Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sfiiRUAjRfERzQzOjrmgcvA1cxs.roa
File: sfiiRUAjRfERzQzOjrmgcvA1cxs.roa (raw, json)
Hash identifier: TshRmkkazw7tlKnVOHwzooNI7hK6rsPouvDraJCoRiE=
Subject key identifier: B1:F8:A2:45:40:23:45:F1:11:CD:0C:CE:8E:B9:A0:72:F0:35:73:1B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 019961B6098FA155E66F2B3F9FAE577C04BA
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sfiiRUAjRfERzQzOjrmgcvA1cxs.roa
Signing time: Fri 19 Sep 2025 11:22:23 +0000
ROA not before: Fri 19 Sep 2025 11:22:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52116
IP address blocks: 77.105.11.0/24 maxlen: 24
77.105.31.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.55.0/24 maxlen: 24
81.18.61.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
109.121.60.0/24 maxlen: 24
178.253.207.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
185.47.88.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
188.255.130.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
188.255.208.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.226.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
188.255.246.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
212.69.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:b6:09:8f:a1:55:e6:6f:2b:3f:9f:ae:57:7c:04:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Sep 19 11:22:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b1f8a245402345f111cd0cce8eb9a072f035731b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:87:d8:a5:1e:37:89:4c:76:0a:9c:64:18:bd:
40:2c:b4:47:5c:9f:fc:c4:3e:9b:17:12:13:c2:97:
ef:99:35:91:4d:71:7a:9f:9f:a2:4e:cc:75:3a:65:
70:7a:66:60:b5:5d:94:ff:19:bf:f9:76:f7:39:d3:
d1:a6:ca:0f:6c:76:6f:0c:35:79:be:60:5c:79:6d:
5c:e3:94:0f:02:ad:61:d9:86:0a:4b:cf:bc:b1:f9:
44:37:49:51:22:b6:33:90:a2:d0:76:cb:ae:46:39:
04:a4:21:3f:d3:e7:43:4a:c4:96:74:60:f3:c5:7a:
08:a3:65:c9:01:b3:f3:4b:64:1b:10:12:77:04:8f:
1f:79:f5:e6:a0:bc:11:a7:31:1b:f9:48:3b:7d:5e:
15:2d:f1:72:f9:d8:76:b2:63:df:a3:16:d9:8a:e7:
e6:32:35:40:b7:58:28:37:37:cf:6d:7c:db:53:f7:
a2:c8:32:69:02:1a:72:27:0d:c4:8a:9e:74:9f:09:
a7:28:fa:34:c9:b5:a5:31:3a:95:7c:33:bb:4d:18:
2e:af:d8:e6:4d:c1:cd:73:94:99:28:de:cd:47:1a:
f4:6f:6d:c5:14:41:fc:cd:8a:7a:cf:21:b3:66:16:
b4:fa:74:1d:64:4c:02:78:4d:b2:a6:df:62:f8:c2:
63:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F8:A2:45:40:23:45:F1:11:CD:0C:CE:8E:B9:A0:72:F0:35:73:1B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sfiiRUAjRfERzQzOjrmgcvA1cxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.11.0/24
77.105.31.0/24
79.175.116.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
109.121.60.0/24
178.253.207.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0/24
185.47.90.0/24
188.255.130.0/24
188.255.190.0/24
188.255.208.0/24
188.255.213.0/24
188.255.219.0/24
188.255.226.0/24
188.255.244.0-188.255.246.255
188.255.252.0/24
188.255.254.0/23
212.69.7.0/24
212.69.12.0/24
212.69.18.0/24
Signature Algorithm: sha256WithRSAEncryption
40:fd:03:a4:cc:0e:91:85:7a:49:c0:39:64:47:17:67:70:08:
b7:32:52:fd:07:50:5c:eb:54:3a:a1:e2:2c:45:33:8f:73:72:
df:c2:1b:e5:62:d5:f4:3b:bf:74:42:da:d9:e0:cc:09:5d:83:
51:78:83:e9:7a:f5:e8:41:fc:78:28:70:72:99:00:6e:f3:df:
91:40:89:f1:a2:38:16:37:a2:86:0e:c4:9d:ec:b9:b9:77:52:
4c:6e:9f:81:75:b6:6f:32:fc:46:4f:d9:cf:ce:a2:dc:d0:1a:
04:48:1e:76:e5:73:0e:40:91:bc:6b:e5:a6:62:23:fc:cb:bc:
1d:14:7c:76:6b:44:74:17:6e:a7:4a:7a:ca:71:f7:bf:e1:4f:
8b:b1:f2:a1:47:80:ac:37:69:70:6a:29:45:26:96:40:c3:4b:
97:b3:56:c5:9d:ba:a7:10:c7:36:30:25:f4:7b:f2:8e:24:51:
b0:dc:a3:cb:ad:c7:89:a0:bf:69:e0:1b:9a:c7:f4:70:c4:7a:
0c:f0:8b:d1:14:27:a0:55:ab:a8:5d:d7:a0:7f:a4:51:f7:a8:
e9:75:f3:18:cb:84:ab:01:3a:46:cc:fc:be:4c:29:8d:c8:b9:
9d:fb:43:e5:81:e4:af:d0:0a:95:c9:c7:b8:6c:d5:e5:25:f1:
59:f8:de:70
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:46:46 2025 by rpki-client