Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/ATQyeIdV9fi3WPbx9o-TPnaV-Cs.roa
File: ATQyeIdV9fi3WPbx9o-TPnaV-Cs.roa (raw, json)
Hash identifier: jBc2qvPiWiousJ3+W046TnnjJzmUqrlIXiofaB4Dj6M=
Subject key identifier: 01:34:32:78:87:55:F5:F8:B7:58:F6:F1:F6:8F:93:3E:76:95:F8:2B
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 019897BF7852A6974746B15A7A60B391E093
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/ATQyeIdV9fi3WPbx9o-TPnaV-Cs.roa
Signing time: Mon 11 Aug 2025 06:09:24 +0000
ROA not before: Mon 11 Aug 2025 06:09:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204170
IP address blocks: 5.102.176.0/21 maxlen: 21
5.102.176.0/24 maxlen: 24
5.102.178.0/24 maxlen: 24
5.102.179.0/24 maxlen: 24
5.102.180.0/24 maxlen: 24
5.102.181.0/24 maxlen: 24
5.102.182.0/24 maxlen: 24
5.102.183.0/24 maxlen: 24
78.111.32.0/20 maxlen: 20
78.111.32.0/24 maxlen: 24
78.111.33.0/24 maxlen: 24
78.111.34.0/24 maxlen: 24
78.111.35.0/24 maxlen: 24
78.111.36.0/24 maxlen: 24
78.111.37.0/24 maxlen: 24
78.111.38.0/24 maxlen: 24
78.111.39.0/24 maxlen: 24
78.111.40.0/24 maxlen: 24
78.111.41.0/24 maxlen: 24
78.111.42.0/24 maxlen: 24
78.111.43.0/24 maxlen: 24
78.111.44.0/24 maxlen: 24
78.111.45.0/24 maxlen: 24
78.111.46.0/24 maxlen: 24
78.111.47.0/24 maxlen: 24
84.242.32.0/20 maxlen: 20
84.242.32.0/24 maxlen: 24
84.242.33.0/24 maxlen: 24
84.242.34.0/24 maxlen: 24
84.242.35.0/24 maxlen: 24
84.242.36.0/24 maxlen: 24
84.242.37.0/24 maxlen: 24
84.242.38.0/24 maxlen: 24
84.242.39.0/24 maxlen: 24
84.242.40.0/24 maxlen: 24
84.242.41.0/24 maxlen: 24
84.242.42.0/24 maxlen: 24
84.242.43.0/24 maxlen: 24
84.242.44.0/24 maxlen: 24
84.242.45.0/24 maxlen: 24
84.242.46.0/24 maxlen: 24
84.242.47.0/24 maxlen: 24
94.176.16.0/20 maxlen: 20
94.176.16.0/24 maxlen: 24
94.176.17.0/24 maxlen: 24
94.176.18.0/24 maxlen: 24
94.176.19.0/24 maxlen: 24
94.176.20.0/24 maxlen: 24
94.176.21.0/24 maxlen: 24
94.176.22.0/24 maxlen: 24
94.176.23.0/24 maxlen: 24
94.176.24.0/24 maxlen: 24
94.176.25.0/24 maxlen: 24
94.176.26.0/24 maxlen: 24
94.176.27.0/24 maxlen: 24
94.176.28.0/24 maxlen: 24
94.176.29.0/24 maxlen: 24
94.176.30.0/24 maxlen: 24
94.176.31.0/24 maxlen: 24
96.9.128.0/19 maxlen: 19
96.9.128.0/24 maxlen: 24
96.9.129.0/24 maxlen: 24
96.9.130.0/24 maxlen: 24
96.9.131.0/24 maxlen: 24
96.9.132.0/24 maxlen: 24
96.9.133.0/24 maxlen: 24
96.9.134.0/24 maxlen: 24
96.9.135.0/24 maxlen: 24
96.9.136.0/24 maxlen: 24
96.9.137.0/24 maxlen: 24
96.9.138.0/24 maxlen: 24
96.9.139.0/24 maxlen: 24
96.9.140.0/24 maxlen: 24
96.9.141.0/24 maxlen: 24
96.9.142.0/24 maxlen: 24
96.9.143.0/24 maxlen: 24
96.9.144.0/24 maxlen: 24
96.9.146.0/24 maxlen: 24
96.9.147.0/24 maxlen: 24
96.9.148.0/24 maxlen: 24
96.9.149.0/24 maxlen: 24
96.9.150.0/24 maxlen: 24
96.9.151.0/24 maxlen: 24
96.9.152.0/24 maxlen: 24
96.9.153.0/24 maxlen: 24
96.9.154.0/24 maxlen: 24
96.9.155.0/24 maxlen: 24
96.9.156.0/24 maxlen: 24
96.9.157.0/24 maxlen: 24
96.9.158.0/24 maxlen: 24
96.9.159.0/24 maxlen: 24
141.105.168.0/21 maxlen: 21
141.105.168.0/24 maxlen: 24
141.105.169.0/24 maxlen: 24
141.105.170.0/24 maxlen: 24
141.105.171.0/24 maxlen: 24
141.105.172.0/24 maxlen: 24
141.105.173.0/24 maxlen: 24
141.105.174.0/24 maxlen: 24
141.105.175.0/24 maxlen: 24
178.20.16.0/21 maxlen: 21
178.20.16.0/24 maxlen: 24
178.20.17.0/24 maxlen: 24
178.20.18.0/24 maxlen: 24
178.20.19.0/24 maxlen: 24
178.20.20.0/24 maxlen: 24
178.20.21.0/24 maxlen: 24
178.20.22.0/24 maxlen: 24
178.20.23.0/24 maxlen: 24
185.29.140.0/22 maxlen: 22
185.29.140.0/24 maxlen: 24
185.29.141.0/24 maxlen: 24
185.29.142.0/24 maxlen: 24
185.29.143.0/24 maxlen: 24
185.112.104.0/22 maxlen: 22
185.112.104.0/24 maxlen: 24
185.112.105.0/24 maxlen: 24
185.112.106.0/24 maxlen: 24
185.112.107.0/24 maxlen: 24
199.48.224.0/24 maxlen: 24
206.167.33.0/24 maxlen: 24
2a0a:c740:2::/48 maxlen: 48
2a0a:c740:4::/48 maxlen: 48
2a0a:c740:5::/48 maxlen: 48
2a0a:c740:7::/48 maxlen: 48
2a0a:c740:8::/48 maxlen: 48
2a0a:c740:a::/48 maxlen: 48
2a0a:c740:b::/48 maxlen: 48
2a0a:c740:100::/48 maxlen: 48
2a0a:c740:1009::/48 maxlen: 48
2a0a:c740:1063::/48 maxlen: 48
2a0a:c740:2000::/48 maxlen: 48
2a0a:c740:2009::/48 maxlen: 48
2a0a:c740:9998::/48 maxlen: 48
2a0a:c740:ffff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:bf:78:52:a6:97:47:46:b1:5a:7a:60:b3:91:e0:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Aug 11 06:09:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=013432788755f5f8b758f6f1f68f933e7695f82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ee:50:5d:53:90:8b:45:4d:05:aa:b9:46:9a:
7d:d6:39:5e:45:41:33:a3:35:14:12:cd:66:23:04:
3d:10:ee:42:9f:f2:af:e4:31:17:f8:4d:70:2a:83:
c9:07:6d:25:a8:ac:20:a2:9a:28:70:92:47:85:75:
37:7c:ef:3e:05:6c:cc:46:1f:f7:60:ed:81:13:7d:
91:50:0c:a6:bd:18:de:59:aa:78:6f:2d:51:0f:b9:
f0:0e:da:6f:4c:9d:09:77:5e:8b:b6:a5:32:05:b6:
5f:6d:08:39:d0:48:33:e8:5a:fc:6e:a2:69:3a:9e:
5c:71:0c:2a:7a:bc:3b:6e:0b:21:a2:6a:99:d6:a7:
ee:79:8e:ae:d1:47:d1:1d:c5:34:9c:45:e2:f8:51:
17:2e:68:27:c6:7e:7f:c4:3e:51:d9:25:9b:51:bf:
8d:e7:86:6e:fb:5a:f6:f8:44:62:dc:93:92:33:d3:
6e:d5:00:53:f7:c1:be:b5:66:c8:f8:6a:b9:52:75:
b7:f9:8a:09:46:3d:b5:ca:f6:0e:96:d5:ea:00:60:
fc:ea:6b:dc:18:82:7f:72:32:fd:08:2a:f5:48:eb:
3e:15:ef:de:14:a4:1a:b3:e0:56:c9:ec:a9:59:5d:
da:b9:f9:27:7d:6e:03:9c:20:bc:40:96:65:af:af:
d9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:34:32:78:87:55:F5:F8:B7:58:F6:F1:F6:8F:93:3E:76:95:F8:2B
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/ATQyeIdV9fi3WPbx9o-TPnaV-Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.176.0/21
78.111.32.0/20
84.242.32.0/20
94.176.16.0/20
96.9.128.0/19
141.105.168.0/21
178.20.16.0/21
185.29.140.0/22
185.112.104.0/22
199.48.224.0/24
206.167.33.0/24
IPv6:
2a0a:c740:2::/48
2a0a:c740:4::/47
2a0a:c740:7::-2a0a:c740:8:ffff:ffff:ffff:ffff:ffff
2a0a:c740:a::/47
2a0a:c740:100::/48
2a0a:c740:1009::/48
2a0a:c740:1063::/48
2a0a:c740:2000::/48
2a0a:c740:2009::/48
2a0a:c740:9998::/48
2a0a:c740:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
0f:91:6c:fa:db:c7:a2:fd:00:5c:ab:ff:6f:4f:3f:87:22:be:
1d:4c:c2:0f:ee:51:c2:85:4c:4b:e1:c4:3a:0e:bb:bf:95:23:
ed:69:39:c6:d9:cf:79:44:07:50:ce:94:cd:5f:50:ea:fb:e4:
cc:b7:a2:ba:7a:da:3c:22:c0:18:09:b8:ca:ba:49:f6:21:5c:
6c:2d:c7:c1:7c:b6:31:33:9a:db:a7:35:e5:f7:11:dc:3e:7b:
cb:b7:d4:02:d1:d7:bf:7c:58:a2:ad:79:2a:c6:88:4e:c4:e2:
8d:82:88:89:4a:fc:b8:a1:99:d2:e1:a5:b6:b1:97:89:98:22:
5c:b8:74:bf:6a:6d:99:86:2d:91:09:41:5d:37:f1:88:a5:38:
7c:5f:d3:de:22:91:76:c4:12:3c:70:8d:ff:f5:45:70:ec:fc:
88:7e:e6:71:d9:b4:96:3d:c4:72:01:46:80:6c:9d:d8:49:0d:
4b:ee:f2:5b:5d:0f:20:c5:6a:d3:91:01:72:2c:08:4f:05:6e:
94:e3:ec:ab:68:77:fe:f6:18:6a:18:ec:db:c1:9f:31:2d:9e:
3a:14:7f:72:3d:e3:70:08:f7:99:2c:fe:6e:66:3d:fe:53:eb:
d4:6f:0a:81:a8:4c:43:8e:db:33:dc:4b:5f:b8:0c:35:47:32:
3e:63:59:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:15:38 2025 by rpki-client