Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/NnobAK-AQjxynUcUL3vLrM0FiC4.roa
File: NnobAK-AQjxynUcUL3vLrM0FiC4.roa (raw, json)
Hash identifier: 72fEZQ4En67bxos7W32TSgAMFViSGsQZkMGXVnxRijY=
Subject key identifier: 36:7A:1B:00:AF:80:42:3C:72:9D:47:14:2F:7B:CB:AC:CD:05:88:2E
Certificate issuer: /CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Certificate serial: 019216ED61C8D87E7D789BFA9F52410A19C0
Authority key identifier: 56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/NnobAK-AQjxynUcUL3vLrM0FiC4.roa
Signing time: Sat 21 Sep 2024 23:31:48 +0000
ROA not before: Sat 21 Sep 2024 23:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216071
IP address blocks: 77.238.224.0/24 maxlen: 24
77.238.225.0/24 maxlen: 24
77.238.226.0/24 maxlen: 24
77.238.227.0/24 maxlen: 24
77.238.228.0/24 maxlen: 24
77.238.229.0/24 maxlen: 24
77.238.230.0/24 maxlen: 24
77.238.231.0/24 maxlen: 24
77.238.232.0/24 maxlen: 24
77.238.233.0/24 maxlen: 24
77.238.234.0/24 maxlen: 24
77.238.235.0/24 maxlen: 24
77.238.236.0/24 maxlen: 24
77.238.237.0/24 maxlen: 24
77.238.238.0/24 maxlen: 24
77.238.239.0/24 maxlen: 24
77.238.240.0/24 maxlen: 24
77.238.241.0/24 maxlen: 24
77.238.242.0/24 maxlen: 24
77.238.243.0/24 maxlen: 24
77.238.244.0/24 maxlen: 24
77.238.245.0/24 maxlen: 24
77.238.246.0/24 maxlen: 24
77.238.247.0/24 maxlen: 24
77.238.248.0/24 maxlen: 24
77.238.249.0/24 maxlen: 24
77.238.250.0/24 maxlen: 24
77.238.251.0/24 maxlen: 24
77.238.252.0/24 maxlen: 24
77.238.253.0/24 maxlen: 24
77.238.254.0/24 maxlen: 24
77.238.255.0/24 maxlen: 24
80.85.244.0/24 maxlen: 24
80.85.245.0/24 maxlen: 24
80.85.246.0/24 maxlen: 24
80.85.247.0/24 maxlen: 24
91.246.41.0/24 maxlen: 24
93.183.124.0/24 maxlen: 24
93.183.125.0/24 maxlen: 24
93.183.126.0/24 maxlen: 24
93.183.127.0/24 maxlen: 24
94.103.80.0/24 maxlen: 24
94.103.81.0/24 maxlen: 24
94.103.82.0/24 maxlen: 24
94.103.94.0/24 maxlen: 24
94.103.95.0/24 maxlen: 24
109.234.33.0/24 maxlen: 24
109.234.34.0/24 maxlen: 24
109.234.35.0/24 maxlen: 24
109.234.36.0/24 maxlen: 24
109.234.37.0/24 maxlen: 24
109.234.38.0/24 maxlen: 24
109.234.39.0/24 maxlen: 24
185.245.104.0/24 maxlen: 24
185.245.105.0/24 maxlen: 24
185.245.106.0/24 maxlen: 24
185.245.107.0/24 maxlen: 24
193.178.169.0/24 maxlen: 24
193.178.172.0/24 maxlen: 24
193.178.174.0/24 maxlen: 24
194.164.32.0/24 maxlen: 24
194.164.33.0/24 maxlen: 24
194.164.34.0/24 maxlen: 24
194.164.35.0/24 maxlen: 24
195.2.86.0/24 maxlen: 24
195.2.92.0/24 maxlen: 24
195.2.93.0/24 maxlen: 24
195.200.16.0/24 maxlen: 24
195.200.17.0/24 maxlen: 24
195.200.18.0/24 maxlen: 24
195.200.19.0/24 maxlen: 24
195.200.26.0/24 maxlen: 24
195.200.28.0/24 maxlen: 24
195.200.29.0/24 maxlen: 24
195.200.30.0/24 maxlen: 24
195.200.31.0/24 maxlen: 24
212.34.144.0/24 maxlen: 24
212.34.145.0/24 maxlen: 24
212.34.146.0/24 maxlen: 24
212.34.147.0/24 maxlen: 24
212.34.148.0/24 maxlen: 24
212.34.149.0/24 maxlen: 24
212.34.150.0/24 maxlen: 24
212.34.151.0/24 maxlen: 24
212.34.152.0/24 maxlen: 24
212.34.153.0/24 maxlen: 24
212.34.154.0/24 maxlen: 24
212.34.155.0/24 maxlen: 24
2a06:7740::/48 maxlen: 48
2a0d:8480:1::/48 maxlen: 48
2a0d:8480:3::/48 maxlen: 48
2a14:1e00:1::/48 maxlen: 48
2a14:1e00:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/VtZBSGvcmNSn3gkopC19aOYBXzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/VtZBSGvcmNSn3gkopC19aOYBXzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:16:ed:61:c8:d8:7e:7d:78:9b:fa:9f:52:41:0a:19:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Validity
Not Before: Sep 21 23:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=367a1b00af80423c729d47142f7bcbaccd05882e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:02:02:27:02:30:2a:58:45:6a:1d:07:26:63:
17:d9:b6:77:30:1e:f3:b4:5b:d2:ea:29:73:f5:ae:
f3:54:71:32:8b:1d:25:6d:c8:d1:28:f3:02:8d:fe:
80:86:fd:eb:d7:ea:53:e9:c9:11:21:f2:b4:1d:ee:
63:d8:01:b2:3d:0c:28:d4:b9:ad:ba:06:69:1c:d7:
d3:33:ea:e1:d5:45:08:0d:ba:4e:a7:3f:12:0f:57:
42:35:e2:ee:23:49:ce:a8:e7:da:8c:ff:37:44:ad:
c4:5a:b7:7b:32:9c:6a:17:f0:8d:d1:97:cb:11:2c:
a4:25:d6:0a:10:af:05:9b:9a:ba:b2:bb:e8:7e:10:
68:7b:cf:d2:fa:09:d1:d2:eb:60:5c:7a:ba:25:25:
63:49:55:57:b2:73:ec:07:9b:41:b9:fa:2a:f8:cc:
f7:9d:24:1b:92:13:18:65:cb:16:d3:ef:8c:26:59:
f6:ca:77:bc:3c:90:e7:0e:55:35:bb:87:4d:ec:83:
ec:37:fb:42:6d:26:18:8b:9e:11:4d:65:2b:a5:3e:
63:65:71:67:75:bf:35:8f:e6:61:91:b0:ff:38:fc:
97:10:51:4f:6c:2f:8e:bf:5a:99:ec:b7:1c:4d:84:
19:47:cf:c3:a3:4c:6b:01:dd:6d:f7:4c:9b:68:f3:
89:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7A:1B:00:AF:80:42:3C:72:9D:47:14:2F:7B:CB:AC:CD:05:88:2E
X509v3 Authority Key Identifier:
keyid:56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/NnobAK-AQjxynUcUL3vLrM0FiC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/VtZBSGvcmNSn3gkopC19aOYBXzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.238.224.0/19
80.85.244.0/22
91.246.41.0/24
93.183.124.0/22
94.103.80.0-94.103.82.255
94.103.94.0/23
109.234.33.0-109.234.39.255
185.245.104.0/22
193.178.169.0/24
193.178.172.0/24
193.178.174.0/24
194.164.32.0/22
195.2.86.0/24
195.2.92.0/23
195.200.16.0/22
195.200.26.0/24
195.200.28.0/22
212.34.144.0-212.34.155.255
IPv6:
2a06:7740::/48
2a0d:8480:1::/48
2a0d:8480:3::/48
2a14:1e00:1::-2a14:1e00:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2f:9d:fc:e3:a4:cb:67:bd:29:27:8d:df:02:07:0c:b9:f8:73:
56:a8:1c:0f:c2:e1:e3:95:04:d4:fa:ba:20:71:5e:f7:43:ad:
ed:9d:1a:f9:33:cc:4c:09:9a:09:9b:46:0d:50:93:42:e7:a5:
83:42:63:92:3b:c1:e6:f7:4a:ae:e2:dd:75:26:fb:e2:cf:dd:
dd:4c:2d:d0:97:2d:fb:ae:ac:e6:13:cf:a5:a6:f5:d6:b9:de:
ab:37:b4:e4:ff:86:64:6c:42:34:9a:ea:a1:c5:e6:5a:56:f4:
52:b6:77:14:c9:01:3d:43:aa:f3:ea:4c:9d:80:4a:bf:60:17:
09:3f:19:57:66:a2:76:6a:a0:37:ea:71:9e:61:7d:74:f3:51:
11:8d:4c:38:a2:fe:44:21:ca:5c:6f:1f:e3:f3:64:79:74:65:
d3:e7:81:c5:89:61:a1:16:9d:6d:bb:cc:1e:cd:4a:82:29:11:
41:a4:ab:a2:b1:b5:56:f6:dd:4e:d5:ec:46:99:4f:1e:e5:4a:
f6:9f:89:b9:70:af:78:60:6d:11:02:b2:12:cd:a3:03:10:c3:
0e:70:06:a5:a0:93:51:9b:54:35:c5:31:d1:7f:02:44:8e:7e:
18:dd:be:48:9c:d6:1a:95:c2:78:d3:6d:02:bd:bc:17:f9:e8:
bd:c9:96:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 18:41:44 2024 by rpki-client on console-fra.rpki-client.org