Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/6tV_vxL9BXh_6EXzqYvZ8Oco6Sw.roa
File: 6tV_vxL9BXh_6EXzqYvZ8Oco6Sw.roa (raw, json)
Hash identifier: pjp3vk32S2uoYD5BYbx6fd95c4RjjRrbmWLHqlySO6U=
Subject key identifier: EA:D5:7F:BF:12:FD:05:78:7F:E8:45:F3:A9:8B:D9:F0:E7:28:E9:2C
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019A24DEF6FEBAED244C7E751B6F94C5A82E
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/6tV_vxL9BXh_6EXzqYvZ8Oco6Sw.roa
Signing time: Mon 27 Oct 2025 08:53:03 +0000
ROA not before: Mon 27 Oct 2025 08:53:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 109.204.104.0/21 maxlen: 24
212.134.21.0/24 maxlen: 24
212.134.22.0/24 maxlen: 24
212.134.23.0/24 maxlen: 24
212.134.24.0/24 maxlen: 24
212.134.25.0/24 maxlen: 24
212.134.38.0/24 maxlen: 24
212.134.39.0/24 maxlen: 24
212.134.45.0/24 maxlen: 24
212.134.59.0/24 maxlen: 24
212.134.60.0/24 maxlen: 24
212.134.61.0/24 maxlen: 24
212.134.62.0/24 maxlen: 24
212.134.63.0/24 maxlen: 24
212.134.81.0/24 maxlen: 24
212.134.82.0/24 maxlen: 24
212.134.85.0/24 maxlen: 24
212.134.88.0/24 maxlen: 24
212.134.95.0/24 maxlen: 24
212.134.116.0/22 maxlen: 24
212.134.158.0/24 maxlen: 24
212.135.16.0/22 maxlen: 24
212.135.159.0/24 maxlen: 24
212.135.165.0/24 maxlen: 24
212.135.166.0/24 maxlen: 24
212.135.167.0/24 maxlen: 24
212.135.168.0/24 maxlen: 24
212.135.169.0/24 maxlen: 24
212.135.170.0/24 maxlen: 24
212.135.171.0/24 maxlen: 24
212.135.172.0/24 maxlen: 24
212.135.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:28:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:de:f6:fe:ba:ed:24:4c:7e:75:1b:6f:94:c5:a8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Oct 27 08:53:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ead57fbf12fd05787fe845f3a98bd9f0e728e92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b1:f8:7a:0d:e7:b3:73:06:2f:d8:6d:2f:4e:
75:2b:d4:a9:a3:62:9e:4d:08:93:01:3d:d6:8f:6c:
26:8f:e1:71:9b:60:f8:5a:6f:92:1e:51:8c:a1:65:
8a:88:3e:ca:a9:37:bf:bd:8b:fe:28:f0:39:79:3e:
1e:7e:e4:0b:7c:15:dc:3d:61:03:2a:d8:b1:be:9a:
07:e5:fa:ed:eb:4e:36:f6:95:f1:12:b0:3b:5e:00:
cf:2b:6c:34:19:b8:af:5a:a6:a2:ef:57:6c:51:ab:
a4:d3:85:1e:9a:36:5f:83:fd:6b:1e:29:1c:a8:fa:
4e:2a:2a:55:ae:5d:a7:47:4f:5c:aa:ec:16:7b:5d:
51:44:dd:71:06:e7:90:72:02:51:ab:fb:16:1f:40:
36:e7:8e:91:49:c0:a1:b4:a5:43:1e:e9:87:50:9b:
71:b5:af:58:66:5c:3d:76:ab:d2:0a:29:f0:28:7a:
b8:e2:52:e6:08:86:50:d3:26:c1:11:a0:07:bf:a4:
db:09:55:80:6a:f5:bf:21:b1:10:1d:ea:90:b7:b6:
5f:5d:87:f7:7b:b3:0f:43:01:7a:c3:e2:b1:3d:e7:
50:58:39:65:3c:1d:2a:35:e3:bc:39:04:20:a6:a4:
bd:55:5d:78:71:f5:e8:fd:60:95:1b:33:84:24:e6:
1e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D5:7F:BF:12:FD:05:78:7F:E8:45:F3:A9:8B:D9:F0:E7:28:E9:2C
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/6tV_vxL9BXh_6EXzqYvZ8Oco6Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.204.104.0/21
212.134.21.0-212.134.25.255
212.134.38.0/23
212.134.45.0/24
212.134.59.0-212.134.63.255
212.134.81.0-212.134.82.255
212.134.85.0/24
212.134.88.0/24
212.134.95.0/24
212.134.116.0/22
212.134.158.0/24
212.135.16.0/22
212.135.159.0/24
212.135.165.0-212.135.173.255
Signature Algorithm: sha256WithRSAEncryption
a9:1d:05:d6:3c:59:02:da:f5:ae:6c:e4:b0:b2:d9:bb:ee:7d:
18:a2:ab:1c:f3:4a:20:e1:22:0c:bb:be:29:73:ef:ee:8d:9f:
ba:98:0d:3b:30:88:9f:4a:92:d7:ad:dd:85:6f:9c:b7:be:87:
3a:a2:15:0f:59:70:90:a9:36:b3:50:06:ef:00:d4:99:39:d4:
43:4a:f3:00:bc:1e:ff:4c:44:4a:ea:b8:b6:0e:d0:04:c5:a1:
4b:e3:c7:93:1d:9f:62:26:e5:25:a8:5f:57:e5:b6:a7:72:e7:
8c:02:bb:12:9d:9a:00:31:a2:43:15:66:36:48:23:ef:26:d3:
61:2c:66:ac:05:5d:b7:3a:a6:e9:4f:cb:90:be:96:f7:d5:24:
7d:cc:64:83:02:35:5e:ed:7c:78:3c:c1:a6:6f:8a:94:60:8d:
49:e8:3a:3e:65:64:c5:5b:33:23:1e:1a:2f:8b:25:71:39:04:
1b:cd:5b:31:64:cf:0c:52:dc:26:64:80:e5:d7:3d:a6:3f:83:
58:3b:35:1b:fc:76:c1:22:6c:f0:89:84:65:4f:15:17:13:8f:
69:b8:b4:dc:29:95:6c:ac:29:44:97:2a:0e:6f:47:5e:cc:46:
48:cb:65:10:49:e4:20:6b:a5:76:eb:ba:7a:7a:56:d7:84:0c:
03:0a:1c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:47:05 2025 by rpki-client