJKoZIhvcNAQELBQADggEBAK3rcGbnxJQF
8jGTVnCyDDOe6AKgm8EDuInoXoQ7SwsGfc8506Nnzl7un+rdt85rPcSuNxBMYGNK
qudghs/KYTB+4vXN5wdulxX7T06CYXbhBTC73Z2KPDxHP/MpRsAecN2SCWv8FFWl
+6YM4xKMPKfj1qq74+g+Xgbm34wunRwwaw8WX0yQ9htl3+0qGVtYAZU/WXGDNCME
9qPS38ihZhFU4taC/yx35l2jQjmXIoKNyNWwcn+KmgocK2fRsXgC8BJOMADK+KZN
U0OoW0k63JAcd+mUwXlIUCgKGiNSIYXP97XeHTh6+yaxj9Fy+vCuLozfjSyDJvpi
WNuhOkY/5R8=
-----END CERTIFICATE-----
Generated at Sat Jun 7 18:39:26 2025 by rpki-client