Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/rwlU6ky2dD_uFLJpSatOt4x0IyE.roa
File: rwlU6ky2dD_uFLJpSatOt4x0IyE.roa (raw, json)
Hash identifier: vN29i7agc8Mm8dTBR3lT4o/zrqyEDqhvudhHJo9HCVE=
Subject key identifier: AF:09:54:EA:4C:B6:74:3F:EE:14:B2:69:49:AB:4E:B7:8C:74:23:21
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 01948823F917D37FFDB12F3A077E520ACA65
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/rwlU6ky2dD_uFLJpSatOt4x0IyE.roa
Signing time: Tue 21 Jan 2025 09:14:06 +0000
ROA not before: Tue 21 Jan 2025 09:14:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/23 maxlen: 23
5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
37.10.1.0/24 maxlen: 24
37.10.10.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.24.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/22 maxlen: 22
37.10.44.0/23 maxlen: 23
37.10.44.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5041::/32 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5041:2::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:4::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:2002::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:200c::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:4eff::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:7001::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea20::/48 maxlen: 48
2a01:5042::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:3::/48 maxlen: 48
2a01:5042:7::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2000::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:2003::/48 maxlen: 48
2a01:5042:2007::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:3::/48 maxlen: 48
2a01:5043:7::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5043:2003::/48 maxlen: 48
2a01:5043:2007::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 03:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:88:23:f9:17:d3:7f:fd:b1:2f:3a:07:7e:52:0a:ca:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Jan 21 09:14:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af0954ea4cb6743fee14b26949ab4eb78c742321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ee:48:4b:cb:f4:1e:6f:2a:04:7d:6d:eb:97:
05:3a:eb:50:6b:80:40:dc:2b:0f:69:99:15:e2:cd:
f4:fb:39:a5:2c:51:3f:29:a6:7a:7a:20:00:1f:2c:
75:4e:0e:43:9c:b0:bd:08:64:51:2d:f1:f1:73:b0:
e2:30:dc:6e:0e:d7:84:f8:02:80:c1:85:74:d2:78:
ea:46:30:bb:61:b2:00:09:d4:4c:9e:cf:86:e0:a0:
33:42:c1:41:94:95:11:b5:06:e2:18:e9:2a:ac:43:
f7:f8:48:81:6d:f5:11:f5:b6:32:e1:b6:dc:aa:38:
46:89:ec:8b:e4:75:a1:e2:c3:04:fb:b3:ef:d6:90:
5a:6d:09:97:ef:be:41:ab:f1:52:9e:2e:c8:1b:f8:
2a:5d:d1:fc:2c:d7:99:f8:d6:b0:c2:55:5e:06:25:
d8:98:e1:45:d6:d8:ae:d8:0f:60:45:81:43:2b:b9:
da:34:21:c4:ce:df:8c:47:ea:b8:a8:4e:8c:90:99:
a4:a6:4c:1e:a2:5c:20:69:ee:05:44:93:7b:bb:04:
7e:c0:cb:f8:ac:32:33:c7:f9:34:36:cb:e3:e5:d0:
58:77:21:da:a2:45:77:8b:66:e1:22:6c:08:6f:cd:
c5:cc:37:e5:48:ad:68:ad:e5:5c:5e:64:c5:db:e4:
34:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:09:54:EA:4C:B6:74:3F:EE:14:B2:69:49:AB:4E:B7:8C:74:23:21
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/rwlU6ky2dD_uFLJpSatOt4x0IyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.10.0/24
37.10.24.0/21
37.10.40.0/21
91.195.236.0/24
IPv6:
2a01:5041::-2a01:5042:1:ffff:ffff:ffff:ffff:ffff
2a01:5042:3::/48
2a01:5042:7::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2000::/47
2a01:5042:2003::/48
2a01:5042:2007::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:3::/48
2a01:5043:7::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2003::/48
2a01:5043:2007::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
92:2e:b8:5b:df:33:81:7e:6a:75:b6:54:97:a6:2a:be:be:68:
07:96:45:74:b0:47:bd:77:d7:85:d5:8d:b0:e9:c4:b4:60:b0:
97:bb:15:39:d4:1c:26:b8:58:32:b8:d8:79:d4:f4:bd:dd:12:
84:57:98:de:46:c5:15:f4:cb:4d:29:e3:d6:89:ae:c3:87:a7:
4f:41:c2:af:34:7b:10:1c:a2:95:9c:ea:c9:7d:a4:b6:3c:54:
12:92:eb:82:73:1a:b4:dd:00:16:67:95:03:e9:60:aa:7f:90:
44:32:d7:17:0e:1e:28:3b:0d:37:77:09:7f:52:4d:f5:78:45:
fa:85:58:62:79:6f:ab:14:ab:60:65:89:35:88:11:f6:ea:26:
51:8c:27:7c:6c:c9:ea:d5:9d:40:e1:46:ac:e2:3d:65:6b:2e:
81:d5:9e:04:fd:ba:8b:f4:9c:b0:32:a1:5a:ab:5e:25:75:d2:
39:41:9c:f2:9c:0f:a5:86:7d:f3:10:6e:28:e9:58:ee:99:36:
9c:64:38:64:a2:57:18:89:ae:03:ec:ba:52:0b:5a:a7:a5:62:
a6:6f:4a:1a:89:7d:c3:85:49:8f:7f:29:65:11:50:4b:ca:8a:
a9:17:cc:a5:4e:75:a7:01:c3:f0:6c:d3:87:c7:e8:4a:a2:f7:
66:5b:85:07
-----BEGIN CERTIFICATE-----
MIIGHjCCBQagAwIBAgISAZSII/kX03/9sS86B35SCsplMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3OTc4NWRlNjJkY2Y5ZTc5MzBiYWJkN2IxZDM5YzU4NTNk
MTk0NGYwHhcNMjUwMTIxMDkxNDA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjA5NTRlYTRjYjY3NDNmZWUxNGIyNjk0OWFiNGViNzhjNzQyMzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxu5IS8v0Hm8qBH1t65cFOutQa4BA
3CsPaZkV4s30+zmlLFE/KaZ6eiAAHyx1Tg5DnLC9CGRRLfHxc7DiMNxuDteE+AKA
wYV00njqRjC7YbIACdRMns+G4KAzQsFBlJURtQbiGOkqrEP3+EiBbfUR9bYy4bbc
qjhGieyL5HWh4sME+7Pv1pBabQmX775Bq/FSni7IG/gqXdH8LNeZ+NawwlVeBiXY
mOFF1tiu2A9gRYFDK7naNCHEzt+MR+q4qE6MkJmkpkweolwgae4FRJN7uwR+wMv4
rDIzx/k0Nsvj5dBYdyHaokV3i2bhImwIb83FzDflSK1oreVcXmTF2+Q09wIDAQAB
o4IDKjCCAyYwHQYDVR0OBBYEFK8JVOpMtnQ/7hSyaUmrTreMdCMhMB8GA1UdIwQY
MBaAFNeXhd5i3Pnnkwur17HTnFhT0ZRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTVlRjNtTGMtZWVUQzZ2WHNkT2NXRlBSbEU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi83Zjk3MjgtOTU1OS00MjYzLWJjZmEt
NzU4NTVkYjcxNTFmLzEvcndsVTZreTJkRF91RkxKcFNhdE90NHgwSXlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi83Zjk3MjgtOTU1OS00MjYzLWJjZmEtNzU4NTVkYjcxNTFm
LzEvMTVlRjNtTGMtZWVUQzZ2WHNkT2NXRlBSbEU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBPgYIKwYBBQUHAQcBAf8EggEtMIIBKTAqBAIAATAkAwQB
BTkUAwQAJQoBAwQAJQoKAwQDJQoYAwQDJQooAwQAW8PsMIH6BAIAAjCB8zAQAwUA
KgFQQQMHASoBUEIAAAMHACoBUEIAAwMHACoBUEIABwMHACoBUEIACwMHACoBUEIA
DgMHACoBUEIO/QMHACoBUEIO/wMHASoBUEIgAAMHACoBUEIgAwMHACoBUEIgBwMH
ACoBUEIgCwMHACoBUEIgDgMHACoBUEIu/QMHACoBUEIu/wMHACoBUEMAAAMHACoB
UEMAAwMHACoBUEMABwMHACoBUEMACwMHACoBUEMADgMHACoBUEMO/QMHACoBUEMO
/wMHACoBUEMgAAMHACoBUEMgAwMHACoBUEMgBwMHACoBUEMu/QMHACoBUEMu/zAN
BgkqhkiG9w0BAQsFAAOCAQEAki64W98zgX5qdbZUl6Yqvr5oB5ZFdLBHvXfXhdWN
sOnEtGCwl7sVOdQcJrhYMrjYedT0vd0ShFeY3kbFFfTLTSnj1omuw4enT0HCrzR7
EByilZzqyX2ktjxUEpLrgnMatN0AFmeVA+lgqn+QRDLXFw4eKDsNN3cJf1JN9XhF
+oVYYnlvqxSrYGWJNYgR9uomUYwnfGzJ6tWdQOFGrOI9ZWsugdWeBP26i/ScsDKh
WqteJXXSOUGc8pwPpYZ98xBuKOlY7pk2nGQ4ZKJXGImuA+y6Ugtap6Vipm9KGol9
w4VJj38pZRFQS8qKqRfMpU51pwHD8GzTh8foSqL3ZluFBw==
-----END CERTIFICATE-----
Generated at Sun Apr 13 14:18:30 2025 by rpki-client