Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l610AuI_E-QuVKBKoPfVl4uzCgo.roa
File: l610AuI_E-QuVKBKoPfVl4uzCgo.roa (raw, json)
Hash identifier: oJu0ZOpkfcM97wq9rZpBouULPsfo6BBoW0Ip+NFePmo=
Subject key identifier: 97:AD:74:02:E2:3F:13:E4:2E:54:A0:4A:A0:F7:D5:97:8B:B3:0A:0A
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01965C937838D383492D0776E35947A212B2
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l610AuI_E-QuVKBKoPfVl4uzCgo.roa
Signing time: Tue 22 Apr 2025 08:18:10 +0000
ROA not before: Tue 22 Apr 2025 08:18:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
80.255.224.0/20 maxlen: 20
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.136.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
185.7.237.0/24 maxlen: 24
185.7.238.0/24 maxlen: 24
185.7.239.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:93:78:38:d3:83:49:2d:07:76:e3:59:47:a2:12:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Apr 22 08:18:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97ad7402e23f13e42e54a04aa0f7d5978bb30a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:74:25:b2:b2:42:93:8b:2c:c2:c1:8f:ad:c7:
f0:b2:88:f6:5e:ed:2e:99:d8:1a:45:88:d0:fc:01:
bf:b5:7e:18:ba:bd:10:06:29:a0:3f:85:28:43:a4:
af:2d:74:e2:aa:5a:3f:97:c3:30:b5:09:a8:d8:03:
d4:5f:98:fd:6a:64:c2:b0:a5:a3:81:2e:f1:be:66:
19:d3:c6:ed:27:fd:8e:68:86:5f:90:e5:99:3f:b1:
16:30:d7:99:e1:66:1f:86:5c:94:e3:42:4b:ce:af:
2e:00:29:24:ea:fe:a9:cd:ff:67:64:2e:94:00:70:
89:0d:af:9b:9e:27:ae:28:5b:49:52:92:bb:0f:1a:
41:dd:89:76:5a:dc:80:48:86:11:e1:7e:9b:89:8b:
8c:37:57:e1:a2:b3:53:64:d2:59:8a:82:26:d5:a0:
5a:2d:47:85:08:9d:62:25:ec:3b:e3:0d:0e:2f:fc:
8f:1b:26:1c:4f:fd:7b:f9:a5:15:df:f3:8d:2e:ab:
e7:e6:ea:32:30:6e:40:df:bb:e1:2a:10:70:e9:82:
b2:75:46:cd:b7:e4:c0:99:ee:21:36:12:46:ba:cb:
e8:f8:4e:1f:ea:ea:e7:10:e7:1a:09:ac:5f:89:83:
83:98:be:da:31:80:ee:1a:60:5b:47:fd:32:7d:33:
fd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AD:74:02:E2:3F:13:E4:2E:54:A0:4A:A0:F7:D5:97:8B:B3:0A:0A
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l610AuI_E-QuVKBKoPfVl4uzCgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.40.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
80.255.224.0/20
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.46.0/24
85.254.52.0/22
85.254.66.0/23
85.254.133.0/24
85.254.135.0-85.254.136.255
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.190.0/24
91.190.37.0-91.190.39.255
91.190.47.0/24
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/24
185.7.237.0-185.7.239.255
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
44:77:fc:cd:a7:c2:97:f4:39:65:3f:a7:fd:2a:78:93:e9:10:
2c:3f:fa:2f:d0:67:72:f1:35:8d:79:3f:42:61:58:a0:e5:08:
06:40:ac:d0:e4:59:9b:63:35:4c:18:7c:9f:e8:43:23:20:8e:
a3:e5:96:22:a7:b0:cd:ad:9f:d4:ce:37:90:9e:4b:5a:ec:6e:
cb:35:43:b4:3a:7c:11:d8:af:d6:1c:44:6b:4a:1e:05:3f:fd:
2e:cd:df:95:43:1e:54:13:cb:50:b7:f3:f6:26:52:e1:1a:88:
03:61:79:7c:a9:f1:1e:22:4b:52:d9:6d:39:8d:39:9a:a9:f5:
e4:23:e9:d4:f6:c7:43:df:60:fe:aa:0c:d4:b8:8e:db:26:1c:
21:53:33:dd:41:bf:bc:1c:6b:69:1a:49:f9:fc:d6:c7:85:56:
e1:81:4d:cb:93:bf:f1:dd:3b:11:52:5c:39:85:71:51:97:81:
71:c5:a4:71:8c:7d:dc:a7:88:cd:b8:76:7c:20:94:de:48:3f:
eb:0f:7b:e7:78:7f:5a:53:3e:50:ca:86:2f:10:47:00:da:f5:
0a:48:c8:4d:20:91:5f:18:45:1e:62:f1:3c:43:4f:e3:60:6f:
a5:be:70:39:46:5d:2c:67:43:5f:29:0a:0e:d9:f8:0e:59:8c:
57:44:c2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 23:01:17 2025 by rpki-client