Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/iwjx0AhvwxAf6vZnR0V70CNSj3k.roa
File: iwjx0AhvwxAf6vZnR0V70CNSj3k.roa (raw, json)
Hash identifier: s4vyo2AL6KEF6yGbsgdcSILxp1qahFdr2Um6ni3Nsz4=
Subject key identifier: 8B:08:F1:D0:08:6F:C3:10:1F:EA:F6:67:47:45:7B:D0:23:52:8F:79
Certificate issuer: /CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Certificate serial: 0196CEF207EE956F22339F0831913036B104
Authority key identifier: E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/iwjx0AhvwxAf6vZnR0V70CNSj3k.roa
Signing time: Wed 14 May 2025 13:18:10 +0000
ROA not before: Wed 14 May 2025 13:18:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29314
IP address blocks: 31.11.128.0/17 maxlen: 17
31.11.128.0/24 maxlen: 24
31.11.129.0/24 maxlen: 24
31.11.130.0/24 maxlen: 24
31.11.131.0/24 maxlen: 24
31.11.132.0/22 maxlen: 22
31.11.172.0/24 maxlen: 24
31.11.202.0/24 maxlen: 24
31.11.208.0/22 maxlen: 22
31.11.228.0/24 maxlen: 24
31.22.96.0/21 maxlen: 21
31.22.100.0/23 maxlen: 23
31.135.168.0/21 maxlen: 21
31.135.175.0/24 maxlen: 24
37.8.192.0/18 maxlen: 18
37.8.208.0/24 maxlen: 24
37.8.214.0/24 maxlen: 24
37.8.230.0/24 maxlen: 24
37.8.231.0/24 maxlen: 24
37.77.152.0/21 maxlen: 21
62.122.112.0/21 maxlen: 21
77.222.224.0/21 maxlen: 21
77.222.232.0/21 maxlen: 21
77.222.240.0/20 maxlen: 20
77.222.248.0/22 maxlen: 22
77.222.252.0/22 maxlen: 22
78.31.152.0/21 maxlen: 21
78.31.209.0/24 maxlen: 24
78.88.0.0/17 maxlen: 17
78.88.16.0/24 maxlen: 24
78.88.28.0/22 maxlen: 22
78.88.28.0/24 maxlen: 24
78.88.29.0/24 maxlen: 24
78.88.30.0/24 maxlen: 24
78.88.31.0/24 maxlen: 24
78.88.43.0/24 maxlen: 24
78.88.123.0/24 maxlen: 24
78.88.128.0/17 maxlen: 17
78.88.188.0/22 maxlen: 22
78.88.216.0/22 maxlen: 22
82.139.0.0/18 maxlen: 18
82.139.32.0/21 maxlen: 21
82.139.48.0/21 maxlen: 21
83.143.40.0/21 maxlen: 21
83.143.136.0/21 maxlen: 21
83.243.104.0/21 maxlen: 21
88.156.0.0/18 maxlen: 18
88.156.64.0/18 maxlen: 18
88.156.64.0/24 maxlen: 24
88.156.78.0/24 maxlen: 24
88.156.80.176/28 maxlen: 28
88.156.128.0/18 maxlen: 18
88.156.128.0/21 maxlen: 21
88.156.128.0/23 maxlen: 23
88.156.130.0/23 maxlen: 23
88.156.132.0/23 maxlen: 23
88.156.134.0/23 maxlen: 23
88.156.136.0/21 maxlen: 21
88.156.164.0/22 maxlen: 22
88.156.192.0/18 maxlen: 18
88.156.222.0/24 maxlen: 24
88.156.226.0/23 maxlen: 23
88.156.255.0/24 maxlen: 24
89.151.0.0/18 maxlen: 18
89.151.16.0/20 maxlen: 20
89.151.40.0/21 maxlen: 21
91.192.76.0/22 maxlen: 22
91.192.76.0/24 maxlen: 24
91.192.78.0/24 maxlen: 24
91.230.159.0/24 maxlen: 24
91.230.162.0/23 maxlen: 23
91.230.164.0/22 maxlen: 22
91.231.116.0/23 maxlen: 23
91.238.232.0/22 maxlen: 22
93.105.0.0/17 maxlen: 17
93.105.40.0/24 maxlen: 24
93.105.42.0/24 maxlen: 24
93.105.128.0/17 maxlen: 17
93.105.142.0/24 maxlen: 24
93.105.144.0/22 maxlen: 22
93.105.168.0/21 maxlen: 21
93.105.176.0/23 maxlen: 23
93.105.178.0/23 maxlen: 23
93.105.179.0/24 maxlen: 24
93.105.180.0/24 maxlen: 24
93.105.181.0/24 maxlen: 24
93.105.182.0/24 maxlen: 24
93.105.183.0/24 maxlen: 24
93.105.224.0/21 maxlen: 21
93.105.236.0/24 maxlen: 24
93.105.237.0/24 maxlen: 24
93.176.192.0/18 maxlen: 24
94.231.48.0/20 maxlen: 20
95.160.0.0/17 maxlen: 24
95.160.16.0/22 maxlen: 22
95.160.28.0/22 maxlen: 22
95.160.56.0/22 maxlen: 22
95.160.76.0/22 maxlen: 22
95.160.126.0/23 maxlen: 23
95.160.128.0/17 maxlen: 17
95.160.152.0/24 maxlen: 24
95.160.153.0/24 maxlen: 24
95.160.154.0/24 maxlen: 24
95.160.155.0/24 maxlen: 24
95.160.156.0/24 maxlen: 24
95.160.157.0/24 maxlen: 24
95.160.158.0/24 maxlen: 24
95.160.159.0/24 maxlen: 24
95.160.166.0/24 maxlen: 24
95.160.170.0/24 maxlen: 24
95.160.228.0/22 maxlen: 22
95.160.233.0/24 maxlen: 24
95.160.236.0/22 maxlen: 22
109.107.0.0/19 maxlen: 19
109.107.0.0/21 maxlen: 21
109.107.9.0/24 maxlen: 24
109.197.56.0/21 maxlen: 21
109.197.64.0/21 maxlen: 21
109.241.0.0/18 maxlen: 18
109.241.64.0/18 maxlen: 18
109.241.128.0/18 maxlen: 18
109.241.192.0/18 maxlen: 18
178.235.0.0/17 maxlen: 17
178.235.40.0/24 maxlen: 24
178.235.41.0/24 maxlen: 24
178.235.42.0/24 maxlen: 24
178.235.43.0/24 maxlen: 24
178.235.98.0/24 maxlen: 24
178.235.110.0/24 maxlen: 24
178.235.128.0/17 maxlen: 17
178.235.128.0/24 maxlen: 24
178.235.129.0/24 maxlen: 24
178.235.130.0/24 maxlen: 24
178.235.131.0/24 maxlen: 24
178.235.132.0/23 maxlen: 23
178.235.134.0/24 maxlen: 24
178.235.135.0/24 maxlen: 24
178.235.136.0/23 maxlen: 23
178.235.138.0/23 maxlen: 23
178.235.140.0/24 maxlen: 24
178.235.141.0/24 maxlen: 24
178.235.142.0/23 maxlen: 23
178.235.144.0/23 maxlen: 23
178.235.146.0/24 maxlen: 24
178.235.147.0/24 maxlen: 24
178.235.148.0/22 maxlen: 22
178.235.148.0/23 maxlen: 23
178.235.150.0/23 maxlen: 23
178.235.150.0/24 maxlen: 24
178.235.152.0/21 maxlen: 21
178.235.160.0/19 maxlen: 19
178.235.192.0/18 maxlen: 18
185.51.180.0/22 maxlen: 22
192.166.120.0/23 maxlen: 23
193.201.18.0/23 maxlen: 23
194.54.188.0/22 maxlen: 22
195.26.72.0/22 maxlen: 22
195.28.170.0/23 maxlen: 23
195.191.162.0/23 maxlen: 23
195.225.92.0/22 maxlen: 22
195.242.252.0/22 maxlen: 22
2a00:9f00::/32 maxlen: 32
2a00:9f00::/36 maxlen: 36
2a00:9f00::/48 maxlen: 48
2a00:9f00:1::/48 maxlen: 48
2a00:9f00:a::/48 maxlen: 48
2a00:9f00:c::/48 maxlen: 48
2a00:9f00:10::/48 maxlen: 48
2a00:9f00:aa::/48 maxlen: 48
2a00:9f00:bb::/48 maxlen: 48
2a00:9f00:cc::/48 maxlen: 48
2a00:9f00:1000::/36 maxlen: 36
2a00:9f00:2000::/36 maxlen: 36
2a00:9f00:2007::/48 maxlen: 48
2a00:9f00:3000::/36 maxlen: 36
2a00:9f00:4000::/36 maxlen: 36
2a00:9f00:5000::/36 maxlen: 36
2a00:9f00:6000::/36 maxlen: 36
2a00:9f00:7000::/36 maxlen: 36
2a00:9f00:8000::/36 maxlen: 36
2a00:9f00:9000::/36 maxlen: 36
2a00:9f00:a000::/36 maxlen: 36
2a00:9f00:abba::/48 maxlen: 48
2a00:9f00:b000::/36 maxlen: 36
2a00:9f00:babe::/48 maxlen: 48
2a00:9f00:beaf::/48 maxlen: 48
2a00:9f00:c000::/36 maxlen: 36
2a00:9f00:cafe::/48 maxlen: 48
2a00:9f00:d000::/36 maxlen: 36
2a00:9f00:dead::/48 maxlen: 48
2a00:9f00:e000::/36 maxlen: 36
2a00:9f00:f000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:f2:07:ee:95:6f:22:33:9f:08:31:91:30:36:b1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Validity
Not Before: May 14 13:18:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8b08f1d0086fc3101feaf66747457bd023528f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b6:a5:92:34:ea:d8:0b:35:6e:59:44:87:90:
f8:44:ee:b8:f8:3a:75:4a:3f:b8:f5:91:0c:2b:03:
d9:87:60:82:6e:02:ac:2c:b6:6e:88:f4:e8:fd:ce:
2d:93:7f:58:b4:1d:96:4d:9f:a8:ef:9c:cc:a9:92:
7a:d4:fe:7c:1a:3c:4b:2c:af:b0:a2:3f:6b:7a:2b:
e4:82:fa:71:09:2d:65:66:43:94:7d:25:db:33:b0:
9e:64:d1:3b:eb:7a:c3:24:6f:71:18:5f:3c:97:ed:
36:64:b6:a7:2f:cd:22:21:e2:01:48:c3:f1:2c:52:
6a:05:f6:cf:05:50:2c:84:9e:6c:c2:1f:41:00:f0:
74:76:24:09:9f:fd:cd:d2:a0:2c:4a:87:f6:42:71:
fb:56:fd:64:0d:21:05:2f:b9:c9:2f:dd:4b:b7:d6:
33:6e:fa:3d:0a:21:20:cf:85:62:41:14:d2:42:73:
43:1b:c8:57:ae:bd:2c:6e:7f:5e:94:c6:a8:5a:2d:
00:68:e1:e7:bb:96:4f:fd:44:d0:b9:f3:61:6b:6e:
35:5a:0a:c0:2d:6a:6b:34:e2:12:9d:3c:31:73:25:
8d:7e:1a:58:a9:a8:08:8e:e8:2e:ca:f8:c0:50:c2:
5d:99:12:ba:96:1c:22:fb:9b:2a:ab:a9:16:d9:29:
b2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:08:F1:D0:08:6F:C3:10:1F:EA:F6:67:47:45:7B:D0:23:52:8F:79
X509v3 Authority Key Identifier:
keyid:E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/iwjx0AhvwxAf6vZnR0V70CNSj3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.128.0/17
31.22.96.0/21
31.135.168.0/21
37.8.192.0/18
37.77.152.0/21
62.122.112.0/21
77.222.224.0/19
78.31.152.0/21
78.31.209.0/24
78.88.0.0/16
82.139.0.0/18
83.143.40.0/21
83.143.136.0/21
83.243.104.0/21
88.156.0.0/16
89.151.0.0/18
91.192.76.0/22
91.230.159.0/24
91.230.162.0-91.230.167.255
91.231.116.0/23
91.238.232.0/22
93.105.0.0/16
93.176.192.0/18
94.231.48.0/20
95.160.0.0/16
109.107.0.0/19
109.197.56.0-109.197.71.255
109.241.0.0/16
178.235.0.0/16
185.51.180.0/22
192.166.120.0/23
193.201.18.0/23
194.54.188.0/22
195.26.72.0/22
195.28.170.0/23
195.191.162.0/23
195.225.92.0/22
195.242.252.0/22
IPv6:
2a00:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
29:8f:60:b1:1f:29:9a:e1:ec:d6:2e:e8:1f:d4:29:29:98:07:
f4:fe:02:05:42:a6:73:17:d0:e0:00:45:f0:ea:e4:85:02:44:
24:e2:bc:d4:c8:8f:4e:83:0d:e1:6a:7a:c9:26:16:3c:15:20:
2a:ce:a9:fd:ba:40:fc:25:ae:67:4d:5f:66:62:f9:74:b0:e5:
8b:87:a5:08:c9:6a:69:67:9b:94:17:4a:1b:09:5d:e7:e0:68:
c4:ce:bb:5a:8e:ca:1f:c1:9d:8e:5c:67:07:80:ca:49:16:b2:
fd:fe:b6:99:87:e3:59:85:9b:47:79:ec:dd:b5:a5:99:4f:ab:
f4:d3:19:48:be:4a:56:e7:66:2e:9a:b2:f2:2c:bc:07:2e:18:
35:7c:0d:3b:b2:c8:0d:70:78:db:1a:a3:74:ba:b8:73:38:d0:
11:d2:a9:74:ef:16:2b:c7:03:0b:b5:b0:c1:0b:71:19:25:74:
64:9a:fe:8d:0a:d1:fb:1f:6e:2e:0f:2d:97:b3:c6:b8:79:c8:
da:67:2a:e0:f3:b3:b4:ec:fe:b9:47:6f:40:67:ac:ca:e6:04:
11:03:18:e9:f3:e1:c9:53:76:38:35:d3:2c:29:65:49:b3:ee:
ca:1c:8d:b8:eb:76:38:2f:9f:6a:a6:cc:a0:d7:b0:1b:12:e5:
4c:f8:d6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:52:31 2025 by rpki-client