Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/uQJ0r9b8kdNhCbaT78mcSOW1QkI.roa
File: uQJ0r9b8kdNhCbaT78mcSOW1QkI.roa (raw, json)
Hash identifier: uNMP2IMPRTCiamB2z0ZZLpPB5GY/6O2hHoOEVLpR4Rc=
Subject key identifier: B9:02:74:AF:D6:FC:91:D3:61:09:B6:93:EF:C9:9C:48:E5:B5:42:42
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 019A305D1E775E1F6F62F4F1A19FCDDEE08A
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/uQJ0r9b8kdNhCbaT78mcSOW1QkI.roa
Signing time: Wed 29 Oct 2025 14:26:40 +0000
ROA not before: Wed 29 Oct 2025 14:26:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42695
IP address blocks: 31.12.84.0/22 maxlen: 24
31.132.58.0/24 maxlen: 24
37.153.138.0/23 maxlen: 24
37.153.172.0/23 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.121.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
45.114.123.0/24 maxlen: 24
46.254.8.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.12.0/24 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
77.81.6.0/23 maxlen: 24
77.81.188.0/23 maxlen: 24
86.107.48.0/23 maxlen: 24
86.107.49.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
89.36.90.0/23 maxlen: 23
89.40.216.0/23 maxlen: 23
89.42.140.0/23 maxlen: 24
89.45.226.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
89.45.227.0/24 maxlen: 24
89.46.80.0/21 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.86.0/24 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
103.81.140.0/22 maxlen: 24
116.206.168.0/22 maxlen: 24
141.255.184.0/21 maxlen: 24
185.2.152.0/22 maxlen: 22
185.16.84.0/22 maxlen: 24
185.52.156.0/22 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.207.0/24 maxlen: 24
185.103.48.0/22 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
188.95.224.0/21 maxlen: 24
188.212.108.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.240.92.0/22 maxlen: 24
188.240.222.0/23 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.198.0/24 maxlen: 24
2a00:16d8::/32 maxlen: 48
2a03:b000::/32 maxlen: 32
2a03:b000:200::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:d7c0::/29 maxlen: 48
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:5d:1e:77:5e:1f:6f:62:f4:f1:a1:9f:cd:de:e0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Oct 29 14:26:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b90274afd6fc91d36109b693efc99c48e5b54242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:a9:b8:3d:93:a8:12:fc:0e:d9:9b:e9:b5:
f1:12:7e:37:d8:11:69:a9:fb:b0:52:b8:83:43:68:
fb:2a:6e:69:5e:66:93:82:4e:0b:c3:1c:9f:b6:42:
d6:d7:a5:0c:64:dc:7c:14:35:a0:32:02:3f:45:d5:
a6:36:96:06:7d:93:0c:0f:8f:2a:e8:22:57:43:63:
0c:6b:e9:bf:e5:10:13:f3:1a:3d:0b:00:ca:57:79:
4a:17:a4:17:6c:00:cb:a3:8e:f7:06:27:e2:e7:e0:
60:2d:19:1b:89:99:ef:93:36:0e:39:5d:3d:c1:8e:
d2:28:96:4e:58:5a:31:f5:e4:77:50:58:de:7a:c5:
d5:28:e7:85:ff:0e:30:ff:64:75:76:3c:03:b8:a3:
de:86:0d:f8:29:14:ad:06:38:46:d2:61:63:8d:bd:
55:f0:3d:ac:e2:b3:c3:6e:cd:a4:7a:36:77:3c:47:
cf:4c:30:10:f6:d1:c3:83:97:03:e0:9e:94:e6:e6:
d5:be:91:bf:6b:94:31:9b:5d:e1:e0:1e:0d:05:da:
e5:23:db:04:bd:38:b8:5d:47:df:22:51:88:60:2e:
70:83:58:e4:5a:81:2a:a8:d9:2e:59:2d:0d:ef:ac:
e7:70:f3:ee:c8:d8:c2:d8:f4:76:7b:e7:84:55:ef:
74:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:02:74:AF:D6:FC:91:D3:61:09:B6:93:EF:C9:9C:48:E5:B5:42:42
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/uQJ0r9b8kdNhCbaT78mcSOW1QkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.12.84.0/22
31.132.58.0/24
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/22
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000::/32
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
3d:95:50:3b:6d:b8:0a:2a:3c:af:96:61:55:5f:b6:e7:af:13:
38:5d:e5:b1:8f:d6:ec:59:1a:7e:87:28:d1:33:fd:d7:9b:c5:
85:74:e7:a9:3e:28:79:44:6b:4a:a1:e2:ac:35:80:e6:de:04:
27:72:f6:e0:84:b1:29:ca:0c:1c:72:4b:a5:1c:39:ed:b0:f8:
5e:7a:d3:09:84:16:a2:f7:03:32:1f:d3:ec:8b:3d:a2:79:2a:
a4:19:44:18:74:1f:41:79:b8:6f:50:b1:23:98:69:17:ab:4c:
a9:7c:85:c2:7a:c6:e2:2b:21:c1:b1:7a:0a:a6:47:be:c1:2e:
5a:db:79:63:c8:37:9d:1d:5e:0e:0e:cb:0b:4c:e7:32:99:ff:
d5:4e:65:ba:62:53:e5:10:83:0f:37:0f:dd:48:0f:3f:40:4b:
83:53:7b:80:b3:56:d6:fb:25:5d:96:3b:f8:c2:ab:44:0e:04:
e1:bd:11:80:f1:a3:ec:8c:eb:97:30:e2:11:9e:c7:c9:3e:b4:
f8:d3:91:ab:b9:95:c8:f5:ac:97:a3:6c:f9:c1:8f:ed:e9:2c:
26:d8:ec:bd:bc:b5:bb:20:00:f6:8a:d7:76:17:d1:05:6d:76:
ba:95:33:73:25:e5:f2:fb:4c:b8:e6:25:09:42:c8:14:fd:b8:
d2:33:06:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:29:33 2025 by rpki-client