Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/vgTl9Zry6QyJhGMa7XknIZW05jI.roa
File: vgTl9Zry6QyJhGMa7XknIZW05jI.roa (raw, json)
Hash identifier: Hblh0I4p/1AYuQTi54zEJeQbRToAOZJRlCD+tMVhOwU=
Subject key identifier: BE:04:E5:F5:9A:F2:E9:0C:89:84:63:1A:ED:79:27:21:95:B4:E6:32
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 019634312B8C17CBFA93B3B06AE6DFCF4195
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/vgTl9Zry6QyJhGMa7XknIZW05jI.roa
Signing time: Mon 14 Apr 2025 12:05:59 +0000
ROA not before: Mon 14 Apr 2025 12:05:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
79.150.0.0/16 maxlen: 24
79.151.0.0/16 maxlen: 24
79.152.0.0/16 maxlen: 24
79.153.0.0/16 maxlen: 24
79.154.0.0/16 maxlen: 24
79.155.0.0/16 maxlen: 24
79.156.0.0/16 maxlen: 24
79.157.0.0/16 maxlen: 24
79.158.0.0/16 maxlen: 24
79.159.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.28.0.0/16 maxlen: 16
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.58.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
81.45.0.0/16 maxlen: 16
81.46.0.0/16 maxlen: 16
81.47.0.0/16 maxlen: 24
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.40.0.0/16 maxlen: 24
83.41.0.0/16 maxlen: 24
83.42.0.0/16 maxlen: 24
83.43.0.0/16 maxlen: 24
83.44.0.0/16 maxlen: 24
83.45.0.0/16 maxlen: 24
83.46.0.0/16 maxlen: 24
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.49.0.0/16 maxlen: 24
83.50.0.0/16 maxlen: 24
83.51.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.4.0.0/16 maxlen: 24
88.5.0.0/16 maxlen: 24
88.6.0.0/16 maxlen: 24
88.7.0.0/16 maxlen: 24
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.17.0.0/16 maxlen: 24
88.18.0.0/16 maxlen: 24
88.19.0.0/16 maxlen: 24
88.20.0.0/16 maxlen: 24
88.21.0.0/16 maxlen: 24
88.22.0.0/16 maxlen: 24
88.23.0.0/16 maxlen: 24
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.120.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.84.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.152.0.0/16 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.0.0/17 maxlen: 17
194.179.0.0/18 maxlen: 18
194.179.34.0/24 maxlen: 24
194.179.64.0/18 maxlen: 18
194.179.112.0/24 maxlen: 24
194.224.0.0/16 maxlen: 16
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.0.0/16 maxlen: 16
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.0.0/16 maxlen: 16
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.0.0/16 maxlen: 16
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.77.198.0/24 maxlen: 24
195.77.199.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.0.0.0/16 maxlen: 16
213.4.0.0/16 maxlen: 16
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
2a02:9000::/23 maxlen: 23
2a02:9144::/32 maxlen: 32
2a02:9145::/32 maxlen: 32
2a02:9146::/32 maxlen: 32
2a02:9147::/32 maxlen: 32
2a02:9148::/32 maxlen: 32
2a02:9149::/32 maxlen: 32
2a02:914a::/32 maxlen: 32
2a02:914b::/32 maxlen: 32
2a02:914c::/32 maxlen: 32
2a02:914d::/32 maxlen: 32
2a02:914e::/32 maxlen: 32
2a02:914f::/32 maxlen: 32
2a02:9150::/32 maxlen: 32
2a02:9151::/32 maxlen: 32
2a02:9152::/32 maxlen: 32
2a02:9153::/32 maxlen: 32
2a02:9154::/32 maxlen: 32
2a02:9155::/32 maxlen: 32
2a02:9156::/32 maxlen: 32
2a02:9157::/32 maxlen: 32
2a02:9158::/32 maxlen: 32
2a02:9159::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:34:31:2b:8c:17:cb:fa:93:b3:b0:6a:e6:df:cf:41:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Apr 14 12:05:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be04e5f59af2e90c8984631aed79272195b4e632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:37:0e:2a:12:79:2c:af:f5:60:35:d6:3b:
fc:00:30:8d:54:fb:e5:fc:86:1b:de:0e:4e:19:78:
a3:70:2c:e6:10:ce:33:ae:96:f2:de:d5:8d:05:0c:
ce:1e:30:e1:f7:68:44:17:4e:69:67:49:9d:6c:eb:
a9:c0:0a:d4:94:b6:14:63:c3:f6:95:85:ac:6a:0a:
e8:6d:fe:10:9d:c4:37:87:b2:91:7d:86:b7:72:03:
fc:1e:bd:a8:b5:9f:9a:d2:61:d4:91:4a:0a:a3:cf:
76:1f:06:c7:4e:a5:e0:45:01:f4:50:d3:9f:9e:e4:
b4:ed:bf:10:1f:cf:48:b2:2f:06:2e:b9:0e:e0:0c:
04:75:95:04:9b:5b:6c:be:d8:38:98:4e:d4:0c:8f:
fb:00:34:d8:6b:6d:57:1e:f9:e8:3a:32:90:74:8e:
e1:9d:b0:83:dd:19:0b:2e:60:de:5d:08:6a:d5:01:
9b:37:92:52:f7:6e:d4:65:c9:25:6f:5a:0d:6f:82:
83:e9:89:27:00:88:77:73:9e:31:66:a0:0a:17:1e:
07:73:e7:ee:24:4a:f3:a7:98:ac:2d:a8:32:d0:b5:
e5:7c:9b:b5:8d:5f:47:e1:0f:a0:21:c5:4f:e2:0a:
00:e8:da:da:8e:a2:25:6b:47:c5:15:ba:92:48:0f:
f0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:04:E5:F5:9A:F2:E9:0C:89:84:63:1A:ED:79:27:21:95:B4:E6:32
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/vgTl9Zry6QyJhGMa7XknIZW05jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0/12
80.24.0.0-80.39.255.255
80.58.0.0/15
81.32.0.0/12
83.32.0.0/11
88.0.0.0/11
95.120.0.0/13
176.80.0.0/13
192.101.1.0/24
193.152.0.0/15
194.69.225.0/24
194.179.0.0/17
194.224.0.0/16
195.53.0.0/16
195.55.0.0/16
195.57.0.0/16
195.76.0.0/15
195.235.0.0/16
212.170.0.0/16
213.0.0.0/16
213.4.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
IPv6:
2a02:9000::/23
Signature Algorithm: sha256WithRSAEncryption
9e:c7:8c:b6:43:6f:bd:36:08:1f:65:8e:78:ad:a6:7a:87:d7:
c4:1b:b0:74:77:f0:1b:8e:14:f9:be:37:e6:04:24:10:d8:56:
77:e7:8d:90:e8:76:7a:5f:3e:ed:61:85:4a:1a:30:18:76:81:
4e:44:0a:98:13:59:4f:76:d4:4a:f8:dc:48:82:f0:6a:9d:0f:
df:df:cb:58:6f:7c:df:88:68:1b:f5:28:39:bc:95:bd:17:06:
b7:71:5a:6b:a0:ed:04:fa:42:6a:97:9e:12:d1:31:f3:f9:93:
e6:c5:62:a8:46:d7:1b:52:ce:84:5e:c9:ca:31:8e:bd:31:d3:
ba:fe:c4:ce:28:9e:06:8d:da:97:42:58:96:6c:47:fe:b2:b4:
55:d3:3c:64:f8:a3:32:1a:36:68:6a:be:21:af:8b:80:bc:a9:
a8:a7:81:77:2e:2a:6d:76:fc:a3:0e:e4:7c:07:95:d6:53:42:
cc:aa:d6:58:44:29:5b:07:e5:01:da:32:fb:3a:f9:6b:e1:35:
08:56:20:66:35:38:39:fd:8f:00:76:a2:2a:e5:7a:2a:02:4f:
34:a4:0d:2c:f9:29:0b:34:db:03:94:eb:9f:0d:93:d6:7c:01:
58:97:c7:64:97:a8:e2:02:09:b0:58:14:9b:5b:01:fb:2f:7c:
b9:5f:02:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:12:45 2025 by rpki-client