Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5IWmLuGP-9dUpBvtU9E3Vvd7cFg.roa
File: 5IWmLuGP-9dUpBvtU9E3Vvd7cFg.roa (raw, json)
Hash identifier: 1pUbEqdFuwWm4SEAl6gVpyv0aZSPdeRS8Xnwy9WiRvs=
Subject key identifier: E4:85:A6:2E:E1:8F:FB:D7:54:A4:1B:ED:53:D1:37:56:F7:7B:70:58
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019654D8196C2D2805CCA71DD1B4DD6F17C4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5IWmLuGP-9dUpBvtU9E3Vvd7cFg.roa
Signing time: Sun 20 Apr 2025 20:16:10 +0000
ROA not before: Sun 20 Apr 2025 20:16:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30633
IP address blocks: 45.86.247.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
80.253.250.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
193.27.21.0/24 maxlen: 24
193.27.23.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a0a:2d06:33::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:ecc4:2213::/48 maxlen: 48
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:18c6:55::/48 maxlen: 48
2a13:9280::/32 maxlen: 32
2a13:e101:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:d8:19:6c:2d:28:05:cc:a7:1d:d1:b4:dd:6f:17:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 20 20:16:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e485a62ee18ffbd754a41bed53d13756f77b7058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7b:14:c9:cb:c1:ba:9b:ee:60:d0:d1:9c:7d:
31:17:b4:9b:7e:ad:21:70:48:1b:d6:99:a1:e4:58:
2d:a3:91:41:36:06:3e:e5:f2:32:de:c0:f7:ea:d8:
0b:51:f4:38:be:72:80:a9:f8:9d:32:02:89:fe:01:
69:8c:55:3e:ff:cd:2e:4c:ec:e4:86:8a:57:e0:bd:
f2:fc:42:1f:f0:88:1c:34:67:66:5c:75:7c:5f:cf:
5e:26:e4:35:cb:2a:55:8a:1e:4b:7a:69:74:79:c8:
35:d3:c2:93:26:c7:1c:5d:58:ca:d3:2a:52:73:f5:
ee:06:db:eb:90:54:2e:de:5c:47:13:68:8b:75:0a:
20:48:40:9e:87:5d:71:d3:2e:a5:05:2e:3a:96:e1:
80:93:2d:a3:de:6b:23:a1:91:ef:07:01:9f:db:2b:
cb:c1:8f:f1:88:57:ea:16:83:40:b1:ed:2c:0b:60:
50:ae:35:49:5f:5e:63:da:a9:94:8f:19:1e:bb:03:
cc:05:f6:8a:35:d2:de:df:f3:91:47:ea:0f:20:80:
48:08:61:e7:70:4e:38:98:1c:40:ad:5a:b2:56:3b:
3b:4e:1d:7b:fd:e5:01:b7:1c:c3:3b:35:b7:9f:3f:
e2:b1:5d:fe:5b:72:df:a5:8c:7a:8d:60:64:24:69:
01:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:85:A6:2E:E1:8F:FB:D7:54:A4:1B:ED:53:D1:37:56:F7:7B:70:58
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5IWmLuGP-9dUpBvtU9E3Vvd7cFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.247.0/24
45.129.127.0/24
45.135.37.0/24
80.253.250.0/24
103.139.50.0/24
185.164.59.0/24
193.27.21.0/24
193.27.23.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a06:5280::/29
2a0a:2d06:33::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d84::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:ecc4:2213::/48
2a12:f540::/29
2a13:18c0:1::/48
2a13:18c6:55::/48
2a13:9280::/32
2a13:e101:2::/48
Signature Algorithm: sha256WithRSAEncryption
cc:9a:c0:f3:fe:b6:3e:01:79:1b:16:d1:ae:b6:a1:27:85:2f:
3a:13:06:93:e9:2f:11:94:94:3d:4c:9a:9f:6b:8d:36:2b:b7:
bc:ff:2b:37:6c:b3:83:1e:88:99:bb:f9:05:dc:2c:e3:fd:d6:
dd:4c:0e:39:04:ff:8a:53:48:96:3c:3f:62:9a:f5:34:6a:4c:
c0:5d:6b:32:e0:d3:cc:69:df:93:b8:9b:23:fa:d1:53:b3:60:
42:68:61:c9:73:6b:81:72:fc:ac:11:a3:dc:18:df:fd:4e:89:
16:38:81:02:28:7b:9b:3f:14:38:db:31:14:64:b1:a3:e5:21:
59:ac:9e:30:80:a7:07:90:4f:15:93:5d:5d:a5:b8:8d:08:82:
c4:de:1b:77:e9:98:ee:4c:d6:c2:e6:6a:c8:a3:91:8c:30:a1:
c7:96:3a:b3:2e:99:0e:f0:0d:73:b4:11:74:85:d0:db:00:b4:
62:5f:83:5e:6a:d4:e2:e6:8a:89:d8:07:6d:9e:57:8a:20:a8:
ad:89:e4:3c:86:e3:b5:64:17:b7:c8:b2:0f:eb:5a:41:ac:ac:
0d:dc:9a:2d:c7:a1:b7:cb:dd:65:72:79:83:95:63:dd:97:5f:
db:1e:b2:1b:84:42:4b:01:ca:a3:42:95:57:6d:49:fa:2b:7a:
08:5f:1b:d8
-----BEGIN CERTIFICATE-----
MIIGSzCCBTOgAwIBAgISAZZU2BlsLSgFzKcd0bTdbxfEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwNDIwMjAxNjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDg1YTYyZWUxOGZmYmQ3NTRhNDFiZWQ1M2QxMzc1NmY3N2I3MDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3HsUycvBupvuYNDRnH0xF7Sbfq0h
cEgb1pmh5Fgto5FBNgY+5fIy3sD36tgLUfQ4vnKAqfidMgKJ/gFpjFU+/80uTOzk
hopX4L3y/EIf8IgcNGdmXHV8X89eJuQ1yypVih5Leml0ecg108KTJsccXVjK0ypS
c/XuBtvrkFQu3lxHE2iLdQogSECeh11x0y6lBS46luGAky2j3msjoZHvBwGf2yvL
wY/xiFfqFoNAse0sC2BQrjVJX15j2qmUjxkeuwPMBfaKNdLe3/ORR+oPIIBICGHn
cE44mBxArVqyVjs7Th17/eUBtxzDOzW3nz/isV3+W3LfpYx6jWBkJGkBYwIDAQAB
o4IDVzCCA1MwHQYDVR0OBBYEFOSFpi7hj/vXVKQb7VPRN1b3e3BYMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvNUlXbUx1R1AtOWRVcEJ2dFU5RTNWdmQ3Y0ZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBawYIKwYBBQUHAQcBAf8EggFaMIIBVjA8BAIAATA2AwQA
LVb3AwQALYF/AwQALYclAwQAUP36AwQAZ4syAwQAuaQ7AwQAwRsVAwQAwRsXAwQA
waTHMIIBFAQCAAIwggEMAwcAKgYRhAAzAwUDKgZSgAMHACoKLQYAMwMHACoMeIYA
MwMHACoOGoAlQQMFACoOx4ADBwAqDvIBAAEDBwAqDx4AASMDBwAqDx4ABFYDBwAq
Dx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkDBwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6B
EpMDBwAqDx6BQxkDBwAqDx6BkugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMqDy6AAwUA
Kg89hAMHACoPfQIAAQMFACoP4cYDBQMqEG1AAwUDKhH9gAMFASoSrEADBwAqEuzE
IhMDBQMqEvVAAwcAKhMYwAABAwcAKhMYxgBVAwUAKhOSgAMHACoT4QEAAjANBgkq
hkiG9w0BAQsFAAOCAQEAzJrA8/62PgF5GxbRrrahJ4UvOhMGk+kvEZSUPUyan2uN
Niu3vP8rN2yzgx6Imbv5Bdws4/3W3UwOOQT/ilNIljw/Ypr1NGpMwF1rMuDTzGnf
k7ibI/rRU7NgQmhhyXNrgXL8rBGj3Bjf/U6JFjiBAih7mz8UONsxFGSxo+UhWaye
MICnB5BPFZNdXaW4jQiCxN4bd+mY7kzWwuZqyKORjDChx5Y6sy6ZDvANc7QRdIXQ
2wC0Yl+DXmrU4uaKidgHbZ5XiiCorYnkPIbjtWQXt8iyD+taQaysDdyaLceht8vd
ZXJ5g5Vj3Zdf2x6yG4RCSwHKo0KVV21J+it6CF8b2A==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:23 2025 by rpki-client