Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/IupbAUvWFKzjp7DgnpEHurpJ4IM.roa
File: IupbAUvWFKzjp7DgnpEHurpJ4IM.roa (raw, json)
Hash identifier: qI0fsTuD1573PipAMcJCJokIjFMLmsA5IiGTyxuQTyk=
Subject key identifier: 22:EA:5B:01:4B:D6:14:AC:E3:A7:B0:E0:9E:91:07:BA:BA:49:E0:83
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 0198CD10C2BA2C46EBACAB168A6DCD615F91
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/IupbAUvWFKzjp7DgnpEHurpJ4IM.roa
Signing time: Thu 21 Aug 2025 14:38:04 +0000
ROA not before: Thu 21 Aug 2025 14:38:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/23 maxlen: 23
5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
37.10.1.0/24 maxlen: 24
37.10.3.0/24 maxlen: 24
37.10.10.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.24.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/22 maxlen: 22
37.10.44.0/23 maxlen: 23
37.10.44.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5041::/32 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5041:2::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:4::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:2002::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:200c::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:4eff::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:5002::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:7001::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea20::/48 maxlen: 48
2a01:5042::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:3::/48 maxlen: 48
2a01:5042:7::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2000::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:2003::/48 maxlen: 48
2a01:5042:2007::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:3::/48 maxlen: 48
2a01:5043:7::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5043:2003::/48 maxlen: 48
2a01:5043:2007::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cd:10:c2:ba:2c:46:eb:ac:ab:16:8a:6d:cd:61:5f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Aug 21 14:38:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22ea5b014bd614ace3a7b0e09e9107baba49e083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3b:64:cb:e3:5c:a6:29:94:0f:a9:b3:44:f9:
14:52:d8:ab:aa:e0:5b:18:79:55:67:3f:0e:93:ad:
2d:8e:2e:ac:5e:24:40:e5:02:c1:5f:ef:ed:5e:48:
6b:d6:16:53:fb:d1:67:55:b5:ef:9c:b0:4a:ba:b5:
61:be:c6:ac:2f:15:66:a4:2d:50:db:de:05:2a:b7:
c8:48:55:5b:57:f2:4b:d7:36:28:47:8f:92:f2:e9:
63:3c:b4:ba:f8:c7:ce:90:ac:91:56:7c:ff:0c:4c:
1b:e0:18:c1:2f:3c:66:1a:af:d0:f0:23:50:7a:1c:
69:a3:ff:20:be:e7:b5:24:5c:7d:7d:2f:0c:56:0c:
0a:6e:19:bc:51:50:d3:65:ac:8b:68:a7:60:bc:b0:
2f:d1:b2:a5:b0:fc:d4:93:06:de:2a:b0:6a:28:aa:
dd:2e:27:f5:f0:bc:8d:4b:59:56:b9:d9:8f:c1:0f:
76:08:f8:41:c0:ac:ed:c7:a6:ae:a3:ad:8e:37:10:
8a:75:20:da:6e:b3:ad:16:37:02:a2:7c:d7:91:67:
41:95:82:99:0e:cf:3f:66:fa:a4:94:22:e1:f1:05:
d3:ff:f9:25:57:66:43:61:58:ec:ae:dc:2c:34:ab:
04:88:23:4c:14:d7:b0:80:1a:03:ed:2c:f1:41:2c:
3e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EA:5B:01:4B:D6:14:AC:E3:A7:B0:E0:9E:91:07:BA:BA:49:E0:83
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/IupbAUvWFKzjp7DgnpEHurpJ4IM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.3.0/24
37.10.10.0/24
37.10.24.0/21
37.10.40.0/21
91.195.236.0/24
IPv6:
2a01:5041::-2a01:5042:1:ffff:ffff:ffff:ffff:ffff
2a01:5042:3::/48
2a01:5042:7::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2000::/47
2a01:5042:2003::/48
2a01:5042:2007::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:3::/48
2a01:5043:7::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2003::/48
2a01:5043:2007::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
cd:2f:94:0b:94:ec:79:82:8d:7a:16:aa:b0:c9:df:11:45:0d:
1b:54:93:84:4b:bf:ae:06:49:fd:d4:be:a8:0d:64:a1:65:4d:
4f:e9:d9:16:59:1a:0f:3d:97:9f:8f:67:65:ca:33:44:30:5b:
a5:b5:7f:a1:77:e0:61:f1:83:28:45:8f:19:b1:53:5a:3b:e2:
16:18:b1:b3:3c:95:11:56:86:36:cd:7a:a9:e3:38:41:d9:04:
d2:30:5e:77:8f:6d:b9:83:6e:bc:8b:2f:72:31:91:c8:42:9a:
3c:bc:79:cb:c7:94:65:08:9c:64:7c:2f:49:c9:1a:04:7a:62:
ba:29:6d:a9:01:fc:ce:97:3a:7f:03:d4:bb:e2:51:4f:47:14:
3b:1d:27:88:1e:a8:30:24:13:94:63:db:07:4e:ca:d6:3f:91:
0d:13:a4:59:8e:7d:e5:bf:68:5b:8d:13:71:0c:65:c7:ac:88:
29:5e:37:b7:9d:a2:06:be:2d:db:06:eb:68:d0:01:f7:c3:98:
a4:fd:d5:ff:33:e9:ad:ee:5d:12:eb:a1:3f:1c:7c:15:ed:7e:
25:db:3f:9b:1d:d4:fc:85:36:ca:cf:29:4e:2f:fa:1e:a1:17:
7d:b3:47:60:3b:61:24:6b:03:88:60:a5:4f:a0:ec:44:4f:11:
a0:df:be:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:03:57 2025 by rpki-client