Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/eA8UoDwbxwCMIcIoTT_iH0YvmjM.roa
File: eA8UoDwbxwCMIcIoTT_iH0YvmjM.roa (raw, json)
Hash identifier: HxTrpLgbVmhVC/6Q+vCe8lPm961RPCDLoP9PL41CR7s=
Subject key identifier: 78:0F:14:A0:3C:1B:C7:00:8C:21:C2:28:4D:3F:E2:1F:46:2F:9A:33
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0198B8B3BED9E338B896E6FB735613751E4D
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/eA8UoDwbxwCMIcIoTT_iH0YvmjM.roa
Signing time: Sun 17 Aug 2025 15:44:04 +0000
ROA not before: Sun 17 Aug 2025 15:44:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34837
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
212.16.64.0/19 maxlen: 19
212.16.64.0/24 maxlen: 24
212.16.65.0/24 maxlen: 24
212.16.66.0/24 maxlen: 24
212.16.67.0/24 maxlen: 24
212.16.68.0/24 maxlen: 24
212.16.75.0/24 maxlen: 24
212.16.76.0/24 maxlen: 24
212.16.82.0/24 maxlen: 24
212.16.83.0/24 maxlen: 24
212.16.88.0/24 maxlen: 24
212.16.90.0/24 maxlen: 24
212.16.91.0/24 maxlen: 24
212.80.0.0/19 maxlen: 19
212.80.1.0/24 maxlen: 24
212.80.3.0/24 maxlen: 24
212.80.5.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
212.80.16.0/24 maxlen: 24
212.80.28.0/24 maxlen: 24
212.80.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:b8:b3:be:d9:e3:38:b8:96:e6:fb:73:56:13:75:1e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Aug 17 15:44:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=780f14a03c1bc7008c21c2284d3fe21f462f9a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:76:15:8c:78:0f:6e:f8:a1:f4:a9:75:53:c8:
28:e0:3d:c3:63:a5:b2:d0:73:e8:05:a6:c6:2b:47:
39:92:78:63:c8:da:47:c4:ca:8e:1c:c8:48:1a:62:
ce:7a:d9:15:15:9f:5a:87:0f:3a:dd:b3:62:f2:01:
9f:4f:8f:31:5f:8f:8d:bf:1c:a1:e7:ee:fd:11:85:
a8:43:14:c8:aa:ab:9e:78:6f:20:42:88:1c:65:82:
21:a0:35:00:6d:31:b3:9a:ec:fb:e7:72:7a:fe:82:
86:32:b9:af:f2:9c:8b:3a:16:8c:8d:8d:bb:82:0d:
06:8a:0e:db:8a:9b:99:dd:f1:33:25:d9:e8:b3:22:
37:dd:f1:ac:93:3b:59:de:49:b3:80:e0:48:d8:ba:
90:71:03:63:59:b6:92:5e:7b:4c:ba:ca:66:1d:d1:
5b:8b:24:82:b2:8d:01:c2:4f:a0:a5:99:61:9e:35:
e8:c3:77:9b:6c:b8:bf:af:80:d9:c5:98:9a:03:18:
2a:d3:18:6b:be:65:06:ad:a8:f8:f0:93:c5:87:7d:
06:09:05:8d:87:b8:21:fe:38:1b:c2:5d:29:f7:5c:
84:86:de:d2:1b:c0:9c:8f:2f:e9:26:3a:d5:fc:2e:
49:b9:b0:74:fb:a8:5c:25:c8:e2:cd:84:62:be:a0:
7a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0F:14:A0:3C:1B:C7:00:8C:21:C2:28:4D:3F:E2:1F:46:2F:9A:33
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/eA8UoDwbxwCMIcIoTT_iH0YvmjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
212.16.64.0/19
212.80.0.0/19
Signature Algorithm: sha256WithRSAEncryption
36:f1:32:e6:d8:09:55:c0:6c:02:29:f8:3f:85:01:6f:59:b4:
37:f7:1d:28:0a:2a:38:2e:9b:cd:3a:f4:df:a9:cf:0b:1a:e3:
42:32:30:1e:fc:4b:55:23:cc:ca:77:62:eb:0d:e7:5c:50:09:
46:41:90:d2:77:1b:8f:63:8c:71:5b:81:df:96:d5:24:3a:1d:
b0:6e:c6:03:f9:a6:d4:79:87:9e:21:78:94:2a:13:6a:60:dd:
bf:de:a8:99:4b:43:05:37:08:7b:16:ae:b6:95:43:eb:4e:d5:
55:6e:65:a6:75:55:2d:4a:78:17:4b:40:5b:b0:51:50:50:6b:
9f:50:cd:c7:45:4f:f8:22:52:2a:88:02:47:14:12:7d:e3:bc:
5a:9e:d8:84:fd:87:08:38:a9:53:50:c1:44:8e:da:5e:44:46:
cd:7d:c7:55:dd:18:00:2f:1c:78:c1:e9:9f:8d:78:23:16:f4:
ff:97:36:4b:86:3a:32:49:a1:00:14:b6:8e:fd:12:77:07:52:
cf:24:92:71:0a:14:8d:62:0f:30:48:f9:53:00:0a:64:32:4a:
7f:2e:34:98:5f:75:8f:b0:1b:35:34:69:ba:b3:e0:84:27:75:
29:3e:6a:00:8d:23:ee:86:3c:2b:81:56:69:f8:7c:5b:64:34:
5a:88:6e:bd
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZi4s77Z4zi4lub7c1YTdR5NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjUwODE3MTU0NDA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODBmMTRhMDNjMWJjNzAwOGMyMWMyMjg0ZDNmZTIxZjQ2MmY5YTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHYVjHgPbvih9Kl1U8go4D3DY6Wy
0HPoBabGK0c5knhjyNpHxMqOHMhIGmLOetkVFZ9ahw863bNi8gGfT48xX4+Nvxyh
5+79EYWoQxTIqqueeG8gQogcZYIhoDUAbTGzmuz753J6/oKGMrmv8pyLOhaMjY27
gg0Gig7bipuZ3fEzJdnosyI33fGskztZ3kmzgOBI2LqQcQNjWbaSXntMuspmHdFb
iySCso0Bwk+gpZlhnjXow3ebbLi/r4DZxZiaAxgq0xhrvmUGraj48JPFh30GCQWN
h7gh/jgbwl0p91yEht7SG8Ccjy/pJjrV/C5JubB0+6hcJcjizYRivqB6XQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFHgPFKA8G8cAjCHCKE0/4h9GL5ozMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvZUE4VW9Ed2J4d0NNSWNJb1RUX2lIMFl2bWpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALiaBAwQA
LiaDAwQF1BBAAwQF1FAAMA0GCSqGSIb3DQEBCwUAA4IBAQA28TLm2AlVwGwCKfg/
hQFvWbQ39x0oCio4LpvNOvTfqc8LGuNCMjAe/EtVI8zKd2LrDedcUAlGQZDSdxuP
Y4xxW4HfltUkOh2wbsYD+abUeYeeIXiUKhNqYN2/3qiZS0MFNwh7Fq62lUPrTtVV
bmWmdVUtSngXS0BbsFFQUGufUM3HRU/4IlIqiAJHFBJ947xantiE/YcIOKlTUMFE
jtpeREbNfcdV3RgALxx4wemfjXgjFvT/lzZLhjoySaEAFLaO/RJ3B1LPJJJxChSN
Yg8wSPlTAApkMkp/LjSYX3WPsBs1NGm6s+CEJ3UpPmoAjSPuhjwrgVZp+HxbZDRa
iG69
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:54:31 2025 by rpki-client