Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/auh8PiwrTf2v6lpf50WPxKXXVeY.roa
File: auh8PiwrTf2v6lpf50WPxKXXVeY.roa (raw, json)
Hash identifier: mQnueIBK5DtLGO9VF25YUU0TKwd0Wbv6zpM4STDhWvE=
Subject key identifier: 6A:E8:7C:3E:2C:2B:4D:FD:AF:EA:5A:5F:E7:45:8F:C4:A5:D7:55:E6
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 0196531DE582A31D54E196F84A6028E14DC7
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/auh8PiwrTf2v6lpf50WPxKXXVeY.roa
Signing time: Sun 20 Apr 2025 12:13:10 +0000
ROA not before: Sun 20 Apr 2025 12:13:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50810
IP address blocks: 5.201.128.0/18 maxlen: 18
5.201.128.0/21 maxlen: 21
5.201.128.0/22 maxlen: 22
5.201.132.0/22 maxlen: 22
5.201.136.0/22 maxlen: 22
5.201.138.0/24 maxlen: 24
5.201.140.0/22 maxlen: 22
5.201.142.0/23 maxlen: 23
5.201.144.0/21 maxlen: 21
5.201.144.0/22 maxlen: 22
5.201.144.0/23 maxlen: 23
5.201.148.0/22 maxlen: 22
5.201.152.0/22 maxlen: 22
5.201.156.0/22 maxlen: 22
5.201.160.0/22 maxlen: 22
5.201.160.0/23 maxlen: 23
5.201.162.0/24 maxlen: 24
5.201.163.0/24 maxlen: 24
5.201.164.0/22 maxlen: 22
5.201.168.0/22 maxlen: 22
5.201.172.0/22 maxlen: 22
5.201.174.0/24 maxlen: 24
5.201.176.0/22 maxlen: 22
5.201.180.0/22 maxlen: 22
5.201.184.0/22 maxlen: 22
5.201.188.0/22 maxlen: 22
37.156.16.0/21 maxlen: 21
37.156.16.0/22 maxlen: 22
37.156.20.0/22 maxlen: 22
37.156.24.0/22 maxlen: 22
37.156.28.0/22 maxlen: 22
37.156.30.0/23 maxlen: 23
37.156.31.0/24 maxlen: 24
45.83.12.0/22 maxlen: 22
45.95.88.0/22 maxlen: 22
45.248.164.0/22 maxlen: 22
46.36.97.0/24 maxlen: 24
46.36.100.0/24 maxlen: 24
46.36.101.0/24 maxlen: 24
46.36.102.0/24 maxlen: 24
46.36.105.0/24 maxlen: 24
46.36.106.0/24 maxlen: 24
89.37.0.0/20 maxlen: 20
89.37.0.0/22 maxlen: 22
89.37.0.0/24 maxlen: 24
89.37.4.0/22 maxlen: 22
89.37.8.0/22 maxlen: 22
89.37.8.0/24 maxlen: 24
89.37.12.0/22 maxlen: 22
89.37.12.0/24 maxlen: 24
89.37.14.0/24 maxlen: 24
89.37.15.0/24 maxlen: 24
89.40.35.0/24 maxlen: 24
89.43.0.0/21 maxlen: 21
89.43.0.0/22 maxlen: 22
89.43.4.0/22 maxlen: 22
89.43.8.0/22 maxlen: 22
89.43.10.0/23 maxlen: 23
89.43.12.0/22 maxlen: 22
89.43.12.0/23 maxlen: 23
91.209.183.0/24 maxlen: 24
91.209.184.0/24 maxlen: 24
91.209.186.0/24 maxlen: 24
91.239.59.0/24 maxlen: 24
92.114.16.0/20 maxlen: 24
92.114.20.0/22 maxlen: 22
92.114.20.0/23 maxlen: 23
92.114.21.0/24 maxlen: 24
92.114.22.0/23 maxlen: 23
92.114.24.0/21 maxlen: 21
92.114.24.0/22 maxlen: 22
92.114.25.0/24 maxlen: 24
92.114.28.0/22 maxlen: 22
94.101.128.0/20 maxlen: 24
94.101.128.0/21 maxlen: 21
94.101.128.0/22 maxlen: 22
94.101.132.0/22 maxlen: 22
94.101.136.0/22 maxlen: 22
94.101.139.0/24 maxlen: 24
94.101.140.0/22 maxlen: 22
94.101.140.0/23 maxlen: 23
94.101.142.0/23 maxlen: 23
94.101.142.0/24 maxlen: 24
103.111.69.0/24 maxlen: 24
103.111.71.0/24 maxlen: 24
103.132.228.0/23 maxlen: 23
103.140.128.0/23 maxlen: 23
103.217.124.0/22 maxlen: 22
185.22.30.0/23 maxlen: 23
185.103.84.0/22 maxlen: 22
185.103.84.0/24 maxlen: 24
185.103.85.0/24 maxlen: 24
185.135.228.0/22 maxlen: 22
185.135.230.0/24 maxlen: 24
185.135.231.0/24 maxlen: 24
185.136.100.0/22 maxlen: 22
185.162.40.0/22 maxlen: 22
185.175.76.0/23 maxlen: 23
185.175.78.0/23 maxlen: 23
185.176.32.0/22 maxlen: 22
185.182.220.0/22 maxlen: 22
185.182.220.0/24 maxlen: 24
185.182.221.0/24 maxlen: 24
185.182.222.0/23 maxlen: 23
188.213.64.0/20 maxlen: 21
188.213.64.0/22 maxlen: 22
188.213.64.0/24 maxlen: 24
188.213.68.0/22 maxlen: 22
188.213.71.0/24 maxlen: 24
188.213.72.0/22 maxlen: 22
188.213.72.0/24 maxlen: 24
188.213.73.0/24 maxlen: 24
188.213.74.0/24 maxlen: 24
188.213.75.0/24 maxlen: 24
188.213.76.0/22 maxlen: 22
193.46.214.0/24 maxlen: 24
195.149.127.0/24 maxlen: 24
2a00:5ca0::/29 maxlen: 29
2a00:5ca0::/31 maxlen: 31
2a00:5ca0::/32 maxlen: 32
2a00:5ca2::/31 maxlen: 31
2a00:5ca4::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.mft
rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:1d:e5:82:a3:1d:54:e1:96:f8:4a:60:28:e1:4d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Apr 20 12:13:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ae87c3e2c2b4dfdafea5a5fe7458fc4a5d755e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:11:49:dd:fb:0f:5d:5c:72:27:6a:71:85:
8c:ea:1e:c8:e2:7d:14:e0:f5:9e:76:71:dc:c8:10:
43:65:10:d7:dd:3d:ff:c4:96:9c:79:d2:de:ba:85:
7a:df:0e:a4:64:24:e1:60:2e:a7:95:4a:51:b7:60:
39:8c:ad:24:3f:ab:3d:67:19:d7:31:e5:af:16:f7:
85:b1:20:6d:fd:f3:db:cc:b8:fe:56:21:0f:c3:a9:
3e:b3:84:b6:4c:22:49:9a:ed:ca:14:72:0a:a4:eb:
cd:5d:21:40:9e:3a:ba:8d:2a:20:8a:84:00:66:9f:
cc:b3:61:fa:34:06:72:50:4d:f2:83:5c:f8:02:8d:
62:17:49:9f:ff:0c:7f:12:20:65:76:ef:ea:b5:e4:
8a:ef:dd:60:80:71:f8:86:98:ae:cd:67:d4:04:0d:
1e:c9:7c:2e:d5:e9:36:24:37:84:e6:e5:d5:57:9b:
dd:fa:2d:87:db:21:42:3c:c2:be:9f:40:68:fe:c2:
98:d7:07:7e:23:c7:10:5e:c0:0f:c3:cb:e9:6e:2e:
63:8a:59:a4:d4:7e:66:90:47:5e:23:76:6f:1a:44:
ac:6f:88:64:a9:28:39:cf:2e:cd:d9:72:f8:6e:c6:
f6:39:8a:18:44:dd:0c:3f:06:ea:e7:c0:60:74:42:
54:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E8:7C:3E:2C:2B:4D:FD:AF:EA:5A:5F:E7:45:8F:C4:A5:D7:55:E6
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/auh8PiwrTf2v6lpf50WPxKXXVeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.128.0/18
37.156.16.0/20
45.83.12.0/22
45.95.88.0/22
45.248.164.0/22
46.36.97.0/24
46.36.100.0-46.36.102.255
46.36.105.0-46.36.106.255
89.37.0.0/20
89.40.35.0/24
89.43.0.0/20
91.209.183.0-91.209.184.255
91.209.186.0/24
91.239.59.0/24
92.114.16.0/20
94.101.128.0/20
103.111.69.0/24
103.111.71.0/24
103.132.228.0/23
103.140.128.0/23
103.217.124.0/22
185.22.30.0/23
185.103.84.0/22
185.135.228.0/22
185.136.100.0/22
185.162.40.0/22
185.175.76.0/22
185.176.32.0/22
185.182.220.0/22
188.213.64.0/20
193.46.214.0/24
195.149.127.0/24
IPv6:
2a00:5ca0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:eb:e7:ba:6e:6c:32:67:bd:34:c5:de:52:07:eb:93:30:db:
8e:da:7c:98:dc:68:e5:70:88:86:2f:58:57:16:3d:55:7a:82:
24:d1:da:03:7f:f5:7c:db:d8:ae:7f:1b:a8:89:1c:5c:87:92:
76:6d:30:b1:f6:e7:21:4e:f8:ad:1e:cf:6b:48:fa:4f:8d:bc:
90:d8:05:26:74:a3:ac:c6:2a:03:62:05:88:d6:5f:ef:7d:93:
13:07:9b:1a:ba:e7:90:39:06:25:5b:da:09:1a:be:0c:fe:ea:
4d:ee:d0:32:0f:ed:ba:96:84:bb:54:41:a2:44:d2:a1:6c:ca:
bd:c3:29:cc:f2:49:94:9f:48:a5:2a:02:44:46:1e:38:fb:b1:
99:5c:b4:f2:23:2c:98:43:27:ac:9b:9f:6b:aa:b5:07:37:ec:
53:03:8a:4b:71:7d:e7:e5:99:18:13:f2:1b:c7:c4:09:04:ef:
0a:1e:15:70:fc:dd:be:7a:d2:7f:a5:6b:5c:e0:fb:69:6f:03:
0b:9b:51:56:83:18:8f:1c:77:45:84:ce:7e:fb:d5:d9:c1:5f:
f4:5c:ec:ab:32:8e:77:a2:b3:e0:14:fd:4f:42:ab:66:ac:ba:
b4:ce:f4:a7:b8:33:08:65:52:0e:a0:1b:bd:6c:47:2a:39:5b:
c7:4b:58:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:41:08 2025 by rpki-client