Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/5ri5iGiG22v_HhM9Ozo3KWH-CC8.roa
File: 5ri5iGiG22v_HhM9Ozo3KWH-CC8.roa (raw, json)
Hash identifier: NhdhB8sJfKSoLpwMYcbbCRM5nW4NYa5+iuW7C12eUDw=
Subject key identifier: E6:B8:B9:88:68:86:DB:6B:FF:1E:13:3D:3B:3A:37:29:61:FE:08:2F
Certificate issuer: /CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Certificate serial: 0198790F1AB5D8EE08DC487A48C052EF825D
Authority key identifier: 3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/5ri5iGiG22v_HhM9Ozo3KWH-CC8.roa
Signing time: Tue 05 Aug 2025 07:08:09 +0000
ROA not before: Tue 05 Aug 2025 07:08:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48503
IP address blocks: 31.10.3.0/24 maxlen: 24
62.122.0.0/22 maxlen: 22
62.122.4.0/22 maxlen: 22
62.122.104.0/23 maxlen: 23
62.122.106.0/23 maxlen: 23
62.122.108.0/24 maxlen: 24
62.122.109.0/24 maxlen: 24
79.133.184.0/22 maxlen: 22
79.133.188.0/22 maxlen: 22
79.137.170.0/24 maxlen: 24
79.137.171.0/24 maxlen: 24
79.137.176.0/23 maxlen: 23
79.137.178.0/23 maxlen: 23
81.91.180.0/22 maxlen: 22
81.91.184.0/22 maxlen: 22
81.91.188.0/24 maxlen: 24
81.211.130.0/24 maxlen: 24
81.211.133.0/24 maxlen: 24
81.211.150.0/24 maxlen: 24
81.211.172.0/24 maxlen: 24
81.211.193.0/24 maxlen: 24
81.211.194.0/24 maxlen: 24
81.211.195.0/24 maxlen: 24
81.211.196.0/24 maxlen: 24
81.211.197.0/24 maxlen: 24
81.211.198.0/24 maxlen: 24
81.211.199.0/24 maxlen: 24
81.211.201.0/24 maxlen: 24
81.211.202.0/24 maxlen: 24
81.211.203.0/24 maxlen: 24
81.211.204.0/24 maxlen: 24
81.211.206.0/24 maxlen: 24
81.211.207.0/24 maxlen: 24
81.211.208.0/24 maxlen: 24
81.211.211.0/24 maxlen: 24
81.211.212.0/24 maxlen: 24
81.211.213.0/24 maxlen: 24
81.211.250.0/24 maxlen: 24
81.211.251.0/24 maxlen: 24
81.211.253.0/24 maxlen: 24
85.193.96.0/21 maxlen: 21
85.193.104.0/21 maxlen: 21
85.193.112.0/21 maxlen: 21
85.193.120.0/21 maxlen: 21
89.208.123.0/24 maxlen: 24
89.223.112.0/22 maxlen: 22
89.223.116.0/22 maxlen: 22
91.103.104.0/24 maxlen: 24
91.103.105.0/24 maxlen: 24
91.234.208.0/24 maxlen: 24
91.234.209.0/24 maxlen: 24
93.157.176.0/23 maxlen: 23
93.157.178.0/23 maxlen: 23
93.157.180.0/24 maxlen: 24
93.157.181.0/24 maxlen: 24
93.157.182.0/24 maxlen: 24
93.157.183.0/24 maxlen: 24
95.163.145.0/24 maxlen: 24
176.64.0.0/21 maxlen: 21
176.64.8.0/21 maxlen: 21
176.64.16.0/21 maxlen: 21
176.64.24.0/21 maxlen: 21
176.64.32.0/24 maxlen: 24
176.64.33.0/24 maxlen: 24
176.64.34.0/24 maxlen: 24
176.64.35.0/24 maxlen: 24
185.44.84.0/23 maxlen: 23
185.44.84.0/24 maxlen: 24
185.44.85.0/24 maxlen: 24
185.44.86.0/23 maxlen: 23
185.44.86.0/24 maxlen: 24
185.44.87.0/24 maxlen: 24
185.212.244.0/24 maxlen: 24
185.212.245.0/24 maxlen: 24
185.212.246.0/24 maxlen: 24
185.212.247.0/24 maxlen: 24
185.223.188.0/22 maxlen: 22
185.229.84.0/22 maxlen: 22
185.229.120.0/24 maxlen: 24
185.229.121.0/24 maxlen: 24
185.234.24.0/22 maxlen: 22
185.234.24.0/23 maxlen: 23
185.234.26.0/23 maxlen: 23
185.234.60.0/22 maxlen: 22
185.234.60.0/23 maxlen: 23
185.234.62.0/23 maxlen: 23
185.250.28.0/23 maxlen: 23
185.250.30.0/23 maxlen: 23
188.124.232.0/22 maxlen: 22
188.124.236.0/22 maxlen: 22
188.124.244.0/23 maxlen: 23
188.124.246.0/23 maxlen: 23
193.41.130.0/24 maxlen: 24
193.41.131.0/24 maxlen: 24
194.0.188.0/24 maxlen: 24
194.0.189.0/24 maxlen: 24
194.0.244.0/24 maxlen: 24
194.0.245.0/24 maxlen: 24
195.189.48.0/23 maxlen: 23
195.189.48.0/24 maxlen: 24
195.189.49.0/24 maxlen: 24
195.189.50.0/24 maxlen: 24
195.189.51.0/24 maxlen: 24
212.96.64.0/24 maxlen: 24
212.96.65.0/24 maxlen: 24
212.96.66.0/24 maxlen: 24
212.96.67.0/24 maxlen: 24
212.96.68.0/24 maxlen: 24
212.96.69.0/24 maxlen: 24
212.96.70.0/23 maxlen: 23
212.96.72.0/23 maxlen: 23
212.96.74.0/23 maxlen: 23
212.96.76.0/24 maxlen: 24
212.96.77.0/24 maxlen: 24
212.96.78.0/24 maxlen: 24
212.96.79.0/24 maxlen: 24
212.96.80.0/23 maxlen: 23
212.96.82.0/24 maxlen: 24
212.96.83.0/24 maxlen: 24
212.96.84.0/24 maxlen: 24
212.96.85.0/24 maxlen: 24
212.96.86.0/23 maxlen: 23
212.96.88.0/24 maxlen: 24
212.96.90.0/24 maxlen: 24
212.96.91.0/24 maxlen: 24
212.96.92.0/24 maxlen: 24
212.96.93.0/24 maxlen: 24
212.96.94.0/24 maxlen: 24
212.96.95.0/24 maxlen: 24
217.171.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 19:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:0f:1a:b5:d8:ee:08:dc:48:7a:48:c0:52:ef:82:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Validity
Not Before: Aug 5 07:08:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6b8b9886886db6bff1e133d3b3a372961fe082f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bd:0d:c3:47:0d:21:92:c1:87:60:59:a6:d1:
3c:dd:07:04:92:b3:63:67:06:d6:e6:6b:77:e4:8b:
1c:ed:7d:89:3b:7e:0e:3d:bc:85:94:d0:f0:83:85:
04:6b:b0:bf:a5:cc:fd:c3:85:0f:33:f7:18:0e:f1:
32:e9:36:40:60:22:3f:8d:bb:6d:53:18:f7:1f:3e:
ad:a8:62:8c:bf:5a:11:fd:5b:89:d1:4f:5b:11:3c:
f4:f7:c2:5a:7c:e5:f9:27:09:f9:6c:17:2c:8d:33:
31:c5:f9:a0:d5:06:f2:68:c2:ea:33:61:2c:14:2c:
30:e5:08:f2:09:6f:94:88:20:e2:bb:a0:79:a3:93:
69:b3:5b:52:fa:f4:25:3b:b3:5e:55:37:96:de:60:
c3:25:25:ed:db:69:fe:90:de:f0:55:52:0e:4e:8f:
4b:11:e8:cb:ab:be:e9:83:17:ee:1b:5d:ba:6a:37:
79:4a:2c:cd:cc:ad:68:34:af:68:8f:ed:5b:fc:b9:
88:f4:f1:bf:ac:63:0c:1d:3b:7a:e5:33:f3:f0:22:
ca:d2:ab:f1:40:c6:e2:3f:2e:73:9d:c8:ec:f8:a5:
09:c4:bf:a0:d1:96:57:42:21:77:c6:51:f8:d1:d4:
91:cd:a8:89:b2:86:29:03:0e:c7:66:e5:b1:d5:89:
0c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B8:B9:88:68:86:DB:6B:FF:1E:13:3D:3B:3A:37:29:61:FE:08:2F
X509v3 Authority Key Identifier:
keyid:3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/5ri5iGiG22v_HhM9Ozo3KWH-CC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.3.0/24
62.122.0.0/21
62.122.104.0-62.122.109.255
79.133.184.0/21
79.137.170.0/23
79.137.176.0/22
81.91.180.0-81.91.188.255
81.211.130.0/24
81.211.133.0/24
81.211.150.0/24
81.211.172.0/24
81.211.193.0-81.211.199.255
81.211.201.0-81.211.204.255
81.211.206.0-81.211.208.255
81.211.211.0-81.211.213.255
81.211.250.0/23
81.211.253.0/24
85.193.96.0/19
89.208.123.0/24
89.223.112.0/21
91.103.104.0/23
91.234.208.0/23
93.157.176.0/21
95.163.145.0/24
176.64.0.0-176.64.35.255
185.44.84.0/22
185.212.244.0/22
185.223.188.0/22
185.229.84.0/22
185.229.120.0/23
185.234.24.0/22
185.234.60.0/22
185.250.28.0/22
188.124.232.0/21
188.124.244.0/22
193.41.130.0/23
194.0.188.0/23
194.0.244.0/23
195.189.48.0/22
212.96.64.0-212.96.88.255
212.96.90.0-212.96.95.255
217.171.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:7a:12:0f:03:61:3a:d3:ba:c1:fc:39:62:5f:e9:d4:d6:ac:
52:42:ed:97:39:23:19:a6:9a:2e:6a:dc:10:f7:98:18:e3:21:
c2:ae:0f:8e:dc:28:dd:f1:18:5f:7a:f8:43:f2:c8:ab:a3:ae:
cd:e0:ab:58:f7:35:e5:bb:02:de:5c:f6:b6:bd:36:91:95:58:
3d:ff:28:0d:8b:99:a5:72:8f:e1:95:58:72:cc:50:14:82:f3:
b6:d5:98:f5:4e:b5:01:af:11:c2:ea:53:47:49:b4:a4:72:ef:
59:78:4a:c6:c8:44:dd:e4:0b:46:d5:5e:c3:30:3a:78:a6:be:
51:b3:1e:53:ff:4f:b4:4b:4e:18:af:94:99:7b:76:50:7b:02:
11:6f:49:3c:84:b6:ad:f5:05:8e:0a:5e:74:5c:26:06:b1:5e:
cf:a6:0c:89:dc:b8:74:2c:cf:c4:1e:7e:1a:15:76:b2:96:05:
b7:01:04:c8:75:0a:96:99:ec:81:5e:c5:00:b3:fd:bc:48:8f:
b8:57:42:48:7a:2b:35:be:c3:62:db:86:2f:39:71:84:47:95:
b9:da:ab:08:22:b2:a8:b1:32:4b:df:36:32:7c:66:3d:60:81:
ea:ba:a3:76:49:2f:58:28:ee:6c:2a:e3:6a:25:3b:a6:04:a1:
a4:c4:bc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:51:19 2025 by rpki-client