Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/F_mW-r6AO2RFXnsmBP9_1YZIkEo.roa
File: F_mW-r6AO2RFXnsmBP9_1YZIkEo.roa (raw, json)
Hash identifier: ghyG1itL62mrT0tCZUKMn1O3XF2Jv356+rPgJ0pM/lM=
Subject key identifier: 17:F9:96:FA:BE:80:3B:64:45:5E:7B:26:04:FF:7F:D5:86:48:90:4A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0196D4436C839D29EE07278F5844949A3CF1
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/F_mW-r6AO2RFXnsmBP9_1YZIkEo.roa
Signing time: Thu 15 May 2025 14:05:10 +0000
ROA not before: Thu 15 May 2025 14:05:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.50.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.193.102.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
188.212.121.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.21.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:43:6c:83:9d:29:ee:07:27:8f:58:44:94:9a:3c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 15 14:05:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17f996fabe803b64455e7b2604ff7fd58648904a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c8:2b:71:43:70:87:93:01:69:8e:a3:e2:62:
eb:ed:0f:5a:bf:1b:bb:ec:74:cd:dd:ec:8f:8e:d7:
54:03:33:80:c0:55:19:d5:08:3d:70:fb:7a:f6:d4:
8e:01:e5:8c:ab:46:71:4e:30:22:a9:af:77:bc:b9:
a1:8a:70:a6:4c:32:85:29:be:c3:1d:af:c2:79:4b:
65:b5:b2:0c:65:5f:83:b6:69:bc:b9:34:68:6f:31:
68:41:93:b5:07:3b:3a:d8:c4:9d:bd:b8:c8:5e:0c:
f6:5e:b7:32:a9:63:cd:43:b4:f0:55:64:dd:a3:7d:
df:cc:72:6e:86:10:a9:80:fe:49:a4:c3:fa:d2:78:
bb:60:b4:cc:5e:f6:b5:6e:7d:12:fd:39:ad:a3:d7:
1e:0a:df:89:ac:a7:a9:73:80:74:44:41:ca:be:d9:
98:71:0e:18:53:28:4e:b1:98:7e:4e:97:ef:2a:f9:
5a:ec:be:55:98:06:91:7e:e6:3f:af:e7:e5:0d:0e:
52:f5:08:dc:bc:3f:96:eb:9b:41:2b:23:15:1d:0e:
87:73:50:99:84:04:cf:95:a6:a0:a2:6b:1f:3e:95:
54:5c:75:e6:d9:51:55:d9:57:9f:d0:f4:0f:b8:0e:
3a:61:f8:6d:e7:e8:4e:cd:c0:37:06:43:15:c6:4d:
5c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F9:96:FA:BE:80:3B:64:45:5E:7B:26:04:FF:7F:D5:86:48:90:4A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/F_mW-r6AO2RFXnsmBP9_1YZIkEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.50.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.72.8.0/24
185.141.219.0/24
185.193.102.0/24
185.198.235.0/24
188.64.142.0/24
188.212.121.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
195.88.89.0/24
195.133.192.0/23
212.192.6.0/24
212.192.12.0/23
212.192.15.0/24
212.192.20.0/23
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
97:2a:e1:4f:21:cd:eb:e1:68:f4:38:e1:5d:4e:33:49:6c:c1:
d0:1f:bc:64:37:e3:07:df:43:ff:18:f0:dc:20:c0:9c:1c:15:
b6:41:ae:a0:fe:6c:ed:b8:1e:bb:2d:e4:07:31:52:68:55:03:
14:2e:2f:05:79:34:ec:37:d2:d4:9e:41:f9:c9:1b:ea:a0:c1:
eb:6e:d2:91:ca:0f:de:3a:34:e9:6c:e2:eb:4b:ed:a5:3a:2d:
b9:cb:83:54:d8:c6:62:d4:69:a3:1a:73:f5:14:f7:06:1c:43:
e5:cc:99:ef:9e:d2:8d:03:97:51:e7:6d:3e:45:e0:ca:95:9d:
64:6f:1a:db:33:a3:c0:d4:43:13:ee:c3:21:23:52:e0:34:71:
ff:80:25:f8:19:7a:0b:9a:84:6a:65:f3:77:4e:05:77:71:37:
97:c9:0d:7f:9c:7d:d6:8b:89:66:d7:82:59:4d:71:1f:eb:e9:
d5:6f:bc:a2:6f:fa:31:5d:42:64:53:c9:e9:e9:b4:03:8e:44:
7a:4e:65:36:d1:d7:f2:0b:95:2b:c4:28:1f:9f:d8:42:e3:20:
b2:9b:3c:c4:3b:d0:5c:da:44:0c:cb:8b:61:30:40:b8:51:22:
80:e2:73:7a:23:a3:62:5d:d2:7a:09:63:47:87:ac:c5:7c:99:
84:91:9a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:36:19 2025 by rpki-client