Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/_Xj2eknSD0ggywf9BvZfFW4ND5Y.roa
File: _Xj2eknSD0ggywf9BvZfFW4ND5Y.roa (raw, json)
Hash identifier: lqrmQ5OQaXV1qMgJ8jG3Tq4DJQ0kTl6M/TLRe7MYJpY=
Subject key identifier: FD:78:F6:7A:49:D2:0F:48:20:CB:07:FD:06:F6:5F:15:6E:0D:0F:96
Certificate issuer: /CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Certificate serial: 019633C34E0F17A737EFAE5E5A2E1728475E
Authority key identifier: CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/_Xj2eknSD0ggywf9BvZfFW4ND5Y.roa
Signing time: Mon 14 Apr 2025 10:05:59 +0000
ROA not before: Mon 14 Apr 2025 10:05:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25145
IP address blocks: 31.40.240.0/24 maxlen: 24
31.40.242.0/24 maxlen: 24
77.92.96.0/19 maxlen: 19
77.92.96.0/24 maxlen: 24
77.92.97.0/24 maxlen: 24
77.92.98.0/24 maxlen: 24
77.92.99.0/24 maxlen: 24
77.92.100.0/22 maxlen: 22
77.92.100.0/24 maxlen: 24
77.92.101.0/24 maxlen: 24
77.92.102.0/24 maxlen: 24
77.92.103.0/24 maxlen: 24
77.92.104.0/24 maxlen: 24
77.92.105.0/24 maxlen: 24
77.92.106.0/24 maxlen: 24
77.92.107.0/24 maxlen: 24
77.92.108.0/22 maxlen: 22
77.92.108.0/24 maxlen: 24
77.92.109.0/24 maxlen: 24
77.92.110.0/24 maxlen: 24
77.92.111.0/24 maxlen: 24
77.92.112.0/22 maxlen: 22
77.92.112.0/24 maxlen: 24
77.92.113.0/24 maxlen: 24
77.92.114.0/24 maxlen: 24
77.92.115.0/24 maxlen: 24
77.92.116.0/24 maxlen: 24
77.92.117.0/24 maxlen: 24
77.92.118.0/24 maxlen: 24
77.92.119.0/24 maxlen: 24
77.92.120.0/24 maxlen: 24
77.92.121.0/24 maxlen: 24
77.92.122.0/24 maxlen: 24
77.92.123.0/24 maxlen: 24
77.92.124.0/24 maxlen: 24
77.92.125.0/24 maxlen: 24
77.92.126.0/24 maxlen: 24
77.92.127.0/24 maxlen: 24
185.115.208.0/24 maxlen: 24
185.115.210.0/24 maxlen: 24
185.115.211.0/24 maxlen: 24
213.144.96.0/19 maxlen: 19
213.144.96.0/22 maxlen: 22
213.144.96.0/24 maxlen: 24
213.144.97.0/24 maxlen: 24
213.144.98.0/24 maxlen: 24
213.144.99.0/24 maxlen: 24
213.144.100.0/24 maxlen: 24
213.144.101.0/24 maxlen: 24
213.144.103.0/24 maxlen: 24
213.144.104.0/22 maxlen: 22
213.144.104.0/24 maxlen: 24
213.144.105.0/24 maxlen: 24
213.144.106.0/24 maxlen: 24
213.144.107.0/24 maxlen: 24
213.144.108.0/22 maxlen: 22
213.144.108.0/24 maxlen: 24
213.144.109.0/24 maxlen: 24
213.144.110.0/24 maxlen: 24
213.144.111.0/24 maxlen: 24
213.144.112.0/22 maxlen: 22
213.144.112.0/24 maxlen: 24
213.144.113.0/24 maxlen: 24
213.144.114.0/24 maxlen: 24
213.144.115.0/24 maxlen: 24
213.144.116.0/22 maxlen: 22
213.144.116.0/24 maxlen: 24
213.144.117.0/24 maxlen: 24
213.144.118.0/24 maxlen: 24
213.144.119.0/24 maxlen: 24
213.144.120.0/22 maxlen: 22
213.144.120.0/24 maxlen: 24
213.144.121.0/24 maxlen: 24
213.144.122.0/24 maxlen: 24
213.144.123.0/24 maxlen: 24
213.144.124.0/22 maxlen: 22
213.144.124.0/24 maxlen: 24
213.144.125.0/24 maxlen: 24
213.144.126.0/24 maxlen: 24
213.144.127.0/24 maxlen: 24
2a02:ac80::/29 maxlen: 29
2a02:ac80::/32 maxlen: 32
2a02:ac80:10::/48 maxlen: 48
2a02:ac80:20::/48 maxlen: 48
2a02:ac80:30::/48 maxlen: 48
2a02:ac80:40::/48 maxlen: 48
2a02:ac80:50::/48 maxlen: 48
2a02:ac80:60::/48 maxlen: 48
2a02:ac80:70::/48 maxlen: 48
2a02:ac80:a0::/48 maxlen: 48
2a02:ac80:b0::/48 maxlen: 48
2a02:ac80:c0::/48 maxlen: 48
2a02:ac80:d0::/48 maxlen: 48
2a02:ac80:e0::/48 maxlen: 48
2a02:ac80:f0::/48 maxlen: 48
2a02:ac80:100::/48 maxlen: 48
2a02:ac80:200::/48 maxlen: 48
2a02:ac80:300::/48 maxlen: 48
2a02:ac80:400::/48 maxlen: 48
2a02:ac80:500::/48 maxlen: 48
2a02:ac80:600::/48 maxlen: 48
2a02:ac80:700::/48 maxlen: 48
2a02:ac80:a00::/48 maxlen: 48
2a02:ac80:b00::/48 maxlen: 48
2a02:ac80:c00::/48 maxlen: 48
2a02:ac80:d00::/48 maxlen: 48
2a02:ac80:e00::/48 maxlen: 48
2a02:ac80:f00::/48 maxlen: 48
2a02:ac80:1000::/48 maxlen: 48
2a02:ac80:2000::/48 maxlen: 48
2a02:ac80:3000::/48 maxlen: 48
2a02:ac80:4000::/48 maxlen: 48
2a02:ac80:5000::/48 maxlen: 48
2a02:ac80:6000::/48 maxlen: 48
2a02:ac80:7000::/48 maxlen: 48
2a02:ac80:7370::/48 maxlen: 48
2a02:ac80:a000::/48 maxlen: 48
2a02:ac80:b000::/48 maxlen: 48
2a02:ac80:c000::/48 maxlen: 48
2a02:ac80:d000::/48 maxlen: 48
2a02:ac80:e000::/48 maxlen: 48
2a02:ac80:f000::/48 maxlen: 48
2a02:ac81::/32 maxlen: 32
2a02:ac82::/32 maxlen: 32
2a02:ac83::/32 maxlen: 32
2a02:ac84::/32 maxlen: 32
2a02:ac85::/32 maxlen: 32
2a02:ac86::/32 maxlen: 32
2a02:ac87::/32 maxlen: 32
2a02:ac87:5900::/48 maxlen: 48
2a02:ac87:59cb::/48 maxlen: 48
2a02:ac87:ac87::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:33:c3:4e:0f:17:a7:37:ef:ae:5e:5a:2e:17:28:47:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Validity
Not Before: Apr 14 10:05:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd78f67a49d20f4820cb07fd06f65f156e0d0f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:fd:b9:ff:3e:11:83:de:83:4f:80:d5:19:
85:15:47:14:57:fd:75:93:cd:bc:f8:12:cf:19:72:
22:d9:5f:e9:9f:e3:73:55:64:48:ef:d0:cc:69:25:
b3:42:63:94:7e:2f:9b:5d:39:63:53:34:93:b4:09:
40:6d:08:cf:0d:21:43:4b:bb:b4:19:71:07:a7:bc:
d1:be:79:c9:f1:60:98:60:68:2d:c7:d4:ad:58:f1:
a2:e8:11:3e:a4:88:b9:d6:3a:c0:0e:a5:43:f2:41:
36:64:c5:22:62:3d:fe:ec:93:7c:51:e0:d6:52:16:
9b:65:18:bd:f8:25:fd:8d:8e:ec:8a:78:57:0e:77:
f0:16:d7:22:27:06:a4:1b:9a:34:ff:43:a9:66:ed:
03:db:2b:11:25:4e:20:e0:04:a7:09:b5:52:2c:0e:
b6:a2:c9:dc:d9:87:02:aa:5f:c6:a7:3e:56:cc:7d:
cf:4f:83:8b:95:e4:bd:bf:2f:98:ec:6b:9b:37:fe:
08:ad:62:df:14:8d:2b:59:ee:a2:3b:2a:18:00:5f:
7a:69:20:ab:57:6f:58:41:89:19:e9:10:f5:fb:17:
7e:a4:2a:e0:3b:29:24:4f:bc:d1:35:7b:d9:5c:b3:
c2:f3:15:eb:cf:73:6a:13:c2:5f:03:8a:b3:8b:33:
47:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:78:F6:7A:49:D2:0F:48:20:CB:07:FD:06:F6:5F:15:6E:0D:0F:96
X509v3 Authority Key Identifier:
keyid:CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/_Xj2eknSD0ggywf9BvZfFW4ND5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.240.0/24
31.40.242.0/24
77.92.96.0/19
185.115.208.0/24
185.115.210.0/23
213.144.96.0/19
IPv6:
2a02:ac80::/29
Signature Algorithm: sha256WithRSAEncryption
91:a3:60:8c:da:dd:df:85:8b:70:67:fd:46:8a:d4:05:a4:74:
2f:3f:05:cc:f6:ad:45:2d:98:17:62:76:53:64:57:55:37:9f:
13:f5:e8:29:b0:ea:12:47:80:b6:33:40:c2:30:29:e1:b2:9a:
50:0e:6b:41:21:4f:8c:23:b3:f5:8f:1c:a0:36:b9:cf:7f:62:
73:5d:a4:43:13:1e:15:9e:6a:7c:8f:3b:03:4a:1f:bc:c8:62:
79:7a:b8:be:71:2b:a6:3f:0c:61:0a:3f:2a:48:eb:f4:f6:b9:
a7:c3:95:f3:8e:98:aa:4e:63:d1:4e:1e:3c:db:3e:22:05:c5:
ea:3d:29:13:4b:83:60:70:2e:99:4f:09:9a:8d:e8:e2:8d:6a:
5a:1b:06:08:03:dd:fd:64:4d:76:10:77:16:c2:c9:8e:9f:e6:
e8:0d:5e:7d:c2:b4:ed:98:01:43:33:64:f0:d1:bb:84:49:04:
ad:27:58:37:40:39:ac:5a:7a:06:e0:4b:40:c0:fe:5a:98:39:
cb:9f:76:44:ac:15:5b:14:77:58:29:a6:86:19:9f:5b:c7:67:
e7:8f:11:5d:c6:bb:ab:62:47:ac:99:72:b6:d2:2c:1b:37:2b:
93:78:79:69:07:b9:81:51:e1:4e:6c:c6:81:10:ce:80:ed:b7:
60:91:44:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 17:06:20 2025 by rpki-client