Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8mTAlAftW3umDgrYZZyKBlkccL0.roa
File: 8mTAlAftW3umDgrYZZyKBlkccL0.roa (raw, json)
Hash identifier: 4uMTsxFEYO/i2Br7AfXonNHsiKQ9mFAD6zyAHFIuPDo=
Subject key identifier: F2:64:C0:94:07:ED:5B:7B:A6:0E:0A:D8:65:9C:8A:06:59:1C:70:BD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018DE4C4558794D8058A3B7EC06A60E63C1D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8mTAlAftW3umDgrYZZyKBlkccL0.roa
Signing time: Mon 26 Feb 2024 09:34:48 +0000
ROA not before: Mon 26 Feb 2024 09:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44559
IP address blocks: 62.76.227.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.4.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.24.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.8.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.57.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.62.0/24 maxlen: 24
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e4:c4:55:87:94:d8:05:8a:3b:7e:c0:6a:60:e6:3c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 26 09:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f264c09407ed5b7ba60e0ad8659c8a06591c70bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1f:7e:cb:f7:9d:25:b0:72:14:6e:95:a6:47:
ca:26:b9:f0:b3:3f:cf:23:97:c2:9a:41:b8:fc:a3:
61:e4:10:02:d6:20:03:a1:67:8e:4b:3f:68:37:3c:
f0:a8:53:7e:22:e0:21:c5:45:ba:1b:5d:ec:09:ca:
51:fe:f3:d2:1f:92:dc:80:a7:0b:96:95:da:84:de:
d8:de:b5:bd:ea:51:ee:b6:08:2f:87:37:9a:ce:b4:
12:78:2c:d9:3d:f3:01:9f:a2:4e:20:74:e9:ca:5b:
62:c7:c9:4d:c0:40:5f:2a:55:e3:d7:45:e8:7a:21:
a5:bc:73:bb:a9:4d:ce:ae:7e:d3:32:d8:4c:8f:22:
49:e1:4f:d3:9e:5f:53:40:46:18:91:99:9f:31:21:
94:bd:12:6d:86:63:61:9c:e8:77:f2:b7:b0:dc:8e:
ca:6a:d4:fc:80:3c:f3:a7:db:f1:1c:43:e5:fb:13:
ef:90:af:b9:e1:ba:48:04:de:1a:7c:dc:40:92:6a:
78:20:e0:a0:50:80:16:11:d3:7c:06:3c:01:7f:d1:
6c:2e:64:cd:51:04:98:52:da:9c:ba:d0:ef:38:4d:
31:16:a4:be:5f:de:65:26:33:ae:4a:05:15:d7:ef:
f8:e8:ad:33:3d:f7:b2:b6:81:3c:b4:3d:f9:11:b2:
e9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:64:C0:94:07:ED:5B:7B:A6:0E:0A:D8:65:9C:8A:06:59:1C:70:BD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8mTAlAftW3umDgrYZZyKBlkccL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
62.76.233.0/24
185.72.10.0/24
192.124.180.0/22
192.124.188.0/24
192.124.190.0/24
192.124.209.0/24
193.124.4.0/24
193.124.17.0/24
193.124.36.0/24
193.124.44.0/24
193.124.47.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.66.0/24
194.58.154.0/23
194.58.223.0/24
194.87.24.0/24
194.87.26.0/23
194.87.33.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.76.0/24
194.87.83.0-194.87.84.255
194.87.90.0/24
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.178.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.224.0/24
194.87.226.0/24
194.87.229.0/24
194.87.231.0/24
194.87.233.0/24
194.87.250.0/24
194.135.33.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.8.0/23
195.133.14.0/23
195.133.18.0/24
195.133.21.0/24
195.133.27.0/24
195.133.31.0/24
195.133.35.0/24
195.133.56.0/23
195.133.60.0/22
195.133.73.0/24
195.133.81.0/24
195.133.94.0/24
195.133.194.0/24
212.192.8.0/24
212.192.214.0/23
212.192.217.0/24
212.192.223.0/24
212.192.242.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:c0:5e:1b:0d:73:2e:09:b2:9e:d9:61:0d:b7:e6:ae:ec:0b:
d0:0f:93:71:09:4a:d4:2a:ee:6d:15:99:46:17:0e:5e:00:e2:
ca:e4:37:f7:4d:21:e2:15:28:17:41:5f:4d:15:46:ae:3c:66:
c8:b7:05:b3:57:45:25:c9:e0:db:03:d6:81:93:07:04:2f:94:
a9:89:4f:ce:55:8c:41:fa:13:c1:63:fd:3a:31:1c:7e:b3:e0:
2a:45:88:04:54:a0:a5:39:55:40:92:46:e4:32:b8:67:14:08:
fe:14:74:19:3b:18:a1:ea:de:33:72:0d:37:f6:43:84:36:8b:
f1:4b:7f:a8:83:7a:a7:16:e4:95:1a:5a:1a:48:9d:e6:a1:67:
a2:6f:e9:75:aa:eb:57:db:2e:00:4b:bc:cd:02:b0:b9:8c:56:
a4:59:cf:e0:d7:0d:7a:fa:60:35:37:6b:7d:7d:7c:67:d1:67:
e7:1f:1b:3e:22:20:53:62:eb:3c:bf:31:50:65:f2:50:b3:a6:
dc:2c:71:2f:f6:94:ae:ab:95:32:e9:18:99:69:ec:a4:ae:09:
66:64:07:91:80:c5:70:88:2b:f2:ba:bc:59:73:b5:57:e0:bb:
7c:5c:7b:1d:7e:a3:3b:d8:94:c0:bc:81:a7:6d:47:eb:24:da:
10:27:04:33
-----BEGIN CERTIFICATE-----
MIIHBTCCBe2gAwIBAgISAY3kxFWHlNgFijt+wGpg5jwdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMjI2MDkzNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjY0YzA5NDA3ZWQ1YjdiYTYwZTBhZDg2NTljOGEwNjU5MWM3MGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAih9+y/edJbByFG6VpkfKJrnwsz/P
I5fCmkG4/KNh5BAC1iADoWeOSz9oNzzwqFN+IuAhxUW6G13sCcpR/vPSH5LcgKcL
lpXahN7Y3rW96lHutggvhzeazrQSeCzZPfMBn6JOIHTpyltix8lNwEBfKlXj10Xo
eiGlvHO7qU3Orn7TMthMjyJJ4U/Tnl9TQEYYkZmfMSGUvRJthmNhnOh38rew3I7K
atT8gDzzp9vxHEPl+xPvkK+54bpIBN4afNxAkmp4IOCgUIAWEdN8BjwBf9FsLmTN
UQSYUtqcutDvOE0xFqS+X95lJjOuSgUV1+/46K0zPfeytoE8tD35EbLp5QIDAQAB
o4IEETCCBA0wHQYDVR0OBBYEFPJkwJQH7Vt7pg4K2GWcigZZHHC9MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvOG1UQWxBZnRXM3VtRGdyWVpaeUtCbGtjY0wwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICJQYIKwYBBQUHAQcBAf8EggIUMIICEDCCAgwEAgABMIIC
BAMEAD5M4wMEAD5M6QMEALlICgMEAsB8tAMEAMB8vAMEAMB8vgMEAMB80QMEAMF8
BAMEAMF8EQMEAMF8JAMEAMF8LAMEAMF8LwMEAMF8zAMEAMI6KQMEAMI6LAMEAMI6
QgMEAcI6mgMEAMI63wMEAMJXGAMEAcJXGgMEAMJXIQMEAMJXLAMEAMJXMTAMAwQA
wlczAwQAwlc0AwQBwlc2AwQAwldMMAwDBADCV1MDBADCV1QDBADCV1oDBADCV2gD
BADCV3MDBADCV4ADBADCV4IDBADCV4UDBADCV4oDBADCV4wDBADCV48DBADCV5cD
BADCV6EDBADCV7IDBADCV7sDBADCV74DBADCV8gDBADCV8oDBADCV9ADBADCV9cD
BAHCV9wDBADCV+ADBADCV+IDBADCV+UDBADCV+cDBADCV+kDBADCV/oDBADChyED
BADChyYDBADCh2kDBADDOiIwDAMEAsM6JAMEAMM6JgMEAMM6PwMEAcOFCAMEAcOF
DgMEAMOFEgMEAMOFFQMEAMOFGwMEAMOFHwMEAMOFIwMEAcOFOAMEAsOFPAMEAMOF
SQMEAMOFUQMEAMOFXgMEAMOFwgMEANTACAMEAdTA1gMEANTA2QMEANTA3wMEANTA
8gMEANTA9gMEANTA+AMEANTBAQMEANTBBQMEANTBGAMEANTBHjANBgkqhkiG9w0B
AQsFAAOCAQEAO8BeGw1zLgmyntlhDbfmruwL0A+TcQlK1CrubRWZRhcOXgDiyuQ3
900h4hUoF0FfTRVGrjxmyLcFs1dFJcng2wPWgZMHBC+UqYlPzlWMQfoTwWP9OjEc
frPgKkWIBFSgpTlVQJJG5DK4ZxQI/hR0GTsYoereM3INN/ZDhDaL8Ut/qIN6pxbk
lRpaGkid5qFnom/pdarrV9suAEu8zQKwuYxWpFnP4NcNevpgNTdrfX18Z9Fn5x8b
PiIgU2LrPL8xUGXyULOm3CxxL/aUrquVMukYmWnspK4JZmQHkYDFcIgr8rq8WXO1
V+C7fFx7HX6jO9iUwLyBp21H6yTaECcEMw==
-----END CERTIFICATE-----
Generated at Sat May 18 02:00:25 2024 by rpki-client on console-ams.rpki-client.org