Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/QzPUWV1cD2hqdnT2S8ONTKcaj_U.roa
File: QzPUWV1cD2hqdnT2S8ONTKcaj_U.roa (raw, json)
Hash identifier: pI5peZyUYeHpSc4Mi6Z+ZrRkY42VGzGJiQdmyTFUMNU=
Subject key identifier: 43:33:D4:59:5D:5C:0F:68:6A:76:74:F6:4B:C3:8D:4C:A7:1A:8F:F5
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 01961106A3B137845EAF25055C0929219D1E
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/QzPUWV1cD2hqdnT2S8ONTKcaj_U.roa
Signing time: Mon 07 Apr 2025 16:12:49 +0000
ROA not before: Mon 07 Apr 2025 16:12:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20804
IP address blocks: 81.15.128.0/17 maxlen: 17
81.15.128.0/23 maxlen: 23
81.15.130.0/24 maxlen: 24
81.15.132.0/23 maxlen: 23
81.15.133.0/24 maxlen: 24
81.15.135.0/24 maxlen: 24
81.15.136.0/23 maxlen: 23
81.15.148.0/22 maxlen: 22
81.15.150.0/24 maxlen: 24
81.15.156.0/24 maxlen: 24
81.15.159.0/24 maxlen: 24
81.15.168.0/21 maxlen: 21
81.15.174.0/24 maxlen: 24
81.15.175.0/24 maxlen: 24
81.15.180.0/22 maxlen: 22
81.15.182.0/23 maxlen: 23
81.15.184.0/23 maxlen: 23
81.15.185.0/24 maxlen: 24
81.15.187.0/24 maxlen: 24
81.15.190.0/24 maxlen: 24
81.15.191.0/24 maxlen: 24
81.15.192.0/22 maxlen: 22
81.15.194.0/24 maxlen: 24
81.15.195.0/24 maxlen: 24
81.15.198.0/23 maxlen: 23
81.15.198.0/24 maxlen: 24
81.15.199.0/24 maxlen: 24
81.15.201.0/24 maxlen: 24
81.15.202.0/24 maxlen: 24
81.15.203.0/24 maxlen: 24
81.15.204.0/23 maxlen: 23
81.15.209.0/24 maxlen: 24
81.15.214.0/23 maxlen: 23
81.15.216.0/24 maxlen: 24
81.15.217.0/24 maxlen: 24
81.15.218.0/23 maxlen: 23
81.15.218.0/24 maxlen: 24
81.15.222.0/23 maxlen: 23
81.15.222.0/24 maxlen: 24
81.15.224.0/22 maxlen: 22
81.15.225.0/24 maxlen: 24
81.15.227.0/24 maxlen: 24
81.15.230.0/24 maxlen: 24
81.15.232.0/22 maxlen: 22
81.15.232.0/24 maxlen: 24
81.15.236.0/24 maxlen: 24
81.15.237.0/24 maxlen: 24
81.15.238.0/24 maxlen: 24
81.15.239.0/24 maxlen: 24
81.15.240.0/23 maxlen: 23
81.15.242.0/24 maxlen: 24
81.15.244.0/23 maxlen: 23
81.15.254.0/23 maxlen: 23
81.15.254.0/24 maxlen: 24
81.15.255.0/24 maxlen: 24
82.177.0.0/16 maxlen: 16
82.177.0.0/23 maxlen: 23
82.177.2.0/24 maxlen: 24
82.177.4.0/22 maxlen: 22
82.177.9.0/24 maxlen: 24
82.177.10.0/23 maxlen: 23
82.177.14.0/23 maxlen: 23
82.177.16.0/24 maxlen: 24
82.177.19.0/24 maxlen: 24
82.177.20.0/22 maxlen: 22
82.177.21.0/24 maxlen: 24
82.177.27.0/24 maxlen: 24
82.177.35.0/24 maxlen: 24
82.177.37.0/24 maxlen: 24
82.177.41.0/24 maxlen: 24
82.177.42.0/23 maxlen: 23
82.177.43.0/24 maxlen: 24
82.177.44.0/22 maxlen: 22
82.177.46.0/24 maxlen: 24
82.177.48.0/21 maxlen: 21
82.177.48.0/24 maxlen: 24
82.177.50.0/24 maxlen: 24
82.177.52.0/23 maxlen: 23
82.177.54.0/24 maxlen: 24
82.177.59.0/24 maxlen: 24
82.177.68.0/22 maxlen: 22
82.177.72.0/21 maxlen: 21
82.177.80.0/21 maxlen: 21
82.177.88.0/22 maxlen: 22
82.177.90.0/23 maxlen: 23
82.177.90.0/24 maxlen: 24
82.177.91.0/24 maxlen: 24
82.177.102.0/23 maxlen: 24
82.177.108.0/23 maxlen: 23
82.177.111.0/24 maxlen: 24
82.177.112.0/22 maxlen: 22
82.177.116.0/22 maxlen: 22
82.177.119.0/24 maxlen: 24
82.177.120.0/21 maxlen: 21
82.177.122.0/24 maxlen: 24
82.177.127.0/24 maxlen: 24
82.177.130.0/24 maxlen: 24
82.177.132.0/23 maxlen: 23
82.177.133.0/24 maxlen: 24
82.177.140.0/23 maxlen: 23
82.177.144.0/20 maxlen: 20
82.177.160.0/24 maxlen: 24
82.177.164.0/22 maxlen: 22
82.177.164.0/24 maxlen: 24
82.177.165.0/24 maxlen: 24
82.177.168.0/21 maxlen: 21
82.177.176.0/21 maxlen: 21
82.177.177.0/24 maxlen: 24
82.177.179.0/24 maxlen: 24
82.177.182.0/24 maxlen: 24
82.177.183.0/24 maxlen: 24
82.177.188.0/24 maxlen: 24
82.177.191.0/24 maxlen: 24
82.177.192.0/24 maxlen: 24
82.177.194.0/24 maxlen: 24
82.177.195.0/24 maxlen: 24
82.177.196.0/22 maxlen: 22
82.177.196.0/24 maxlen: 24
82.177.199.0/24 maxlen: 24
82.177.206.0/24 maxlen: 24
82.177.207.0/24 maxlen: 24
82.177.208.0/24 maxlen: 24
82.177.244.0/23 maxlen: 23
82.177.247.0/24 maxlen: 24
82.177.249.0/24 maxlen: 24
82.177.251.0/24 maxlen: 24
82.177.252.0/24 maxlen: 24
82.177.254.0/23 maxlen: 23
88.220.0.0/17 maxlen: 17
88.220.32.0/21 maxlen: 21
88.220.40.0/22 maxlen: 22
88.220.44.0/24 maxlen: 24
88.220.46.0/23 maxlen: 23
88.220.48.0/23 maxlen: 23
88.220.50.0/23 maxlen: 23
88.220.52.0/23 maxlen: 23
88.220.52.0/24 maxlen: 24
88.220.58.0/23 maxlen: 23
88.220.60.0/23 maxlen: 23
88.220.64.0/22 maxlen: 22
88.220.65.0/24 maxlen: 24
88.220.66.0/23 maxlen: 23
88.220.81.0/24 maxlen: 24
88.220.84.0/24 maxlen: 24
88.220.107.0/24 maxlen: 24
88.220.113.0/24 maxlen: 24
88.220.114.0/24 maxlen: 24
88.220.116.0/24 maxlen: 24
88.220.117.0/24 maxlen: 24
88.220.120.0/22 maxlen: 22
88.220.128.0/18 maxlen: 18
88.220.132.0/23 maxlen: 23
88.220.152.0/23 maxlen: 23
88.220.165.0/24 maxlen: 24
88.220.181.0/24 maxlen: 24
88.220.185.0/24 maxlen: 24
88.220.192.0/20 maxlen: 20
88.220.208.0/20 maxlen: 20
88.220.224.0/19 maxlen: 19
88.220.252.0/24 maxlen: 24
88.220.253.0/24 maxlen: 24
194.183.32.0/19 maxlen: 19
194.183.32.0/23 maxlen: 23
194.183.34.0/23 maxlen: 23
194.183.48.0/22 maxlen: 22
194.183.54.0/24 maxlen: 24
194.183.55.0/24 maxlen: 24
194.183.56.0/23 maxlen: 23
195.136.0.0/16 maxlen: 16
195.136.0.0/23 maxlen: 23
195.136.4.0/22 maxlen: 22
195.136.16.0/22 maxlen: 22
195.136.21.0/24 maxlen: 24
195.136.25.0/24 maxlen: 24
195.136.27.0/24 maxlen: 24
195.136.32.158/32 maxlen: 32
195.136.32.201/32 maxlen: 32
195.136.34.0/23 maxlen: 23
195.136.36.0/24 maxlen: 24
195.136.38.0/23 maxlen: 23
195.136.48.0/22 maxlen: 22
195.136.48.0/24 maxlen: 24
195.136.65.0/24 maxlen: 24
195.136.88.0/22 maxlen: 22
195.136.112.0/21 maxlen: 21
195.136.113.0/24 maxlen: 24
195.136.114.0/23 maxlen: 23
195.136.120.0/24 maxlen: 24
195.136.122.0/24 maxlen: 24
195.136.148.0/22 maxlen: 22
195.136.156.0/23 maxlen: 23
195.136.164.0/23 maxlen: 23
195.136.174.0/23 maxlen: 23
195.136.176.0/22 maxlen: 22
195.136.248.0/21 maxlen: 21
195.136.252.0/24 maxlen: 24
213.172.160.0/19 maxlen: 19
2a00:4120::/32 maxlen: 32
2a00:4120:8000:2::/64 maxlen: 64
2a00:4120:8000:4::/64 maxlen: 64
2a00:4120:8000:5::/64 maxlen: 64
2a00:4120:8000:70::/65 maxlen: 65
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 25 Apr 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:06:a3:b1:37:84:5e:af:25:05:5c:09:29:21:9d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Apr 7 16:12:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4333d4595d5c0f686a7674f64bc38d4ca71a8ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:e6:3b:a3:9a:68:b4:75:04:c4:d8:20:59:
89:fd:4a:50:e4:06:bc:27:24:97:b9:4d:af:52:d2:
ff:ab:47:86:05:c9:b6:be:d8:c4:70:df:a7:3f:49:
fc:de:5b:cd:1c:a0:52:c2:65:df:54:6b:b9:d0:dd:
4e:1f:98:02:8b:cb:e4:3c:d5:e9:7a:ef:c3:9b:32:
9b:ce:43:a1:1b:6d:18:6a:cc:b0:01:40:0a:55:b8:
55:1b:c7:bd:a5:16:63:98:7a:16:0a:70:16:ea:fa:
3e:4a:03:c9:08:a6:b8:cc:64:a0:de:7a:04:13:a0:
6e:c4:a9:d4:0c:b4:fc:fb:c5:09:a4:ef:c3:d3:eb:
52:b7:4e:b0:79:77:23:28:2c:27:d4:93:86:8e:a3:
c0:08:27:52:f0:b0:bd:2a:fc:84:ac:b0:47:2c:c7:
af:7c:ac:72:f3:f4:a3:05:61:3b:c8:3d:78:2d:8c:
28:8e:24:ab:6d:61:1c:dd:6a:eb:2f:7a:11:03:76:
99:37:0f:f1:fb:62:8b:a3:ab:fd:2d:26:c9:c9:4d:
e0:9a:c9:4e:16:dc:20:94:86:1e:3f:18:50:28:e1:
f1:ce:8f:39:96:19:72:ff:ff:90:f5:3e:0e:08:af:
37:49:0e:fe:af:cb:98:4d:ff:a6:2d:d6:00:9c:f7:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:33:D4:59:5D:5C:0F:68:6A:76:74:F6:4B:C3:8D:4C:A7:1A:8F:F5
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/QzPUWV1cD2hqdnT2S8ONTKcaj_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.128.0/17
82.177.0.0/16
88.220.0.0/16
194.183.32.0/19
195.136.0.0/16
213.172.160.0/19
IPv6:
2a00:4120::/32
Signature Algorithm: sha256WithRSAEncryption
5e:2b:ca:88:71:e9:f0:3b:ea:19:e4:99:a4:7a:d5:3a:8e:04:
9c:05:47:14:84:ed:76:11:63:4d:65:a9:24:08:0a:bf:aa:c0:
a4:0c:85:2a:1d:02:f4:20:5a:e7:08:f8:e6:de:e9:ff:be:44:
f8:d0:62:b1:82:d8:f3:27:99:39:58:80:2e:5c:5f:0c:c2:4f:
b2:e9:38:86:14:17:04:8c:e7:26:0d:7b:71:af:c7:7f:4d:1d:
8b:e6:30:89:57:21:d4:79:a0:00:67:1a:ad:37:cd:87:eb:ef:
25:5a:98:7d:28:72:d9:09:63:c6:f8:04:69:17:a2:29:7b:b4:
c2:08:04:73:76:27:45:f1:1a:e3:ed:2d:d0:20:00:ea:47:23:
5f:88:e5:52:b7:fc:be:e9:0d:77:3c:fc:23:76:6d:11:6d:8c:
51:dc:5e:d1:85:30:f2:c4:97:38:bc:78:f8:75:5e:e7:71:f3:
4a:a9:a8:ee:74:ab:9c:ba:73:4a:62:8b:79:18:40:87:8a:aa:
c6:92:14:e5:ad:a3:9f:a0:d1:be:8e:6b:1b:9e:14:6b:bb:f9:
a5:4b:3a:31:77:c4:01:2f:81:ca:e6:02:c1:90:c3:2a:52:90:
9e:12:ea:d3:5a:e3:1e:40:fa:89:b9:cf:89:c9:51:24:15:13:
35:66:a2:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 10:23:04 2025 by rpki-client