Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/9A16luPCk5IhyoBkFIK_ch_6NEk.roa
File: 9A16luPCk5IhyoBkFIK_ch_6NEk.roa (raw, json)
Hash identifier: YUMSqsjWHZSFmuwztOpT/BJPAUyhmWd6R2m1BEABazs=
Subject key identifier: F4:0D:7A:96:E3:C2:93:92:21:CA:80:64:14:82:BF:72:1F:FA:34:49
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 0196E8E6038F462AA57E0EC16A663C145F6D
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/9A16luPCk5IhyoBkFIK_ch_6NEk.roa
Signing time: Mon 19 May 2025 14:15:10 +0000
ROA not before: Mon 19 May 2025 14:15:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15625
IP address blocks: 145.221.0.0/16 maxlen: 16
145.221.0.0/17 maxlen: 17
145.221.36.0/24 maxlen: 24
145.221.37.0/24 maxlen: 24
145.221.38.0/24 maxlen: 24
145.221.39.0/24 maxlen: 24
145.221.40.0/24 maxlen: 24
145.221.41.0/24 maxlen: 24
145.221.42.0/24 maxlen: 24
145.221.43.0/24 maxlen: 24
145.221.64.0/24 maxlen: 24
145.221.65.0/24 maxlen: 24
145.221.66.0/24 maxlen: 24
145.221.67.0/24 maxlen: 24
145.221.68.0/24 maxlen: 24
145.221.69.0/24 maxlen: 24
145.221.70.0/24 maxlen: 24
145.221.71.0/24 maxlen: 24
145.221.76.0/24 maxlen: 24
145.221.77.0/24 maxlen: 24
145.221.78.0/24 maxlen: 24
145.221.79.0/24 maxlen: 24
145.221.80.0/24 maxlen: 24
145.221.81.0/24 maxlen: 24
145.221.82.0/24 maxlen: 24
145.221.83.0/24 maxlen: 24
145.221.84.0/24 maxlen: 24
145.221.85.0/24 maxlen: 24
145.221.86.0/24 maxlen: 24
145.221.87.0/24 maxlen: 24
145.221.92.0/24 maxlen: 24
145.221.93.0/24 maxlen: 24
145.221.94.0/24 maxlen: 24
145.221.95.0/24 maxlen: 24
145.221.99.0/24 maxlen: 24
145.221.128.0/17 maxlen: 17
145.221.176.0/24 maxlen: 24
145.221.177.0/24 maxlen: 24
145.221.178.0/24 maxlen: 24
145.221.179.0/24 maxlen: 24
145.221.180.0/24 maxlen: 24
145.221.181.0/24 maxlen: 24
145.221.182.0/24 maxlen: 24
145.221.183.0/24 maxlen: 24
145.221.184.0/24 maxlen: 24
145.221.185.0/24 maxlen: 24
145.221.186.0/24 maxlen: 24
145.221.188.0/24 maxlen: 24
145.221.189.0/24 maxlen: 24
145.221.190.0/24 maxlen: 24
145.221.193.0/24 maxlen: 24
145.221.208.0/24 maxlen: 24
145.221.209.0/24 maxlen: 24
145.221.210.0/24 maxlen: 24
145.221.211.0/24 maxlen: 24
145.221.212.0/24 maxlen: 24
145.221.213.0/24 maxlen: 24
145.221.214.0/24 maxlen: 24
145.221.215.0/24 maxlen: 24
145.221.216.0/24 maxlen: 24
145.221.217.0/24 maxlen: 24
145.221.219.0/24 maxlen: 24
145.221.220.0/24 maxlen: 24
145.221.221.0/24 maxlen: 24
145.221.222.0/24 maxlen: 24
145.221.252.0/24 maxlen: 24
145.221.253.0/24 maxlen: 24
145.221.254.0/24 maxlen: 24
145.221.255.0/24 maxlen: 24
156.114.128.0/18 maxlen: 18
156.114.128.0/19 maxlen: 19
156.114.128.0/24 maxlen: 24
156.114.129.0/24 maxlen: 24
156.114.130.0/24 maxlen: 24
156.114.131.0/24 maxlen: 24
156.114.132.0/24 maxlen: 24
156.114.133.0/24 maxlen: 24
156.114.135.0/24 maxlen: 24
156.114.136.0/24 maxlen: 24
156.114.153.0/24 maxlen: 24
156.114.154.0/24 maxlen: 24
156.114.155.0/24 maxlen: 24
156.114.160.0/19 maxlen: 19
156.114.160.0/24 maxlen: 24
156.114.161.0/24 maxlen: 24
156.114.162.0/24 maxlen: 24
156.114.163.0/24 maxlen: 24
156.114.164.0/24 maxlen: 24
156.114.165.0/24 maxlen: 24
156.114.167.0/24 maxlen: 24
156.114.168.0/24 maxlen: 24
156.114.185.0/24 maxlen: 24
156.114.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e8:e6:03:8f:46:2a:a5:7e:0e:c1:6a:66:3c:14:5f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: May 19 14:15:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f40d7a96e3c2939221ca80641482bf721ffa3449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:16:98:c9:d6:d4:a1:6a:34:13:2a:5c:14:05:
42:af:c5:95:d2:96:c1:28:10:5d:3f:b9:55:fd:57:
1a:a2:f3:20:c6:8d:f5:a7:3f:90:7d:50:c9:42:a9:
25:43:c9:39:90:b1:08:8e:2d:79:10:b8:57:b3:79:
e1:0a:04:cf:1b:dd:c7:15:a5:37:47:d5:0a:a1:54:
3e:bf:fb:d3:50:0e:95:37:f5:8e:c5:50:3c:c7:81:
d5:54:0f:6f:42:b0:18:d4:13:06:de:e2:60:b1:cb:
8f:be:64:1d:05:98:19:dc:ed:82:d8:9d:53:89:02:
32:6d:81:ac:5c:96:fd:5c:c3:a3:d2:13:47:ae:53:
f9:aa:56:f8:84:f6:d3:43:30:fd:62:e1:ba:91:48:
69:a7:9e:f5:28:6f:0f:99:62:9e:88:97:03:6a:80:
5f:84:95:1f:ea:ba:43:cc:d3:97:02:62:ff:3d:71:
2b:b4:5d:06:51:b9:dd:7f:0c:38:16:4f:ae:fd:42:
94:b3:9d:17:bd:f8:b7:78:28:26:1c:e5:5d:22:53:
3f:b7:37:b8:65:78:f8:49:41:1b:50:d4:1c:b0:31:
7c:3a:18:51:78:2a:e6:51:a9:06:cd:e2:fd:12:0a:
02:07:2a:27:cc:1f:b1:05:d9:75:e7:2e:04:8e:c4:
f0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:0D:7A:96:E3:C2:93:92:21:CA:80:64:14:82:BF:72:1F:FA:34:49
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/9A16luPCk5IhyoBkFIK_ch_6NEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.221.0.0/16
156.114.128.0/18
Signature Algorithm: sha256WithRSAEncryption
39:11:34:c9:0b:62:95:65:9b:a9:ff:31:2b:70:ed:36:b7:29:
07:de:bb:49:03:0d:1c:d1:4f:db:f5:6d:bd:f9:58:4e:27:36:
47:70:79:ab:9e:a2:7a:8b:52:d5:9a:fc:ba:d0:c8:fd:fb:48:
21:36:96:3b:36:56:a9:57:ca:d8:a8:d0:25:66:3f:91:ff:8e:
1e:5d:b4:d8:fe:3d:bd:c1:30:54:2d:d9:c1:38:52:04:4e:e4:
16:de:16:f9:e8:28:09:e7:c3:92:e4:48:9d:f6:6e:73:f6:69:
1d:0d:40:12:04:2c:c4:d8:e6:bf:d5:30:9b:93:43:6b:b8:b1:
75:80:2c:62:e1:5e:75:97:a3:04:43:75:03:8d:c4:e0:81:54:
c9:50:62:84:30:39:82:d9:49:f6:45:dc:22:dd:6b:b9:ae:2e:
fe:9d:c0:82:43:8d:32:67:a6:08:5b:a1:24:52:d9:46:64:91:
77:84:73:4b:94:bb:7a:14:50:fe:71:97:82:f3:e3:86:03:fe:
f0:0c:65:88:a0:be:ab:53:5c:a4:f9:09:f2:6b:99:f7:10:94:
d2:20:27:25:87:00:51:67:5b:c0:c2:07:00:5e:3c:07:0d:37:
b0:2e:fb:de:5b:9a:99:f6:a8:43:79:f3:07:a1:22:f1:51:4c:
11:a2:6b:e7
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAZbo5gOPRiqlfg7BamY8FF9tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZWNlNDFjYmMyYzMwNjI2ZWYyYTI4ZDE4MzlmMmQ2YzQ3
NTdmM2YwHhcNMjUwNTE5MTQxNTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDBkN2E5NmUzYzI5MzkyMjFjYTgwNjQxNDgyYmY3MjFmZmEzNDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRaYydbUoWo0EypcFAVCr8WV0pbB
KBBdP7lV/VcaovMgxo31pz+QfVDJQqklQ8k5kLEIji15ELhXs3nhCgTPG93HFaU3
R9UKoVQ+v/vTUA6VN/WOxVA8x4HVVA9vQrAY1BMG3uJgscuPvmQdBZgZ3O2C2J1T
iQIybYGsXJb9XMOj0hNHrlP5qlb4hPbTQzD9YuG6kUhpp571KG8PmWKeiJcDaoBf
hJUf6rpDzNOXAmL/PXErtF0GUbndfww4Fk+u/UKUs50Xvfi3eCgmHOVdIlM/tze4
ZXj4SUEbUNQcsDF8OhhReCrmUakGzeL9EgoCByonzB+xBdl15y4EjsTw+QIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFPQNepbjwpOSIcqAZBSCv3If+jRJMB8GA1UdIwQY
MBaAFMrs5By8LDBibvKijRg58tbEdX8/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXV6a0hMd3NNR0p1OHFLTkdEbnkxc1IxZno4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC82MzBjYmUtY2UwMS00NjRkLTgyZWIt
ZDg1MWU0MGQ1N2JmLzEvOUExNmx1UENrNUloeW9Ca0ZJS19jaF82TkVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC82MzBjYmUtY2UwMS00NjRkLTgyZWItZDg1MWU0MGQ1N2Jm
LzEveXV6a0hMd3NNR0p1OHFLTkdEbnkxc1IxZno4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAATALAwMAkd0DBAac
coAwDQYJKoZIhvcNAQELBQADggEBADkRNMkLYpVlm6n/MStw7Ta3KQfeu0kDDRzR
T9v1bb35WE4nNkdweaueonqLUtWa/LrQyP37SCE2ljs2VqlXytio0CVmP5H/jh5d
tNj+Pb3BMFQt2cE4UgRO5BbeFvnoKAnnw5LkSJ32bnP2aR0NQBIELMTY5r/VMJuT
Q2u4sXWALGLhXnWXowRDdQONxOCBVMlQYoQwOYLZSfZF3CLda7muLv6dwIJDjTJn
pghboSRS2UZkkXeEc0uUu3oUUP5xl4Lz44YD/vAMZYigvqtTXKT5CfJrmfcQlNIg
JyWHAFFnW8DCBwBePAcNN7Au+95bmpn2qEN58wehIvFRTBGia+c=
-----END CERTIFICATE-----
Generated at Sun Jun 8 12:35:30 2025 by rpki-client