Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/PstjevQSMTfK9Nebc81zBIABSOY.roa
File: PstjevQSMTfK9Nebc81zBIABSOY.roa (raw, json)
Hash identifier: yBGg5RaTCzg2szqA7T42K/slhIoFVty00QDcExnxviw=
Subject key identifier: 3E:CB:63:7A:F4:12:31:37:CA:F4:D7:9B:73:CD:73:04:80:01:48:E6
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 01989C695256F457154B76B47027CCE9ED06
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/PstjevQSMTfK9Nebc81zBIABSOY.roa
Signing time: Tue 12 Aug 2025 03:53:24 +0000
ROA not before: Tue 12 Aug 2025 03:53:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41704
IP address blocks: 46.191.184.0/21 maxlen: 21
46.191.184.0/23 maxlen: 23
46.191.184.0/24 maxlen: 24
46.191.185.0/24 maxlen: 24
46.191.186.0/23 maxlen: 23
46.191.186.0/24 maxlen: 24
46.191.187.0/24 maxlen: 24
46.191.188.0/23 maxlen: 23
46.191.188.0/24 maxlen: 24
46.191.189.0/24 maxlen: 24
46.191.190.0/23 maxlen: 23
46.191.190.0/24 maxlen: 24
46.191.191.0/24 maxlen: 24
46.191.240.0/20 maxlen: 20
46.191.240.0/22 maxlen: 22
46.191.244.0/22 maxlen: 22
46.191.248.0/22 maxlen: 22
46.191.248.0/24 maxlen: 24
46.191.249.0/24 maxlen: 24
46.191.250.0/24 maxlen: 24
46.191.251.0/24 maxlen: 24
46.191.252.0/22 maxlen: 22
79.140.16.0/20 maxlen: 20
79.140.16.0/22 maxlen: 22
79.140.16.0/24 maxlen: 24
79.140.17.0/24 maxlen: 24
79.140.18.0/24 maxlen: 24
79.140.19.0/24 maxlen: 24
79.140.20.0/22 maxlen: 22
79.140.20.0/23 maxlen: 23
79.140.20.0/24 maxlen: 24
79.140.21.0/24 maxlen: 24
79.140.22.0/24 maxlen: 24
79.140.23.0/24 maxlen: 24
79.140.24.0/22 maxlen: 22
79.140.24.0/24 maxlen: 24
79.140.25.0/24 maxlen: 24
79.140.26.0/24 maxlen: 24
79.140.27.0/24 maxlen: 24
79.140.28.0/22 maxlen: 22
79.140.28.0/24 maxlen: 24
79.140.29.0/24 maxlen: 24
79.140.30.0/24 maxlen: 24
79.140.31.0/24 maxlen: 24
84.39.248.0/22 maxlen: 22
84.39.248.0/24 maxlen: 24
84.39.249.0/24 maxlen: 24
84.39.250.0/24 maxlen: 24
84.39.251.0/24 maxlen: 24
84.39.252.0/22 maxlen: 22
84.39.252.0/24 maxlen: 24
84.39.253.0/24 maxlen: 24
84.39.254.0/24 maxlen: 24
84.39.255.0/24 maxlen: 24
94.41.128.0/20 maxlen: 20
94.41.128.0/22 maxlen: 22
94.41.128.0/24 maxlen: 24
94.41.132.0/22 maxlen: 22
94.41.136.0/22 maxlen: 22
94.41.140.0/22 maxlen: 22
94.41.140.0/24 maxlen: 24
94.41.141.0/24 maxlen: 24
94.41.160.0/19 maxlen: 19
94.41.160.0/21 maxlen: 21
94.41.160.0/22 maxlen: 22
94.41.164.0/22 maxlen: 22
94.41.168.0/22 maxlen: 22
94.41.171.0/24 maxlen: 24
94.41.172.0/22 maxlen: 22
94.41.172.0/24 maxlen: 24
94.41.173.0/24 maxlen: 24
94.41.174.0/24 maxlen: 24
94.41.175.0/24 maxlen: 24
94.41.176.0/22 maxlen: 22
94.41.176.0/24 maxlen: 24
94.41.180.0/22 maxlen: 22
94.41.184.0/22 maxlen: 22
94.41.188.0/22 maxlen: 22
95.105.96.0/19 maxlen: 19
95.105.96.0/22 maxlen: 22
95.105.100.0/22 maxlen: 22
95.105.100.0/23 maxlen: 23
95.105.102.0/23 maxlen: 23
95.105.102.0/24 maxlen: 24
95.105.104.0/22 maxlen: 22
95.105.104.0/24 maxlen: 24
95.105.105.0/24 maxlen: 24
95.105.106.0/23 maxlen: 23
95.105.108.0/22 maxlen: 22
95.105.112.0/22 maxlen: 22
95.105.112.0/24 maxlen: 24
95.105.113.0/24 maxlen: 24
95.105.114.0/24 maxlen: 24
95.105.115.0/24 maxlen: 24
95.105.116.0/22 maxlen: 22
95.105.116.0/24 maxlen: 24
95.105.117.0/24 maxlen: 24
95.105.118.0/24 maxlen: 24
95.105.119.0/24 maxlen: 24
95.105.120.0/22 maxlen: 22
95.105.120.0/24 maxlen: 24
95.105.124.0/22 maxlen: 22
95.105.124.0/24 maxlen: 24
95.105.125.0/24 maxlen: 24
95.105.126.0/24 maxlen: 24
95.105.127.0/24 maxlen: 24
136.169.240.0/20 maxlen: 20
136.169.240.0/22 maxlen: 22
136.169.240.0/24 maxlen: 24
136.169.241.0/24 maxlen: 24
136.169.242.0/24 maxlen: 24
136.169.243.0/24 maxlen: 24
136.169.244.0/22 maxlen: 22
136.169.248.0/22 maxlen: 22
136.169.252.0/22 maxlen: 22
136.169.252.0/24 maxlen: 24
136.169.253.0/24 maxlen: 24
136.169.254.0/24 maxlen: 24
136.169.255.0/24 maxlen: 24
145.255.16.0/21 maxlen: 21
145.255.16.0/22 maxlen: 22
145.255.18.0/24 maxlen: 24
145.255.19.0/24 maxlen: 24
145.255.20.0/22 maxlen: 22
145.255.20.0/24 maxlen: 24
145.255.21.0/24 maxlen: 24
145.255.22.0/24 maxlen: 24
145.255.23.0/24 maxlen: 24
2a02:1c8:7::/48 maxlen: 48
2a02:1c8:700::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9c:69:52:56:f4:57:15:4b:76:b4:70:27:cc:e9:ed:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Aug 12 03:53:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3ecb637af4123137caf4d79b73cd7304800148e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:35:51:d6:03:9b:07:bd:28:1c:49:11:e1:a8:
0b:ef:df:64:a4:30:05:4e:39:33:02:94:82:22:62:
d8:16:c4:98:38:6f:ea:c2:65:4d:08:d0:e6:c9:db:
ce:93:26:57:c0:81:f4:d5:8d:be:d8:87:11:11:a3:
56:bc:64:c0:a7:b6:45:53:78:67:d0:88:3c:f6:19:
60:77:ff:60:3b:86:be:02:ae:e3:7f:fd:dc:39:b7:
91:12:b2:a5:2b:1f:2b:cf:73:85:88:50:b0:4c:01:
18:d9:b1:df:1d:50:cb:c0:a4:2e:1e:bb:0c:d2:ac:
69:3a:69:d1:3b:5a:fd:81:34:6c:a8:65:49:3a:33:
a8:61:7b:fb:c3:ba:50:3a:93:74:fe:39:5d:2d:a0:
60:4d:13:0f:01:2e:61:81:0b:f8:62:51:65:52:c4:
1d:90:f6:98:cb:53:c3:0a:04:cf:7b:14:ee:11:79:
2d:6d:01:80:6f:b4:2a:21:a0:3e:40:1b:d9:d0:c4:
46:cb:8b:ab:8f:3e:66:44:d0:96:c9:44:57:6b:25:
8a:d4:ed:bc:80:8c:3a:5c:94:16:81:81:0d:bd:4a:
c4:ee:d7:5b:db:68:18:c4:c5:94:bf:1d:3a:aa:14:
6b:b1:cf:05:13:54:df:f8:5f:f1:9f:d2:80:a4:f4:
1f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CB:63:7A:F4:12:31:37:CA:F4:D7:9B:73:CD:73:04:80:01:48:E6
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/PstjevQSMTfK9Nebc81zBIABSOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.191.184.0/21
46.191.240.0/20
79.140.16.0/20
84.39.248.0/21
94.41.128.0/20
94.41.160.0/19
95.105.96.0/19
136.169.240.0/20
145.255.16.0/21
IPv6:
2a02:1c8:7::/48
2a02:1c8:700::/40
Signature Algorithm: sha256WithRSAEncryption
0b:c5:d9:74:4f:03:73:a2:e8:ce:e4:72:a3:db:10:f1:c4:8c:
9d:de:65:03:63:08:85:e3:a5:e2:9c:4e:5c:01:7a:b3:f7:ef:
6e:b3:da:d7:84:3e:93:bc:5c:c0:a4:03:89:73:bd:29:11:fc:
c1:77:0f:b2:f6:0f:31:5c:88:9a:f1:67:0b:13:ca:2f:0b:9a:
70:45:f9:8b:11:08:23:f1:94:9b:37:4c:f1:52:a7:17:3f:83:
a2:ff:d1:bb:e0:74:37:27:b0:96:7c:68:5f:e7:d0:0c:e2:ff:
fb:94:f6:01:75:c0:6d:7b:32:4b:8c:c1:6f:f4:62:3b:9a:63:
28:3b:c1:96:0c:e5:95:31:c8:e9:4e:00:92:39:14:f3:41:5f:
64:82:78:74:52:e8:6f:6f:aa:3c:4f:89:fc:49:fc:3c:fb:f7:
12:76:5f:08:e7:85:7c:d3:14:05:04:9f:72:fc:7f:fa:f1:5a:
e4:91:0f:c1:dd:ad:0e:2f:47:b1:a6:60:d7:93:32:02:eb:8e:
e1:06:3c:1a:26:a7:16:82:bd:c1:d3:74:08:54:93:42:49:4f:
89:08:5e:ca:58:d1:8c:95:fc:01:83:ae:af:df:11:80:c4:d7:
a2:73:b8:99:eb:ad:8a:db:5d:f9:73:4a:8f:a7:9a:00:f3:84:
08:fb:61:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:05:33 2025 by rpki-client