Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/lSVWT0vnWde53ZJnRkRtUAOgYzI.roa
File: lSVWT0vnWde53ZJnRkRtUAOgYzI.roa (raw, json)
Hash identifier: 4vpddIjkhrNsny6PNDuu90eXheVk6yuthDXnIN9HyQ8=
Subject key identifier: 95:25:56:4F:4B:E7:59:D7:B9:DD:92:67:46:44:6D:50:03:A0:63:32
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0199CE9B18B802CD7F7836CB174895EAEB7D
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/lSVWT0vnWde53ZJnRkRtUAOgYzI.roa
Signing time: Fri 10 Oct 2025 14:51:34 +0000
ROA not before: Fri 10 Oct 2025 14:51:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3356
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.0.0/17 maxlen: 17
195.203.128.0/17 maxlen: 17
195.203.152.0/23 maxlen: 23
195.203.156.0/22 maxlen: 22
217.27.0.0/23 maxlen: 23
217.27.2.0/23 maxlen: 23
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:7::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:127::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:197::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:227::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:247::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
2a03:5000:271::/48 maxlen: 48
2a03:5000:272::/48 maxlen: 48
2a03:5000:291::/48 maxlen: 48
2a03:5000:292::/48 maxlen: 48
2a03:5000:311::/48 maxlen: 48
2a03:5000:312::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.mft
rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ce:9b:18:b8:02:cd:7f:78:36:cb:17:48:95:ea:eb:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Oct 10 14:51:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9525564f4be759d7b9dd926746446d5003a06332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:02:55:56:2e:b5:7a:56:90:08:b9:c3:de:28:
b2:76:52:a8:51:af:17:a1:26:7e:63:82:0e:fd:97:
f9:b0:8d:69:e9:98:aa:2f:72:77:bd:33:a4:a5:d0:
5b:17:f9:0b:26:a5:cf:14:36:45:6a:c5:64:1e:8e:
8f:ff:d2:18:7d:8b:f9:82:32:1d:1d:73:7a:46:15:
c7:f4:9c:94:18:13:b8:eb:0d:ac:ea:13:fc:90:bf:
36:40:40:ee:52:8e:39:09:84:5f:0e:a5:e3:97:25:
6f:65:16:24:6f:41:f9:bf:00:32:a0:de:89:7b:06:
42:18:43:4e:39:c5:c2:91:a7:df:44:b9:82:4d:2b:
60:12:be:f0:61:d6:85:1f:41:a7:e4:b1:29:dc:a7:
75:ef:71:f5:12:1b:71:5e:23:b6:e8:51:08:3f:7c:
7b:55:b7:6a:af:6d:89:86:02:d4:23:4c:51:bd:e8:
7b:da:92:cd:4c:88:cf:46:b9:d4:69:ab:fc:fa:4c:
ec:27:9a:e7:fd:8b:95:5e:bf:99:07:95:b4:bb:de:
23:d6:d6:04:50:35:e4:c6:09:89:38:62:1e:44:3d:
62:55:5d:bf:93:07:67:83:1c:05:b6:63:50:97:ce:
9f:f0:e6:cf:b6:33:d9:0b:8c:79:77:8f:f1:8c:ce:
b0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:25:56:4F:4B:E7:59:D7:B9:DD:92:67:46:44:6D:50:03:A0:63:32
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/lSVWT0vnWde53ZJnRkRtUAOgYzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.0.0/16
217.27.0.0-217.27.4.255
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:7::/48
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:127::/48
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:197::/48
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:227::/48
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:247::/48
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
2a03:5000:271::-2a03:5000:272:ffff:ffff:ffff:ffff:ffff
2a03:5000:291::-2a03:5000:292:ffff:ffff:ffff:ffff:ffff
2a03:5000:311::-2a03:5000:312:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
af:6e:2c:98:6c:33:ab:9c:41:88:5f:0c:21:6c:d3:a8:8a:5a:
fd:fa:72:35:00:2b:63:e5:bc:b8:92:7b:d3:f2:17:a7:6c:3d:
7f:75:3c:61:29:29:da:52:50:0f:b8:dd:80:b3:d4:cd:3d:87:
e1:de:ea:ab:35:cd:43:a7:d1:13:5a:50:10:ca:66:d9:de:bb:
19:62:50:54:91:92:5f:a8:39:df:20:e7:52:83:b6:1e:d1:d2:
84:a8:3a:f8:ba:b2:dd:48:89:23:b3:5a:c7:78:39:86:7f:0b:
46:3c:7b:cc:0c:70:b6:a6:a5:99:47:f0:b8:7f:8f:f7:3d:56:
48:1d:25:a7:5e:0f:67:f1:f3:44:4f:64:2b:3d:61:b2:28:62:
9a:62:ab:2b:05:9a:28:47:e1:18:2f:5b:4e:5b:74:6b:60:93:
ec:62:56:b0:c3:1b:07:33:29:4a:ce:f6:37:3b:8a:57:74:62:
e7:f4:d6:5a:7e:fc:fb:85:29:74:79:09:06:86:a6:8a:6b:3b:
da:75:f7:dc:12:11:02:2a:b6:37:a4:c4:0c:36:c2:1e:eb:20:
0e:82:76:02:53:1c:13:5a:52:90:cb:5b:e9:e8:f9:d1:19:b8:
70:87:5d:c9:01:53:1a:8e:0f:a7:c2:6c:58:7d:fb:45:df:bc:
14:e9:06:70
-----BEGIN CERTIFICATE-----
MIIHnTCCBoWgAwIBAgISAZnOmxi4As1/eDbLF0iV6ut9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0Y2M2YjljMzdmYWEwZGEzYjQxMjAwN2MwYjEwYjJjNWJm
MmNmNGUwHhcNMjUxMDEwMTQ1MTM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTI1NTY0ZjRiZTc1OWQ3YjlkZDkyNjc0NjQ0NmQ1MDAzYTA2MzMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QJVVi61elaQCLnD3iiydlKoUa8X
oSZ+Y4IO/Zf5sI1p6ZiqL3J3vTOkpdBbF/kLJqXPFDZFasVkHo6P/9IYfYv5gjId
HXN6RhXH9JyUGBO46w2s6hP8kL82QEDuUo45CYRfDqXjlyVvZRYkb0H5vwAyoN6J
ewZCGENOOcXCkaffRLmCTStgEr7wYdaFH0Gn5LEp3Kd173H1EhtxXiO26FEIP3x7
Vbdqr22JhgLUI0xRveh72pLNTIjPRrnUaav8+kzsJ5rn/YuVXr+ZB5W0u94j1tYE
UDXkxgmJOGIeRD1iVV2/kwdngxwFtmNQl86f8ObPtjPZC4x5d4/xjM6woQIDAQAB
o4IEqTCCBKUwHQYDVR0OBBYEFJUlVk9L51nXud2SZ0ZEbVADoGMyMB8GA1UdIwQY
MBaAFCTMa5w3+qDaO0EgB8CxCyxb8s9OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk14cm5EZjZvTm83UVNBSHdMRUxMRnZ5ejA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8wZmY0NDktYWQ5OC00ODJkLWFjNzUt
ODY0MjM4YmMwNDliLzEvbFNWV1Qwdm5XZGU1M1pKblJrUnRVQU9nWXpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC8wZmY0NDktYWQ5OC00ODJkLWFjNzUtODY0MjM4YmMwNDli
LzEvSk14cm5EZjZvTm83UVNBSHdMRUxMRnZ5ejA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICvQYIKwYBBQUHAQcBAf8EggKsMIICqDApBAIAATAjAwMA
lfoDBADAbewDAwDDyzALAwMA2RsDBADZGwQDBAHZGwYwggJ5BAIAAjCCAnEwEgMH
ACoDUAAAAQMHACoDUAAAAgMHACoDUAAABzASAwcAKgNQAAARAwcAKgNQAAASMBID
BwUqA1AAACADBwAqA1AAACIwEgMHBCoDUAAAMAMHACoDUAAAMjASAwcAKgNQAABB
AwcAKgNQAABCMBIDBwAqA1AAAFEDBwAqA1AAAFIwEgMHACoDUAAAYQMHACoDUAAA
YjASAwcAKgNQAABxAwcAKgNQAAByMBIDBwAqA1AAAIEDBwAqA1AAAIIwEgMHACoD
UAAAkQMHACoDUAAAkjASAwcAKgNQAAEBAwcAKgNQAAECMBIDBwAqA1AAAREDBwAq
A1AAARIwEgMHACoDUAABIQMHACoDUAABIgMHACoDUAABJzASAwcAKgNQAAExAwcA
KgNQAAEyMBIDBwAqA1AAAUEDBwAqA1AAAUIwEgMHACoDUAABUQMHACoDUAABUjAS
AwcAKgNQAAFhAwcAKgNQAAFiMBIDBwAqA1AAAXEDBwAqA1AAAXIwEgMHACoDUAAB
gQMHACoDUAABgjASAwcAKgNQAAGRAwcAKgNQAAGSAwcAKgNQAAGXMBIDBwAqA1AA
AgEDBwAqA1AAAgIwEgMHACoDUAACEQMHACoDUAACEjASAwcAKgNQAAIhAwcAKgNQ
AAIiAwcAKgNQAAInMBIDBwAqA1AAAjEDBwAqA1AAAjIwEgMHACoDUAACQQMHACoD
UAACQgMHACoDUAACRzASAwcAKgNQAAJRAwcAKgNQAAJSMBIDBwAqA1AAAnEDBwAq
A1AAAnIwEgMHACoDUAACkQMHACoDUAACkjASAwcAKgNQAAMRAwcAKgNQAAMSMA0G
CSqGSIb3DQEBCwUAA4IBAQCvbiyYbDOrnEGIXwwhbNOoilr9+nI1ACtj5by4knvT
8henbD1/dTxhKSnaUlAPuN2As9TNPYfh3uqrNc1Dp9ETWlAQymbZ3rsZYlBUkZJf
qDnfIOdSg7Ye0dKEqDr4urLdSIkjs1rHeDmGfwtGPHvMDHC2pqWZR/C4f4/3PVZI
HSWnXg9n8fNET2QrPWGyKGKaYqsrBZooR+EYL1tOW3RrYJPsYlawwxsHMylKzvY3
O4pXdGLn9NZafvz7hSl0eQkGhqaKazvadffcEhECKrY3pMQMNsIe6yAOgnYCUxwT
WlKQy1vp6PnRGbhwh13JAVMajg+nwmxYfftF37wU6QZw
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:46:06 2025 by rpki-client