Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/R0a-1MJ3V-DwGHOJgEyqX4zgpTM.roa
File: R0a-1MJ3V-DwGHOJgEyqX4zgpTM.roa (raw, json)
Hash identifier: sIgjqzEJWw5l5Srq/ZmHoIQ0BKHcBFp81tJzMYUnZBU=
Subject key identifier: 47:46:BE:D4:C2:77:57:E0:F0:18:73:89:80:4C:AA:5F:8C:E0:A5:33
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0198892560E8C9FBC6313D439425F9A8DAE0
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/R0a-1MJ3V-DwGHOJgEyqX4zgpTM.roa
Signing time: Fri 08 Aug 2025 10:06:24 +0000
ROA not before: Fri 08 Aug 2025 10:06:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47690
IP address blocks: 45.43.148.0/24 maxlen: 24
45.43.149.0/24 maxlen: 24
45.43.150.0/24 maxlen: 24
45.43.151.0/24 maxlen: 24
45.43.154.0/24 maxlen: 24
45.43.158.0/24 maxlen: 24
45.43.161.0/24 maxlen: 24
104.222.176.0/24 maxlen: 24
104.222.178.0/24 maxlen: 24
104.222.179.0/24 maxlen: 24
104.222.180.0/24 maxlen: 24
104.222.181.0/24 maxlen: 24
104.222.182.0/24 maxlen: 24
104.222.183.0/24 maxlen: 24
104.222.189.0/24 maxlen: 24
104.233.8.0/24 maxlen: 24
104.233.9.0/24 maxlen: 24
104.233.59.0/24 maxlen: 24
104.238.6.0/24 maxlen: 24
104.238.11.0/24 maxlen: 24
104.238.12.0/24 maxlen: 24
104.238.13.0/24 maxlen: 24
104.239.8.0/24 maxlen: 24
104.239.12.0/24 maxlen: 24
104.239.14.0/24 maxlen: 24
104.239.29.0/24 maxlen: 24
104.239.55.0/24 maxlen: 24
104.239.56.0/24 maxlen: 24
104.239.58.0/24 maxlen: 24
104.239.59.0/24 maxlen: 24
104.239.60.0/24 maxlen: 24
104.239.61.0/24 maxlen: 24
104.239.62.0/24 maxlen: 24
104.239.63.0/24 maxlen: 24
104.249.8.0/24 maxlen: 24
104.249.9.0/24 maxlen: 24
104.249.10.0/24 maxlen: 24
104.249.11.0/24 maxlen: 24
104.249.12.0/24 maxlen: 24
104.249.13.0/24 maxlen: 24
104.249.14.0/24 maxlen: 24
104.249.15.0/24 maxlen: 24
104.249.17.0/24 maxlen: 24
104.249.19.0/24 maxlen: 24
104.249.20.0/24 maxlen: 24
104.249.22.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
104.249.42.0/24 maxlen: 24
104.249.43.0/24 maxlen: 24
104.249.44.0/24 maxlen: 24
104.249.45.0/24 maxlen: 24
104.249.46.0/24 maxlen: 24
104.249.47.0/24 maxlen: 24
104.249.48.0/24 maxlen: 24
104.249.49.0/24 maxlen: 24
104.249.50.0/24 maxlen: 24
104.249.51.0/24 maxlen: 24
104.249.52.0/24 maxlen: 24
104.249.53.0/24 maxlen: 24
104.249.54.0/24 maxlen: 24
216.173.90.0/24 maxlen: 24
216.173.91.0/24 maxlen: 24
216.173.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:25:60:e8:c9:fb:c6:31:3d:43:94:25:f9:a8:da:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Aug 8 10:06:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4746bed4c27757e0f0187389804caa5f8ce0a533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:16:ba:d4:26:06:af:5c:c0:68:22:05:45:61:
8c:8b:6b:6e:ed:6f:ec:a4:c1:e7:9b:bb:1d:72:35:
11:f4:6c:54:88:43:2e:cf:23:ee:41:96:3a:88:75:
09:2a:f5:58:17:40:f2:b7:67:12:e1:df:80:6b:e0:
c7:a8:4c:a1:65:b7:88:38:6e:d2:8b:d5:fc:bd:55:
dc:fd:16:a5:95:2e:93:83:5d:6a:02:ff:00:02:ce:
19:01:5e:58:4d:7f:15:70:34:95:8e:2e:dd:13:b4:
d6:d3:59:58:ce:7c:e3:50:3a:bc:66:f3:aa:08:ac:
41:7d:41:fb:61:84:93:52:1f:cb:03:cf:a3:b3:5a:
da:cb:7e:1e:07:a2:6a:26:0b:46:a0:82:49:66:91:
4d:d0:aa:5a:47:a7:2d:50:45:e6:cb:06:c0:0a:be:
af:d9:bd:4b:f9:86:39:8d:2b:9f:a4:1a:5e:f2:31:
05:f8:1f:34:88:cc:f2:57:af:e8:ac:f5:8f:2d:a6:
e6:65:e8:88:5e:b1:83:85:a2:24:6d:af:de:5d:fb:
16:3f:40:a0:c1:88:2b:3d:d9:0a:8c:e0:c5:ca:03:
ae:91:03:90:af:f0:b6:b3:54:86:c3:f1:84:cf:51:
d0:1c:15:ff:f6:a0:ea:5f:7b:37:eb:91:31:b9:a2:
bf:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:46:BE:D4:C2:77:57:E0:F0:18:73:89:80:4C:AA:5F:8C:E0:A5:33
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/R0a-1MJ3V-DwGHOJgEyqX4zgpTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.148.0/22
45.43.154.0/24
45.43.158.0/24
45.43.161.0/24
104.222.176.0/24
104.222.178.0-104.222.183.255
104.222.189.0/24
104.233.8.0/23
104.233.59.0/24
104.238.6.0/24
104.238.11.0-104.238.13.255
104.239.8.0/24
104.239.12.0/24
104.239.14.0/24
104.239.29.0/24
104.239.55.0-104.239.56.255
104.239.58.0-104.239.63.255
104.249.8.0/21
104.249.17.0/24
104.249.19.0-104.249.20.255
104.249.22.0/23
104.249.42.0-104.249.54.255
216.173.90.0/23
216.173.93.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2a:81:8d:d1:f0:1f:b4:bd:ee:b9:7f:87:cb:92:5e:ac:fe:
96:39:ff:7b:91:04:c6:ca:a6:5f:8b:ba:82:54:27:59:07:f7:
71:b2:5e:d6:7b:a1:a7:1a:74:1f:8f:66:e8:0b:b8:55:a5:a0:
1a:35:3c:db:23:51:fa:80:10:87:43:75:03:b4:ef:82:14:89:
cf:1d:d3:4f:49:b6:c3:44:82:ef:bc:25:a6:ab:95:7f:33:b5:
ea:03:17:72:74:95:64:30:ba:31:5a:c0:20:f1:b3:13:50:db:
c5:6b:b1:fc:b4:1f:0e:21:0e:d0:77:11:07:dc:56:91:d6:c1:
88:bd:34:77:d6:65:0d:91:22:73:15:1b:f3:70:ec:0d:55:a0:
d7:cb:6c:d2:03:56:e4:7b:18:0d:cf:63:d5:07:67:ef:5d:3e:
eb:0f:32:39:e6:e3:4e:92:0d:65:43:dd:b9:a1:6e:8a:78:e6:
62:96:60:30:26:57:b9:d6:b1:78:c2:60:84:3a:73:0e:14:d9:
81:cf:37:58:0e:9e:04:6d:f9:74:2c:e4:50:bd:a1:6d:8f:0f:
fe:23:cd:e5:18:ca:be:80:fa:ba:b0:93:af:53:ba:04:a7:19:
3e:b9:cd:be:a2:83:fd:77:20:db:96:db:c1:0a:37:43:88:e9:
3e:7f:30:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:16 2025 by rpki-client