Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/7QBpYRu1X0RWTwiPQHhmZIwyuIE.roa
File: 7QBpYRu1X0RWTwiPQHhmZIwyuIE.roa (raw, json)
Hash identifier: FjYP9BTvkYqGvybteCTsUN9rqTv80Q0rCC7qqOI/gUY=
Subject key identifier: ED:00:69:61:1B:B5:5F:44:56:4F:08:8F:40:78:66:64:8C:32:B8:81
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 019444F33D29950EB77367A4C08B3F75FE5B
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/7QBpYRu1X0RWTwiPQHhmZIwyuIE.roa
Signing time: Wed 08 Jan 2025 08:06:19 +0000
ROA not before: Wed 08 Jan 2025 08:06:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35470
IP address blocks: 31.3.96.0/21 maxlen: 24
37.34.48.0/21 maxlen: 24
37.230.96.0/21 maxlen: 24
79.170.88.0/21 maxlen: 24
81.4.84.0/22 maxlen: 24
83.96.200.0/22 maxlen: 24
83.96.204.0/22 maxlen: 24
83.96.212.0/22 maxlen: 24
83.96.216.0/22 maxlen: 24
83.96.220.0/22 maxlen: 24
83.96.236.0/22 maxlen: 24
83.96.240.0/22 maxlen: 24
83.96.244.0/22 maxlen: 24
83.96.252.0/22 maxlen: 24
85.10.176.0/22 maxlen: 24
85.10.184.0/22 maxlen: 22
85.10.185.0/24 maxlen: 24
85.10.187.0/24 maxlen: 24
85.10.188.0/22 maxlen: 22
85.222.224.0/21 maxlen: 24
85.222.224.0/22 maxlen: 24
89.31.96.0/21 maxlen: 24
89.31.98.0/23 maxlen: 24
93.191.128.0/21 maxlen: 24
93.191.134.0/24 maxlen: 24
141.138.192.0/20 maxlen: 24
141.138.207.0/24 maxlen: 24
178.18.80.0/20 maxlen: 24
185.3.208.0/22 maxlen: 24
185.21.188.0/22 maxlen: 24
185.96.4.0/22 maxlen: 24
185.110.172.0/22 maxlen: 24
185.110.200.0/22 maxlen: 24
193.138.204.0/22 maxlen: 24
194.60.207.0/24 maxlen: 24
213.187.240.0/21 maxlen: 24
2a02:348::/32 maxlen: 32
2a02:348:3::/48 maxlen: 48
2a02:348:14::/48 maxlen: 48
2a02:348:15::/48 maxlen: 48
2a02:348:1e::/48 maxlen: 48
2a02:348:28::/48 maxlen: 48
2a02:348:29::/48 maxlen: 48
2a02:348:32::/48 maxlen: 48
2a02:348:33::/48 maxlen: 48
2a02:348:35::/48 maxlen: 48
2a02:348:36::/48 maxlen: 48
2a02:348:37::/48 maxlen: 48
2a02:348:38::/48 maxlen: 48
2a02:348:39::/48 maxlen: 48
2a02:348:3a::/48 maxlen: 48
2a02:348:3b::/48 maxlen: 48
2a02:348:3c::/48 maxlen: 48
2a02:348:46::/48 maxlen: 48
2a02:348:47::/48 maxlen: 48
2a02:348:4b::/48 maxlen: 48
2a02:348:4c::/48 maxlen: 48
2a02:348:4f::/48 maxlen: 48
2a02:348:50::/48 maxlen: 48
2a02:348:53::/48 maxlen: 48
2a02:348:54::/48 maxlen: 48
2a02:348:55::/48 maxlen: 48
2a02:348:56::/48 maxlen: 48
2a02:348:57::/48 maxlen: 48
2a02:348:58::/48 maxlen: 48
2a02:348:59::/48 maxlen: 48
2a02:348:5a::/48 maxlen: 48
2a02:348:5b::/48 maxlen: 48
2a02:348:5d::/48 maxlen: 48
2a02:348:5e::/48 maxlen: 48
2a02:348:5f::/48 maxlen: 48
2a02:348:60::/48 maxlen: 48
2a02:348:61::/48 maxlen: 48
2a02:348:62::/48 maxlen: 48
2a02:348:63::/48 maxlen: 48
2a02:348:6e::/48 maxlen: 48
2a02:348:6f::/48 maxlen: 48
2a02:348:70::/48 maxlen: 48
2a02:348:71::/48 maxlen: 48
2a02:348:73::/48 maxlen: 48
2a02:348:74::/48 maxlen: 48
2a02:348:75::/48 maxlen: 48
2a02:348:76::/48 maxlen: 48
2a02:348:77::/48 maxlen: 48
2a02:348:78::/48 maxlen: 48
2a02:348:79::/48 maxlen: 48
2a02:348:7b::/48 maxlen: 48
2a02:348:7c::/48 maxlen: 48
2a02:348:7d::/48 maxlen: 48
2a02:348:7e::/48 maxlen: 48
2a02:348:7f::/48 maxlen: 48
2a02:348:80::/48 maxlen: 48
2a02:348:81::/48 maxlen: 48
2a02:348:82::/48 maxlen: 48
2a02:348:83::/48 maxlen: 48
2a02:348:84::/48 maxlen: 48
2a02:348:85::/48 maxlen: 48
2a02:348:86::/48 maxlen: 48
2a02:348:87::/48 maxlen: 48
2a02:348:88::/48 maxlen: 48
2a02:348:89::/48 maxlen: 48
2a02:348:8a::/48 maxlen: 48
2a02:348:8b::/48 maxlen: 48
2a02:348:8c::/48 maxlen: 48
2a02:348:8d::/48 maxlen: 48
2a02:348:8e::/48 maxlen: 48
2a02:348:8f::/48 maxlen: 48
2a02:348:90::/48 maxlen: 48
2a02:348:91::/48 maxlen: 48
2a02:348:92::/48 maxlen: 48
2a02:348:94::/48 maxlen: 48
2a02:348:95::/48 maxlen: 48
2a02:348:96::/48 maxlen: 48
2a02:348:97::/48 maxlen: 48
2a02:348:98::/48 maxlen: 48
2a02:348:99::/48 maxlen: 48
2a02:348:9a::/48 maxlen: 48
2a02:348:9b::/48 maxlen: 48
2a02:348:9c::/48 maxlen: 48
2a02:348:a0::/48 maxlen: 48
2a02:348:a1::/48 maxlen: 48
2a02:348:a2::/48 maxlen: 48
2a02:348:a3::/48 maxlen: 48
2a02:348:ac::/48 maxlen: 48
2a02:348:b1::/48 maxlen: 48
2a02:348:b2::/48 maxlen: 48
2a02:348:b3::/48 maxlen: 48
2a02:348:b4::/48 maxlen: 48
2a02:348:b9::/48 maxlen: 48
2a02:348:ba::/48 maxlen: 48
2a02:348:bb::/48 maxlen: 48
2a02:348:bc::/48 maxlen: 48
2a02:348:c8::/48 maxlen: 48
2a02:348:5e6::/48 maxlen: 48
2a02:348:1001::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:44:f3:3d:29:95:0e:b7:73:67:a4:c0:8b:3f:75:fe:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 8 08:06:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed0069611bb55f44564f088f407866648c32b881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:f2:68:7b:c5:53:58:2d:ca:5d:cf:ef:b8:
9c:28:2f:60:ff:87:41:ce:82:fe:82:04:d6:63:9a:
57:49:3e:7e:e9:56:b8:94:7a:f4:ee:b4:4b:a5:44:
27:c7:48:b8:94:5b:25:6f:7a:ee:0f:60:b7:d8:67:
da:45:cc:6f:f0:d5:5a:f6:d4:45:0d:68:a5:45:c6:
29:3a:92:8a:68:06:c0:66:53:16:f2:20:fc:ec:30:
cf:f8:24:de:ae:2b:80:63:0b:a4:a9:44:ef:33:73:
79:bc:20:b2:74:2c:c9:1d:06:7e:e9:59:d8:0d:bb:
64:3b:53:18:e9:3e:62:5a:49:9c:bd:a8:c0:d0:77:
93:7b:c7:b6:7e:97:5e:d9:c5:eb:90:5e:a6:d5:44:
01:0d:e8:03:30:3e:31:ba:6f:6c:c4:6f:0e:fb:de:
db:3c:8a:53:cf:a8:1d:2f:d4:12:06:27:18:40:fe:
51:90:8d:6a:df:74:13:90:fc:98:45:56:9d:b9:56:
16:57:1c:4b:d2:b4:e0:53:45:d5:a8:69:a5:c7:36:
18:d1:2a:af:62:36:36:c6:5e:bb:1a:b5:db:f3:fa:
51:b9:c9:f0:9d:53:2b:df:8a:7d:ac:2e:14:e7:27:
91:f3:56:88:f4:3c:e2:5e:06:2d:a6:11:c1:2e:1d:
0a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:00:69:61:1B:B5:5F:44:56:4F:08:8F:40:78:66:64:8C:32:B8:81
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/7QBpYRu1X0RWTwiPQHhmZIwyuIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.96.0/21
37.34.48.0/21
37.230.96.0/21
79.170.88.0/21
81.4.84.0/22
83.96.200.0/21
83.96.212.0-83.96.223.255
83.96.236.0-83.96.247.255
83.96.252.0/22
85.10.176.0/22
85.10.184.0/21
85.222.224.0/21
89.31.96.0/21
93.191.128.0/21
141.138.192.0/20
178.18.80.0/20
185.3.208.0/22
185.21.188.0/22
185.96.4.0/22
185.110.172.0/22
185.110.200.0/22
193.138.204.0/22
194.60.207.0/24
213.187.240.0/21
IPv6:
2a02:348::/32
Signature Algorithm: sha256WithRSAEncryption
15:60:75:8d:20:f1:71:7e:68:c0:b9:c4:f5:e5:7a:0d:eb:9f:
9b:bb:4a:bf:d3:f2:3a:c4:a0:59:76:ee:64:9e:59:e0:43:a9:
f6:86:25:3f:83:e6:58:c1:8e:dd:d9:7e:b2:83:13:96:6a:f2:
2b:39:f8:2e:0b:b9:26:b5:2b:b7:43:f7:31:46:7b:29:d9:17:
b6:d4:ae:e9:63:b3:5a:99:83:e2:4f:f8:e5:b8:0b:4d:99:ba:
ac:77:d5:38:75:10:fd:81:fa:19:8e:b7:42:05:32:bd:fe:54:
eb:1a:81:12:10:a3:7a:ed:21:6d:02:95:3e:a4:a1:ff:2e:4a:
20:b0:26:31:0e:9d:ac:25:eb:1f:c2:a9:26:24:27:61:b2:97:
79:4d:53:a7:3f:dd:5f:28:67:dd:21:a1:bf:5f:58:bc:fd:f4:
22:07:d1:34:b5:bb:85:7f:5f:9b:e8:05:37:9e:0b:d8:9a:ea:
76:94:76:df:3a:87:82:1e:f0:6b:f3:e8:0c:89:00:76:b7:ea:
30:99:0a:6c:04:b6:6d:70:15:f7:11:f0:b0:71:de:13:81:e5:
c6:fa:d7:4c:85:e8:26:65:8c:0c:16:b3:e2:91:f2:cb:40:f7:
9e:96:9e:e9:f8:3b:67:c8:32:e0:b9:97:a3:c4:75:8a:69:2b:
7e:98:80:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:38:26 2025 by rpki-client