Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sCuGq1zz8xD4WbVq38z927QRo5I.roa
File: sCuGq1zz8xD4WbVq38z927QRo5I.roa (raw, json)
Hash identifier: 3eYl70nql73d0ixKIpFR5CXqilMlZYWhmZKrZauYDW0=
Subject key identifier: B0:2B:86:AB:5C:F3:F3:10:F8:59:B5:6A:DF:CC:FD:DB:B4:11:A3:92
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0196D4F20A26328A7C250F5BA0F5C8CB0D81
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sCuGq1zz8xD4WbVq38z927QRo5I.roa
Signing time: Thu 15 May 2025 17:15:54 +0000
ROA not before: Thu 15 May 2025 17:15:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34567
IP address blocks: 2a0d:6a40::/29 maxlen: 29
2a0d:6b40::/29 maxlen: 29
2a0d:6ec0::/29 maxlen: 29
2a0d:7140::/29 maxlen: 29
2a0d:8cc0::/29 maxlen: 29
2a0d:9740::/29 maxlen: 29
2a0d:97c0::/29 maxlen: 29
2a0d:a3c0::/29 maxlen: 29
2a0d:ad40::/29 maxlen: 29
2a0d:b2c0::/29 maxlen: 29
2a0d:b540::/29 maxlen: 29
2a0d:b840::/29 maxlen: 29
2a0d:c1c0::/29 maxlen: 29
2a0d:cc40::/29 maxlen: 29
2a0d:ce40::/29 maxlen: 29
2a0d:d3c0::/29 maxlen: 29
2a0d:e1c0::/29 maxlen: 29
2a0d:e240::/29 maxlen: 29
2a0d:e340::/29 maxlen: 29
2a0d:f140::/29 maxlen: 29
2a0d:f5c0::/29 maxlen: 29
2a0d:fbc0::/29 maxlen: 29
2a0e:8c0::/29 maxlen: 29
2a0e:19c0::/29 maxlen: 29
2a0e:adc0::/29 maxlen: 29
2a0e:af40::/29 maxlen: 29
2a0e:e9c0::/29 maxlen: 29
2a0f:2200::/29 maxlen: 29
2a0f:9a40::/29 maxlen: 29
2a0f:cb80::/29 maxlen: 29
2a0f:e180::/29 maxlen: 29
2a11:ec0::/29 maxlen: 29
2a11:17c0::/29 maxlen: 29
2a11:1c80::/29 maxlen: 29
2a11:25c0::/29 maxlen: 29
2a11:2d00::/29 maxlen: 29
2a11:4480::/29 maxlen: 29
2a11:4f00::/29 maxlen: 29
2a11:6040::/29 maxlen: 29
2a11:64c0::/29 maxlen: 29
2a11:6b80::/29 maxlen: 29
2a11:77c0::/29 maxlen: 29
2a11:81c0::/29 maxlen: 29
2a11:86c0::/29 maxlen: 29
2a11:8980::/29 maxlen: 29
2a11:8bc0::/29 maxlen: 29
2a11:9040::/29 maxlen: 29
2a11:9580::/29 maxlen: 29
2a11:9640::/29 maxlen: 29
2a11:9900::/29 maxlen: 29
2a11:9f00::/29 maxlen: 29
2a11:a040::/29 maxlen: 29
2a11:a140::/29 maxlen: 29
2a11:a2c0::/29 maxlen: 29
2a11:b0c0::/29 maxlen: 29
2a11:b4c0::/29 maxlen: 29
2a11:b700::/29 maxlen: 29
2a11:bb00::/29 maxlen: 29
2a11:bdc0::/29 maxlen: 29
2a11:be40::/29 maxlen: 29
2a11:bf80::/29 maxlen: 29
2a11:c240::/29 maxlen: 29
2a11:c2c0::/29 maxlen: 29
2a11:c580::/29 maxlen: 29
2a11:c680::/29 maxlen: 29
2a11:cec0::/29 maxlen: 29
2a11:d340::/29 maxlen: 29
2a11:d880::/29 maxlen: 29
2a11:dac0::/29 maxlen: 29
2a11:df00::/29 maxlen: 29
2a11:e2c0::/29 maxlen: 29
2a11:e640::/29 maxlen: 29
2a11:e6c0::/29 maxlen: 29
2a11:eac0::/29 maxlen: 29
2a11:fa40::/29 maxlen: 29
2a11:fc40::/29 maxlen: 29
2a12:580::/29 maxlen: 29
2a12:640::/29 maxlen: 29
2a12:900::/29 maxlen: 29
2a12:dc0::/29 maxlen: 29
2a12:e40::/29 maxlen: 29
2a12:e80::/29 maxlen: 29
2a12:11c0::/29 maxlen: 29
2a12:12c0::/29 maxlen: 29
2a12:1a80::/29 maxlen: 29
2a12:2800::/29 maxlen: 29
2a12:2b80::/29 maxlen: 29
2a12:57c0::/29 maxlen: 29
2a12:6480::/29 maxlen: 29
2a12:8380::/29 maxlen: 29
2a12:8480::/29 maxlen: 29
2a12:8780::/29 maxlen: 29
2a12:9200::/29 maxlen: 29
2a12:a500::/29 maxlen: 29
2a12:aa00::/29 maxlen: 29
2a12:af00::/29 maxlen: 29
2a12:b400::/29 maxlen: 29
2a12:b700::/29 maxlen: 29
2a12:bb00::/29 maxlen: 29
2a12:bc00::/29 maxlen: 29
2a12:bc80::/29 maxlen: 29
2a12:c980::/29 maxlen: 29
2a12:ce00::/29 maxlen: 29
2a12:cf80::/29 maxlen: 29
2a12:d200::/29 maxlen: 29
2a12:d380::/29 maxlen: 29
2a12:d800::/29 maxlen: 29
2a12:f980::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:f2:0a:26:32:8a:7c:25:0f:5b:a0:f5:c8:cb:0d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 15 17:15:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b02b86ab5cf3f310f859b56adfccfddbb411a392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:49:5f:b4:1f:69:2b:f5:7f:90:b7:89:e9:
80:37:91:75:15:d1:f6:3e:1a:5d:61:9c:b7:00:dd:
69:e2:75:29:25:d6:7e:a2:78:60:51:4a:df:e0:e2:
b4:07:8e:43:16:9a:3c:70:06:5a:ec:50:5f:88:b2:
39:3c:bb:90:56:c5:9e:a7:c7:e7:13:eb:6e:fa:c3:
0e:4b:84:86:ed:6a:22:49:68:7b:e9:d9:61:14:cb:
18:47:e6:c6:68:89:1c:7a:d6:97:16:66:50:ae:4b:
ba:21:ff:11:9f:00:9e:b2:1d:76:6a:42:0c:2f:e6:
7e:1b:79:69:8f:db:59:0d:6d:2c:8f:8e:c8:ee:4e:
f9:00:48:8f:e3:9f:48:cc:40:5a:d0:7d:8e:d4:89:
8f:7a:c8:32:4d:ba:1b:e6:98:8d:42:eb:f7:78:fc:
1a:36:dc:12:9e:bf:16:a5:29:81:75:ae:9d:27:c8:
a9:24:28:d7:5f:64:09:c7:76:53:b1:e1:2f:60:cd:
35:18:8d:79:8d:3e:c2:a1:e5:b3:08:00:fc:f8:2f:
62:c9:13:9c:7b:84:d1:cd:ee:5d:f6:00:4b:c1:69:
a4:b8:8c:e9:8c:f7:b1:c4:63:83:fa:37:64:f4:40:
da:5d:58:a7:2d:04:ab:76:55:60:61:04:66:67:73:
74:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:2B:86:AB:5C:F3:F3:10:F8:59:B5:6A:DF:CC:FD:DB:B4:11:A3:92
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sCuGq1zz8xD4WbVq38z927QRo5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:6a40::/29
2a0d:6b40::/29
2a0d:6ec0::/29
2a0d:7140::/29
2a0d:8cc0::/29
2a0d:9740::/29
2a0d:97c0::/29
2a0d:a3c0::/29
2a0d:ad40::/29
2a0d:b2c0::/29
2a0d:b540::/29
2a0d:b840::/29
2a0d:c1c0::/29
2a0d:cc40::/29
2a0d:ce40::/29
2a0d:d3c0::/29
2a0d:e1c0::/29
2a0d:e240::/29
2a0d:e340::/29
2a0d:f140::/29
2a0d:f5c0::/29
2a0d:fbc0::/29
2a0e:8c0::/29
2a0e:19c0::/29
2a0e:adc0::/29
2a0e:af40::/29
2a0e:e9c0::/29
2a0f:2200::/29
2a0f:9a40::/29
2a0f:cb80::/29
2a0f:e180::/29
2a11:ec0::/29
2a11:17c0::/29
2a11:1c80::/29
2a11:25c0::/29
2a11:2d00::/29
2a11:4480::/29
2a11:4f00::/29
2a11:6040::/29
2a11:64c0::/29
2a11:6b80::/29
2a11:77c0::/29
2a11:81c0::/29
2a11:86c0::/29
2a11:8980::/29
2a11:8bc0::/29
2a11:9040::/29
2a11:9580::/29
2a11:9640::/29
2a11:9900::/29
2a11:9f00::/29
2a11:a040::/29
2a11:a140::/29
2a11:a2c0::/29
2a11:b0c0::/29
2a11:b4c0::/29
2a11:b700::/29
2a11:bb00::/29
2a11:bdc0::/29
2a11:be40::/29
2a11:bf80::/29
2a11:c240::/29
2a11:c2c0::/29
2a11:c580::/29
2a11:c680::/29
2a11:cec0::/29
2a11:d340::/29
2a11:d880::/29
2a11:dac0::/29
2a11:df00::/29
2a11:e2c0::/29
2a11:e640::/29
2a11:e6c0::/29
2a11:eac0::/29
2a11:fa40::/29
2a11:fc40::/29
2a12:580::/29
2a12:640::/29
2a12:900::/29
2a12:dc0::/29
2a12:e40::/29
2a12:e80::/29
2a12:11c0::/29
2a12:12c0::/29
2a12:1a80::/29
2a12:2800::/29
2a12:2b80::/29
2a12:57c0::/29
2a12:6480::/29
2a12:8380::/29
2a12:8480::/29
2a12:8780::/29
2a12:9200::/29
2a12:a500::/29
2a12:aa00::/29
2a12:af00::/29
2a12:b400::/29
2a12:b700::/29
2a12:bb00::/29
2a12:bc00::/29
2a12:bc80::/29
2a12:c980::/29
2a12:ce00::/29
2a12:cf80::/29
2a12:d200::/29
2a12:d380::/29
2a12:d800::/29
2a12:f980::/29
Signature Algorithm: sha256WithRSAEncryption
71:08:73:79:30:7a:4e:27:78:95:c2:61:14:17:38:ed:ef:c3:
58:72:21:66:71:7d:37:64:f2:75:23:fa:cd:ae:92:52:9a:13:
00:52:ee:21:6d:54:ca:12:a4:08:be:28:3d:80:3c:98:cb:97:
a2:93:92:70:4f:eb:92:00:af:e8:17:eb:23:41:d5:9e:31:e5:
82:32:21:41:c3:44:9c:48:dd:a0:a9:72:49:19:99:ee:38:13:
6a:e7:7d:95:d5:e6:f6:4e:e6:16:74:41:f0:43:23:13:77:7f:
33:e4:b6:23:a8:bd:ec:84:86:0f:e9:57:d3:c4:b0:91:1d:0a:
df:a8:92:af:8b:10:dd:14:4f:37:9d:4e:65:b9:2d:f8:21:63:
b2:54:20:5a:6c:43:ff:64:b2:35:6c:1d:f2:1c:d4:bf:66:65:
f2:bb:2a:94:64:03:df:0d:15:17:f5:db:c0:23:ba:f9:7b:33:
8c:ca:7e:09:9d:ac:31:a9:62:c4:fc:50:ce:2b:d0:7e:4c:66:
61:3d:64:fd:00:8a:92:65:e5:5c:c3:cd:ac:35:f5:81:72:64:
dc:a2:8a:c4:f0:f1:f9:bc:ed:8a:ad:b0:02:25:56:89:80:c0:
66:f4:52:6c:e6:00:c8:b3:12:c0:0b:ee:b2:f4:1b:8c:94:a5:
af:a7:28:4f
-----BEGIN CERTIFICATE-----
MIIH9TCCBt2gAwIBAgISAZbU8gomMop8JQ9boPXIyw2BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjUwNTE1MTcxNTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDJiODZhYjVjZjNmMzEwZjg1OWI1NmFkZmNjZmRkYmI0MTFhMzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+hJX7QfaSv1f5C3iemAN5F1FdH2
PhpdYZy3AN1p4nUpJdZ+onhgUUrf4OK0B45DFpo8cAZa7FBfiLI5PLuQVsWep8fn
E+tu+sMOS4SG7WoiSWh76dlhFMsYR+bGaIkcetaXFmZQrku6If8RnwCesh12akIM
L+Z+G3lpj9tZDW0sj47I7k75AEiP459IzEBa0H2O1ImPesgyTbob5piNQuv3ePwa
NtwSnr8WpSmBda6dJ8ipJCjXX2QJx3ZTseEvYM01GI15jT7CoeWzCAD8+C9iyROc
e4TRze5d9gBLwWmkuIzpjPexxGOD+jdk9EDaXVinLQSrdlVgYQRmZ3N0MwIDAQAB
o4IFATCCBP0wHQYDVR0OBBYEFLArhqtc8/MQ+Fm1at/M/du0EaOSMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvc0N1R3Exeno4eEQ0V2JWcTM4ejkyN1FSbzVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIDFQYIKwYBBQUHAQcBAf8EggMEMIIDADCCAvwEAgACMIIC
9AMFAyoNakADBQMqDWtAAwUDKg1uwAMFAyoNcUADBQMqDYzAAwUDKg2XQAMFAyoN
l8ADBQMqDaPAAwUDKg2tQAMFAyoNssADBQMqDbVAAwUDKg24QAMFAyoNwcADBQMq
DcxAAwUDKg3OQAMFAyoN08ADBQMqDeHAAwUDKg3iQAMFAyoN40ADBQMqDfFAAwUD
Kg31wAMFAyoN+8ADBQMqDgjAAwUDKg4ZwAMFAyoOrcADBQMqDq9AAwUDKg7pwAMF
AyoPIgADBQMqD5pAAwUDKg/LgAMFAyoP4YADBQMqEQ7AAwUDKhEXwAMFAyoRHIAD
BQMqESXAAwUDKhEtAAMFAyoRRIADBQMqEU8AAwUDKhFgQAMFAyoRZMADBQMqEWuA
AwUDKhF3wAMFAyoRgcADBQMqEYbAAwUDKhGJgAMFAyoRi8ADBQMqEZBAAwUDKhGV
gAMFAyoRlkADBQMqEZkAAwUDKhGfAAMFAyoRoEADBQMqEaFAAwUDKhGiwAMFAyoR
sMADBQMqEbTAAwUDKhG3AAMFAyoRuwADBQMqEb3AAwUDKhG+QAMFAyoRv4ADBQMq
EcJAAwUDKhHCwAMFAyoRxYADBQMqEcaAAwUDKhHOwAMFAyoR00ADBQMqEdiAAwUD
KhHawAMFAyoR3wADBQMqEeLAAwUDKhHmQAMFAyoR5sADBQMqEerAAwUDKhH6QAMF
AyoR/EADBQMqEgWAAwUDKhIGQAMFAyoSCQADBQMqEg3AAwUDKhIOQAMFAyoSDoAD
BQMqEhHAAwUDKhISwAMFAyoSGoADBQMqEigAAwUDKhIrgAMFAyoSV8ADBQMqEmSA
AwUDKhKDgAMFAyoShIADBQMqEoeAAwUDKhKSAAMFAyoSpQADBQMqEqoAAwUDKhKv
AAMFAyoStAADBQMqErcAAwUDKhK7AAMFAyoSvAADBQMqEryAAwUDKhLJgAMFAyoS
zgADBQMqEs+AAwUDKhLSAAMFAyoS04ADBQMqEtgAAwUDKhL5gDANBgkqhkiG9w0B
AQsFAAOCAQEAcQhzeTB6Tid4lcJhFBc47e/DWHIhZnF9N2TydSP6za6SUpoTAFLu
IW1UyhKkCL4oPYA8mMuXopOScE/rkgCv6BfrI0HVnjHlgjIhQcNEnEjdoKlySRmZ
7jgTaud9ldXm9k7mFnRB8EMjE3d/M+S2I6i97ISGD+lX08SwkR0K36iSr4sQ3RRP
N51OZbkt+CFjslQgWmxD/2SyNWwd8hzUv2Zl8rsqlGQD3w0VF/XbwCO6+XszjMp+
CZ2sMalixPxQzivQfkxmYT1k/QCKkmXlXMPNrDX1gXJk3KKKxPDx+bztiq2wAiVW
iYDAZvRSbOYAyLMSwAvusvQbjJSlr6coTw==
-----END CERTIFICATE-----
Generated at Fri Jun 6 14:02:18 2025 by rpki-client