Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/l7iZbiV7r6tXyFTfuUPxFcrsM4M.roa
File: l7iZbiV7r6tXyFTfuUPxFcrsM4M.roa (raw, json)
Hash identifier: G7fwAbhY4dToat2MKtWl3kp+QqFAqtJoJEL3kRG4KEM=
Subject key identifier: 97:B8:99:6E:25:7B:AF:AB:57:C8:54:DF:B9:43:F1:15:CA:EC:33:83
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 0196D2649A8CD9F85AD982E8583FA6AAA95E
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/l7iZbiV7r6tXyFTfuUPxFcrsM4M.roa
Signing time: Thu 15 May 2025 05:22:10 +0000
ROA not before: Thu 15 May 2025 05:22:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29084
IP address blocks: 37.209.168.0/21 maxlen: 24
37.209.168.0/24 maxlen: 24
37.209.169.0/24 maxlen: 24
37.209.170.0/24 maxlen: 24
37.209.171.0/24 maxlen: 24
37.209.172.0/24 maxlen: 24
37.209.173.0/24 maxlen: 24
78.108.242.0/24 maxlen: 24
79.132.0.0/19 maxlen: 19
79.132.0.0/24 maxlen: 24
79.132.1.0/24 maxlen: 24
79.132.2.0/24 maxlen: 24
79.132.3.0/24 maxlen: 24
79.132.4.0/24 maxlen: 24
79.132.5.0/24 maxlen: 24
79.132.6.0/24 maxlen: 24
79.132.7.0/24 maxlen: 24
79.132.8.0/24 maxlen: 24
79.132.9.0/24 maxlen: 24
79.132.10.0/24 maxlen: 24
79.132.11.0/24 maxlen: 24
79.132.12.0/24 maxlen: 24
79.132.13.0/24 maxlen: 24
79.132.14.0/24 maxlen: 24
79.132.15.0/24 maxlen: 24
79.132.16.0/24 maxlen: 24
79.132.17.0/24 maxlen: 24
79.132.18.0/24 maxlen: 24
79.132.19.0/24 maxlen: 24
79.132.20.0/24 maxlen: 24
79.132.21.0/24 maxlen: 24
79.132.22.0/24 maxlen: 24
79.132.23.0/24 maxlen: 24
79.132.24.0/24 maxlen: 24
79.132.25.0/24 maxlen: 24
79.132.26.0/24 maxlen: 24
79.132.27.0/24 maxlen: 24
79.132.28.0/24 maxlen: 24
79.132.29.0/24 maxlen: 24
79.132.30.0/24 maxlen: 24
79.132.31.0/24 maxlen: 24
83.222.168.0/24 maxlen: 24
83.222.175.0/24 maxlen: 24
83.222.182.0/24 maxlen: 24
84.54.128.0/18 maxlen: 18
84.54.128.0/24 maxlen: 24
84.54.129.0/24 maxlen: 24
84.54.130.0/24 maxlen: 24
84.54.131.0/24 maxlen: 24
84.54.132.0/24 maxlen: 24
84.54.133.0/24 maxlen: 24
84.54.134.0/24 maxlen: 24
84.54.135.0/24 maxlen: 24
84.54.136.0/24 maxlen: 24
84.54.137.0/24 maxlen: 24
84.54.138.0/24 maxlen: 24
84.54.139.0/24 maxlen: 24
84.54.140.0/24 maxlen: 24
84.54.141.0/24 maxlen: 24
84.54.142.0/24 maxlen: 24
84.54.143.0/24 maxlen: 24
84.54.144.0/24 maxlen: 24
84.54.145.0/24 maxlen: 24
84.54.146.0/24 maxlen: 24
84.54.147.0/24 maxlen: 24
84.54.149.0/24 maxlen: 24
84.54.151.0/24 maxlen: 24
84.54.152.0/24 maxlen: 24
84.54.153.0/24 maxlen: 24
84.54.154.0/24 maxlen: 24
84.54.155.0/24 maxlen: 24
84.54.156.0/24 maxlen: 24
84.54.157.0/24 maxlen: 24
84.54.158.0/24 maxlen: 24
84.54.159.0/24 maxlen: 24
84.54.160.0/24 maxlen: 24
84.54.161.0/24 maxlen: 24
84.54.162.0/24 maxlen: 24
84.54.163.0/24 maxlen: 24
84.54.164.0/24 maxlen: 24
84.54.165.0/24 maxlen: 24
84.54.166.0/24 maxlen: 24
84.54.167.0/24 maxlen: 24
84.54.168.0/24 maxlen: 24
84.54.169.0/24 maxlen: 24
84.54.170.0/24 maxlen: 24
84.54.171.0/24 maxlen: 24
84.54.172.0/24 maxlen: 24
84.54.173.0/24 maxlen: 24
84.54.174.0/24 maxlen: 24
84.54.175.0/24 maxlen: 24
84.54.176.0/24 maxlen: 24
84.54.177.0/24 maxlen: 24
84.54.178.0/24 maxlen: 24
84.54.179.0/24 maxlen: 24
84.54.180.0/24 maxlen: 24
84.54.181.0/24 maxlen: 24
84.54.182.0/24 maxlen: 24
84.54.183.0/24 maxlen: 24
84.54.185.0/24 maxlen: 24
84.54.186.0/24 maxlen: 24
84.54.187.0/24 maxlen: 24
84.54.188.0/24 maxlen: 24
84.54.189.0/24 maxlen: 24
84.54.190.0/24 maxlen: 24
87.246.35.0/24 maxlen: 24
109.160.4.0/22 maxlen: 22
109.160.4.0/24 maxlen: 24
109.160.5.0/24 maxlen: 24
109.160.6.0/24 maxlen: 24
109.160.7.0/24 maxlen: 24
109.160.13.0/24 maxlen: 24
109.160.24.0/21 maxlen: 24
109.160.24.0/24 maxlen: 24
109.160.25.0/24 maxlen: 24
109.160.26.0/24 maxlen: 24
109.160.27.0/24 maxlen: 24
109.160.28.0/24 maxlen: 24
109.160.29.0/24 maxlen: 24
109.160.30.0/24 maxlen: 24
109.160.31.0/24 maxlen: 24
109.160.42.0/23 maxlen: 23
109.160.42.0/24 maxlen: 24
109.160.43.0/24 maxlen: 24
109.160.98.0/24 maxlen: 24
185.78.36.0/22 maxlen: 22
185.78.36.0/24 maxlen: 24
185.78.37.0/24 maxlen: 24
185.78.38.0/24 maxlen: 24
185.78.39.0/24 maxlen: 24
212.70.150.0/24 maxlen: 24
212.70.157.0/24 maxlen: 24
217.174.48.0/20 maxlen: 20
217.174.48.0/24 maxlen: 24
217.174.49.0/24 maxlen: 24
217.174.50.0/24 maxlen: 24
217.174.51.0/24 maxlen: 24
217.174.52.0/24 maxlen: 24
217.174.53.0/24 maxlen: 24
217.174.54.0/24 maxlen: 24
217.174.55.0/24 maxlen: 24
217.174.56.0/24 maxlen: 24
217.174.57.0/24 maxlen: 24
217.174.58.0/24 maxlen: 24
217.174.59.0/24 maxlen: 24
217.174.60.0/24 maxlen: 24
217.174.61.0/24 maxlen: 24
217.174.62.0/24 maxlen: 24
217.174.63.0/24 maxlen: 24
2a02:1c0::/29 maxlen: 29
2a02:1c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:64:9a:8c:d9:f8:5a:d9:82:e8:58:3f:a6:aa:a9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: May 15 05:22:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97b8996e257bafab57c854dfb943f115caec3383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:c2:a5:90:cc:bd:97:10:6e:ae:b3:46:5f:
26:0e:31:18:bc:7d:7b:f6:55:97:7a:85:af:c7:9d:
03:84:fe:67:4d:c3:43:a0:b9:33:39:ce:a6:c1:d0:
9d:24:8d:11:52:93:2e:80:f9:74:39:a0:b4:78:82:
9c:13:b2:00:90:28:df:28:54:66:d0:9f:27:13:af:
32:fd:ad:3e:39:8f:36:ea:0e:08:fe:0c:42:5a:30:
76:d0:42:56:77:44:a2:7d:35:c0:2b:50:dc:87:92:
41:01:b8:ae:19:67:70:69:2d:cf:8c:1c:6f:e3:89:
69:f1:26:b9:13:28:65:f8:5d:e9:9c:35:d6:4b:b0:
ea:ba:cc:67:34:5d:f2:a9:54:b3:c2:93:2f:0c:c3:
ef:4d:95:07:7e:33:ff:06:53:57:98:8d:bd:76:43:
65:58:d8:6d:7f:2c:64:0b:df:b3:83:3b:99:fc:39:
dc:e4:a8:e3:f8:ea:62:6a:53:e2:70:c2:f9:0a:66:
b1:64:2e:5c:e0:5c:0e:80:b6:5c:3f:70:1e:3a:d3:
1a:2a:20:2b:26:27:1e:36:7b:24:d2:34:a5:9d:7c:
06:a3:67:38:24:55:46:5d:85:6b:ac:64:1c:e1:18:
d9:8e:c5:0b:39:9a:21:22:45:6d:30:b7:7f:88:18:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B8:99:6E:25:7B:AF:AB:57:C8:54:DF:B9:43:F1:15:CA:EC:33:83
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/l7iZbiV7r6tXyFTfuUPxFcrsM4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.168.0/21
78.108.242.0/24
79.132.0.0/19
83.222.168.0/24
83.222.175.0/24
83.222.182.0/24
84.54.128.0/18
87.246.35.0/24
109.160.4.0/22
109.160.13.0/24
109.160.24.0/21
109.160.42.0/23
109.160.98.0/24
185.78.36.0/22
212.70.150.0/24
212.70.157.0/24
217.174.48.0/20
IPv6:
2a02:1c0::/29
Signature Algorithm: sha256WithRSAEncryption
53:b7:2e:91:3c:fc:e7:12:a3:58:aa:89:6e:62:b9:a4:98:89:
9a:85:27:0e:8e:8c:30:23:23:4d:60:85:34:a6:4e:2f:6a:11:
f9:c9:3b:d3:c2:25:59:41:83:8b:c4:cf:73:55:93:a1:85:63:
ae:5a:96:ea:74:14:b4:8b:17:c2:6d:8e:02:54:9f:9a:b4:d0:
c7:12:60:3c:2c:4c:0e:bb:a5:d4:85:65:bd:53:b7:83:31:f0:
1f:31:6e:fc:99:b4:18:29:9c:0c:89:ae:9d:61:64:c2:11:c2:
66:b4:dd:1d:dd:42:15:2f:1e:bb:d1:af:2d:a5:42:29:cf:7e:
c4:7b:2b:da:fc:45:1c:06:80:8c:8c:64:69:ae:27:c5:84:1d:
70:b4:4e:6d:05:57:5c:60:3b:ed:1b:e2:a7:46:be:61:35:fe:
d3:10:6e:85:a9:8e:93:12:85:a8:93:66:2b:8f:07:e0:c1:4a:
29:e4:d9:08:9b:46:01:d1:9e:f9:94:de:40:66:4c:3a:d4:05:
13:a7:9c:73:bf:4c:87:d0:24:5e:d9:51:23:72:a4:17:ac:3b:
62:68:41:a5:c3:ba:9c:ad:8a:91:74:85:db:98:70:81:78:50:
4a:38:9f:8c:54:38:48:24:40:c9:c3:d6:39:b8:a6:50:d9:93:
6e:a7:d4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:03:58 2025 by rpki-client