Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/EqctIHE7t4TcfCcoLcraHvoFnv0.roa
File: EqctIHE7t4TcfCcoLcraHvoFnv0.roa (raw, json)
Hash identifier: tNljGOanaYmhciyZMJ+rYRQb3y9d7kGrZ7nlMW780Js=
Subject key identifier: 12:A7:2D:20:71:3B:B7:84:DC:7C:27:28:2D:CA:DA:1E:FA:05:9E:FD
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 0198EB94F402DE76A8999BD1E67A2D3655DC
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/EqctIHE7t4TcfCcoLcraHvoFnv0.roa
Signing time: Wed 27 Aug 2025 12:51:04 +0000
ROA not before: Wed 27 Aug 2025 12:51:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47583
IP address blocks: 2.57.88.0/23 maxlen: 24
2.57.90.0/24 maxlen: 24
2.57.91.0/24 maxlen: 24
31.170.160.0/22 maxlen: 24
31.170.164.0/23 maxlen: 24
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 24
31.220.16.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.20.0/23 maxlen: 24
31.220.20.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.22.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.48.0/20 maxlen: 24
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.108.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
45.13.132.0/23 maxlen: 24
45.13.134.0/23 maxlen: 24
45.13.252.0/23 maxlen: 24
45.13.254.0/23 maxlen: 24
45.87.80.0/22 maxlen: 24
45.93.136.0/22 maxlen: 24
93.188.160.0/21 maxlen: 24
141.136.33.0/24 maxlen: 24
141.136.34.0/24 maxlen: 24
141.136.35.0/24 maxlen: 24
141.136.36.0/24 maxlen: 24
141.136.39.0/24 maxlen: 24
141.136.41.0/24 maxlen: 24
141.136.42.0/24 maxlen: 24
141.136.43.0/24 maxlen: 24
141.136.44.0/24 maxlen: 24
141.136.45.0/24 maxlen: 24
141.136.46.0/24 maxlen: 24
141.136.47.0/24 maxlen: 24
153.92.0.0/24 maxlen: 24
153.92.1.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.3.0/24 maxlen: 24
153.92.4.0/23 maxlen: 24
153.92.6.0/23 maxlen: 24
153.92.6.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.8.0/21 maxlen: 24
153.92.8.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
153.92.208.0/22 maxlen: 24
153.92.212.0/22 maxlen: 24
153.92.216.0/21 maxlen: 24
156.67.64.0/20 maxlen: 24
156.67.208.0/20 maxlen: 24
185.28.20.0/24 maxlen: 24
185.28.21.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
194.11.154.0/23 maxlen: 24
194.11.214.0/23 maxlen: 24
195.110.58.0/23 maxlen: 24
212.1.208.0/21 maxlen: 24
212.1.208.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.211.0/24 maxlen: 24
212.1.212.0/22 maxlen: 24
212.1.212.0/24 maxlen: 24
212.1.215.0/24 maxlen: 24
2a02:4780::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:2b::/48 maxlen: 48
2a02:4780:2c::/48 maxlen: 48
2a02:4780:2d::/48 maxlen: 48
2a02:4780:2e::/48 maxlen: 48
2a02:4780:2f::/48 maxlen: 48
2a02:4780:30::/48 maxlen: 48
2a02:4780:31::/48 maxlen: 48
2a02:4780:32::/48 maxlen: 48
2a02:4780:33::/48 maxlen: 48
2a02:4780:34::/48 maxlen: 48
2a02:4780:35::/48 maxlen: 48
2a02:4780:36::/48 maxlen: 48
2a02:4780:37::/48 maxlen: 48
2a02:4780:38::/48 maxlen: 48
2a02:4780:39::/48 maxlen: 48
2a02:4780:3a::/48 maxlen: 48
2a02:4780:3b::/48 maxlen: 48
2a02:4780:3c::/48 maxlen: 48
2a02:4780:3d::/48 maxlen: 48
2a02:4780:3e::/48 maxlen: 48
2a02:4780:3f::/48 maxlen: 48
2a02:4780:40::/48 maxlen: 48
2a02:4780:41::/48 maxlen: 48
2a02:4780:42::/48 maxlen: 48
2a02:4780:43::/48 maxlen: 48
2a02:4780:44::/48 maxlen: 48
2a02:4780:45::/48 maxlen: 48
2a02:4780:46::/48 maxlen: 48
2a02:4780:47::/48 maxlen: 48
2a02:4780:48::/48 maxlen: 48
2a02:4780:49::/48 maxlen: 48
2a02:4780:4a::/48 maxlen: 48
2a02:4780:4b::/48 maxlen: 48
2a02:4780:4c::/48 maxlen: 48
2a02:4780:4d::/48 maxlen: 48
2a02:4780:4e::/48 maxlen: 48
2a02:4780:4f::/48 maxlen: 48
2a02:4780:50::/48 maxlen: 48
2a02:4780:51::/48 maxlen: 48
2a02:4780:52::/48 maxlen: 48
2a02:4780:53::/48 maxlen: 48
2a02:4780:55::/48 maxlen: 48
2a02:4780:56::/48 maxlen: 48
2a02:4780:57::/48 maxlen: 48
2a02:4780:58::/48 maxlen: 48
2a02:4780:59::/48 maxlen: 48
2a02:4780:5a::/48 maxlen: 48
2a02:4780:5c::/48 maxlen: 48
2a02:4780:5d::/48 maxlen: 48
2a02:4780:5e::/48 maxlen: 48
2a02:4780:5f::/48 maxlen: 48
2a02:4780:60::/48 maxlen: 48
2a02:4780:66::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
2a02:4780:d053::/48 maxlen: 48
2a02:4780:dead::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:eb:94:f4:02:de:76:a8:99:9b:d1:e6:7a:2d:36:55:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Aug 27 12:51:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12a72d20713bb784dc7c27282dcada1efa059efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:02:7b:5e:90:ca:57:85:41:54:40:ec:e3:82:
38:fa:8c:17:96:6a:86:e7:5c:20:e9:7b:fc:b6:29:
90:57:4a:29:02:fe:a0:42:41:e2:b3:ac:78:f3:7c:
a5:e4:77:e7:c7:a8:51:c6:dd:34:05:57:f8:b1:49:
96:d7:4c:d7:d1:62:1f:c0:b3:17:44:67:57:dd:c7:
82:dd:9a:6b:07:7a:47:dd:63:6c:47:62:d1:6c:b3:
78:99:a8:36:98:c7:d4:40:1a:a3:c7:2f:4c:8e:da:
4d:42:21:ca:4c:0c:7c:15:fe:03:d2:e9:47:04:fe:
e4:17:66:4a:5c:ec:a0:8b:40:72:d0:03:1b:4d:b7:
2f:88:29:94:ef:29:28:91:60:14:a6:59:ae:c6:a0:
59:d7:3d:99:f6:56:09:c6:53:e3:98:9c:bb:1b:b9:
4a:6c:ac:20:50:5e:1b:98:fd:a7:97:f7:aa:b7:88:
61:e9:95:9e:95:38:27:97:8b:c1:19:01:81:ed:7a:
ff:50:32:d2:e8:02:01:65:43:68:83:68:23:32:13:
12:20:f0:06:5c:bf:69:4f:6f:7d:69:df:ed:00:df:
bf:1b:0f:e9:26:71:f4:c6:d1:a5:ab:25:0a:00:d7:
a7:a9:ad:1c:93:39:91:e5:4e:b2:8c:4b:f2:10:24:
9a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A7:2D:20:71:3B:B7:84:DC:7C:27:28:2D:CA:DA:1E:FA:05:9E:FD
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/EqctIHE7t4TcfCcoLcraHvoFnv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
141.136.33.0-141.136.36.255
141.136.39.0/24
141.136.41.0-141.136.47.255
153.92.0.0/20
153.92.208.0/20
156.67.64.0/20
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:53:ffff:ffff:ffff:ffff:ffff
2a02:4780:55::-2a02:4780:5a:ffff:ffff:ffff:ffff:ffff
2a02:4780:5c::-2a02:4780:60:ffff:ffff:ffff:ffff:ffff
2a02:4780:66::/48
2a02:4780:84::/47
2a02:4780:d053::/48
2a02:4780:dead::/48
Signature Algorithm: sha256WithRSAEncryption
a1:21:8d:a8:bc:2d:79:05:b8:cf:29:fa:9e:0f:f1:2d:cf:22:
4f:1b:91:a5:51:a8:40:5b:c7:0f:a4:6c:69:c6:f8:57:4e:01:
a9:0f:96:99:47:b1:04:e4:86:36:41:dc:29:86:bb:41:70:e4:
3f:92:c5:76:9e:2d:5a:d6:7b:64:e7:99:d9:7d:7f:fd:92:13:
c4:5d:95:bd:c2:60:d9:68:97:70:71:b1:c4:59:ec:a1:8b:3e:
05:e7:90:23:37:07:b0:61:fc:e2:e4:86:5d:57:b6:43:21:cc:
db:cd:ad:b2:56:30:20:f7:9a:99:18:3d:63:af:94:03:04:58:
80:0f:56:df:af:dc:2d:d6:51:38:62:fd:b2:ca:ee:66:26:eb:
b6:06:41:14:c1:ef:ce:fe:a4:0e:49:6e:d7:1c:a3:b2:a3:d8:
de:4c:c5:50:86:d6:8d:70:fa:63:eb:c9:41:ac:07:0c:a1:2f:
7d:4f:6d:58:26:a6:bc:ed:53:79:bd:1c:6e:03:40:1e:d4:5a:
8d:f7:5e:19:9d:0e:94:c5:6f:28:45:ae:43:34:1c:d1:3a:58:
76:2b:d3:c4:c0:dc:29:63:c8:66:51:cd:3a:22:07:e8:01:56:
e5:36:08:93:24:3e:30:39:67:2b:fe:e9:79:83:f6:ac:19:63:
38:59:7d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:38:28 2025 by rpki-client