Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/3YprihbTJUN3eoTEnkMSaJzmi4Y.roa
File: 3YprihbTJUN3eoTEnkMSaJzmi4Y.roa (raw, json)
Hash identifier: aU7E/Fya6OXUHfh75FkqDdM8nxDyTX6Guc/yvWmRzD4=
Subject key identifier: DD:8A:6B:8A:16:D3:25:43:77:7A:84:C4:9E:43:12:68:9C:E6:8B:86
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01922D6A3835E32C19CF211F8F6485E932C1
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/3YprihbTJUN3eoTEnkMSaJzmi4Y.roa
Signing time: Thu 26 Sep 2024 08:19:48 +0000
ROA not before: Thu 26 Sep 2024 08:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8717
IP address blocks: 5.53.128.0/17 maxlen: 17
37.63.0.0/17 maxlen: 17
46.232.152.0/21 maxlen: 21
46.238.0.0/18 maxlen: 18
46.238.14.0/24 maxlen: 24
62.204.128.0/19 maxlen: 19
62.204.128.0/24 maxlen: 24
62.204.130.0/24 maxlen: 24
62.204.141.0/24 maxlen: 24
62.221.128.0/19 maxlen: 19
62.221.128.0/24 maxlen: 24
77.70.0.0/17 maxlen: 17
77.236.160.0/19 maxlen: 19
77.236.178.0/23 maxlen: 23
78.83.0.0/16 maxlen: 16
78.83.7.0/24 maxlen: 24
78.83.143.0/24 maxlen: 24
78.83.144.0/24 maxlen: 24
78.83.145.0/24 maxlen: 24
78.83.146.0/24 maxlen: 24
78.83.147.0/24 maxlen: 24
78.83.148.0/24 maxlen: 24
78.83.149.0/24 maxlen: 24
78.83.150.0/24 maxlen: 24
78.83.151.0/24 maxlen: 24
78.83.160.0/24 maxlen: 24
78.83.210.0/24 maxlen: 24
78.83.225.0/24 maxlen: 24
78.83.226.0/23 maxlen: 23
78.90.0.0/16 maxlen: 16
78.90.206.0/24 maxlen: 24
78.90.247.0/24 maxlen: 24
80.253.48.0/20 maxlen: 20
80.253.52.0/24 maxlen: 24
80.253.53.0/24 maxlen: 24
82.103.64.0/18 maxlen: 18
82.103.91.0/24 maxlen: 24
82.103.103.0/24 maxlen: 24
82.103.109.0/24 maxlen: 24
82.103.110.0/23 maxlen: 23
82.103.126.0/24 maxlen: 24
82.103.127.0/24 maxlen: 24
82.147.128.0/19 maxlen: 19
83.97.24.0/21 maxlen: 21
84.242.128.0/18 maxlen: 18
84.252.0.0/18 maxlen: 18
85.91.128.0/19 maxlen: 19
85.118.64.0/19 maxlen: 19
85.130.0.0/17 maxlen: 17
85.130.95.0/24 maxlen: 24
85.130.96.0/23 maxlen: 23
85.130.120.0/23 maxlen: 23
85.196.128.0/18 maxlen: 18
87.97.128.0/17 maxlen: 17
87.97.160.0/22 maxlen: 22
87.227.128.0/17 maxlen: 17
88.203.128.0/17 maxlen: 17
88.203.128.0/23 maxlen: 23
88.203.128.0/24 maxlen: 24
88.203.129.0/24 maxlen: 24
88.203.132.0/24 maxlen: 24
88.203.147.0/24 maxlen: 24
88.203.177.0/24 maxlen: 24
88.203.204.0/24 maxlen: 24
88.203.237.0/24 maxlen: 24
89.186.200.0/21 maxlen: 21
89.190.192.0/19 maxlen: 19
89.215.0.0/16 maxlen: 16
89.215.8.0/22 maxlen: 22
89.215.40.0/22 maxlen: 22
89.215.48.0/22 maxlen: 22
89.253.128.0/18 maxlen: 18
92.247.0.0/16 maxlen: 16
92.247.168.0/24 maxlen: 24
95.111.0.0/17 maxlen: 17
95.140.208.0/20 maxlen: 20
130.204.0.0/16 maxlen: 16
151.251.0.0/16 maxlen: 16
151.251.38.0/24 maxlen: 24
151.251.140.0/24 maxlen: 24
151.251.237.0/24 maxlen: 24
176.12.0.0/18 maxlen: 18
193.22.103.0/24 maxlen: 24
195.24.32.0/19 maxlen: 19
195.34.96.0/19 maxlen: 19
195.34.101.0/24 maxlen: 24
195.34.122.0/24 maxlen: 24
195.34.123.0/24 maxlen: 24
195.149.248.0/21 maxlen: 21
195.177.248.0/23 maxlen: 23
212.36.0.0/19 maxlen: 19
212.36.6.0/24 maxlen: 24
212.50.0.0/19 maxlen: 19
212.50.7.0/24 maxlen: 24
212.91.160.0/19 maxlen: 19
212.91.184.0/24 maxlen: 24
212.91.185.0/24 maxlen: 24
212.91.186.0/24 maxlen: 24
212.91.187.0/24 maxlen: 24
212.95.160.0/19 maxlen: 19
212.95.161.0/24 maxlen: 24
212.104.96.0/19 maxlen: 19
213.169.32.0/19 maxlen: 19
213.191.160.0/19 maxlen: 19
213.222.32.0/19 maxlen: 19
213.222.59.0/24 maxlen: 24
213.226.0.0/18 maxlen: 18
213.226.5.0/24 maxlen: 24
213.226.6.0/24 maxlen: 24
213.226.9.0/24 maxlen: 24
213.226.31.0/24 maxlen: 24
213.226.35.0/24 maxlen: 24
213.226.47.0/24 maxlen: 24
213.226.48.0/24 maxlen: 24
213.240.192.0/18 maxlen: 18
217.9.224.0/20 maxlen: 20
217.9.224.0/24 maxlen: 24
217.10.240.0/20 maxlen: 20
217.18.240.0/20 maxlen: 20
217.18.240.0/24 maxlen: 24
217.18.245.0/24 maxlen: 24
217.79.32.0/20 maxlen: 20
2a00:4800::/29 maxlen: 29
2a01:288::/32 maxlen: 32
2a01:288:400b::/48 maxlen: 48
2a01:288:400c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2d:6a:38:35:e3:2c:19:cf:21:1f:8f:64:85:e9:32:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Sep 26 08:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd8a6b8a16d32543777a84c49e4312689ce68b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:16:67:45:a3:31:10:40:4f:fe:f9:c8:0b:05:
60:d9:d8:0f:3d:e8:72:39:71:aa:5f:de:11:e2:6f:
1d:61:90:b8:45:7e:fd:95:09:31:19:7c:c4:7c:ba:
92:86:3f:0f:2e:5e:8a:4a:ff:ca:7d:62:66:86:56:
ed:c7:d7:d6:ff:66:a8:f0:4f:2a:62:88:de:19:bc:
d4:5e:f9:af:dd:32:d8:2b:73:e0:fe:fd:c5:c0:32:
de:06:8c:a0:10:02:e2:58:58:fa:27:b7:3a:27:2b:
a6:69:71:db:f8:ed:96:cf:45:b9:23:27:bc:9b:71:
9e:a1:d6:cd:27:de:69:f7:e8:b9:15:ce:ab:95:24:
83:cf:b5:5d:06:fb:b0:6b:15:5e:de:ce:26:09:35:
0e:6c:fc:6a:41:bd:23:cd:57:ca:0f:c7:bc:d5:ea:
62:dd:44:8e:85:0a:9e:05:3f:c5:76:6d:1f:49:5c:
21:23:39:86:fc:32:f7:41:a7:1c:4d:22:f2:f4:dd:
b4:9b:04:b4:52:25:45:7b:21:1c:29:c8:7e:14:e7:
d9:cc:ed:31:bb:79:64:eb:94:a3:9e:90:e5:4a:05:
52:a4:18:57:dc:cc:a1:97:d9:2b:fb:96:a7:13:4c:
69:71:08:65:81:d1:23:63:fe:3c:54:8f:50:da:64:
61:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8A:6B:8A:16:D3:25:43:77:7A:84:C4:9E:43:12:68:9C:E6:8B:86
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/3YprihbTJUN3eoTEnkMSaJzmi4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.128.0/17
37.63.0.0/17
46.232.152.0/21
46.238.0.0/18
62.204.128.0/19
62.221.128.0/19
77.70.0.0/17
77.236.160.0/19
78.83.0.0/16
78.90.0.0/16
80.253.48.0/20
82.103.64.0/18
82.147.128.0/19
83.97.24.0/21
84.242.128.0/18
84.252.0.0/18
85.91.128.0/19
85.118.64.0/19
85.130.0.0/17
85.196.128.0/18
87.97.128.0/17
87.227.128.0/17
88.203.128.0/17
89.186.200.0/21
89.190.192.0/19
89.215.0.0/16
89.253.128.0/18
92.247.0.0/16
95.111.0.0/17
95.140.208.0/20
130.204.0.0/16
151.251.0.0/16
176.12.0.0/18
193.22.103.0/24
195.24.32.0/19
195.34.96.0/19
195.149.248.0/21
195.177.248.0/23
212.36.0.0/19
212.50.0.0/19
212.91.160.0/19
212.95.160.0/19
212.104.96.0/19
213.169.32.0/19
213.191.160.0/19
213.222.32.0/19
213.226.0.0/18
213.240.192.0/18
217.9.224.0/20
217.10.240.0/20
217.18.240.0/20
217.79.32.0/20
IPv6:
2a00:4800::/29
2a01:288::/32
Signature Algorithm: sha256WithRSAEncryption
70:42:3e:1a:00:0b:8f:2a:c8:25:aa:64:62:00:cd:06:97:f3:
12:af:ae:7f:e8:4c:7f:dd:1b:06:72:92:cb:21:13:cf:63:a2:
18:13:30:bf:c7:af:e6:57:1c:f7:96:39:95:16:ae:0e:66:78:
dc:e9:55:28:49:e7:8d:8a:a6:53:6e:9a:89:5e:0e:78:e7:1d:
c6:0a:d1:9d:f9:5b:99:8d:01:82:bc:15:7d:3e:ab:87:4f:81:
fa:28:2b:ec:24:21:37:ca:2a:c9:01:28:78:5d:f9:58:86:2d:
a9:18:ba:d0:4c:61:be:fa:14:48:b4:c1:32:77:e8:f5:a0:7f:
22:c3:af:1b:6e:57:fb:00:d5:0e:31:9a:d4:06:df:65:32:99:
60:6c:d0:32:de:03:b6:b7:cb:02:ed:43:b5:e6:47:e5:9a:e8:
ae:77:2b:b9:37:17:b0:1b:f5:97:b2:bb:35:c3:58:1e:54:f2:
b9:7f:17:29:58:cc:8b:4c:b0:73:e9:8f:41:ca:28:44:a6:9b:
66:56:20:8a:e4:70:73:7d:22:3f:62:87:48:50:38:4c:70:16:
4a:5e:8b:74:b0:30:c0:89:3a:a6:ad:af:64:c5:0f:fe:b5:18:
fd:ae:1f:bc:1e:ce:b4:18:74:0c:cd:ad:46:cb:e3:6b:a4:5a:
0e:82:a5:2e
-----BEGIN CERTIFICATE-----
MIIGSTCCBTGgAwIBAgISAZItajg14ywZzyEfj2SF6TLBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjQwOTI2MDgxOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDhhNmI4YTE2ZDMyNTQzNzc3YTg0YzQ5ZTQzMTI2ODljZTY4Yjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRZnRaMxEEBP/vnICwVg2dgPPehy
OXGqX94R4m8dYZC4RX79lQkxGXzEfLqShj8PLl6KSv/KfWJmhlbtx9fW/2ao8E8q
YojeGbzUXvmv3TLYK3Pg/v3FwDLeBoygEALiWFj6J7c6JyumaXHb+O2Wz0W5Iye8
m3GeodbNJ95p9+i5Fc6rlSSDz7VdBvuwaxVe3s4mCTUObPxqQb0jzVfKD8e81epi
3USOhQqeBT/Fdm0fSVwhIzmG/DL3QaccTSLy9N20mwS0UiVFeyEcKch+FOfZzO0x
u3lk65SjnpDlSgVSpBhX3Myhl9kr+5anE0xpcQhlgdEjY/48VI9Q2mRhdwIDAQAB
o4IDVTCCA1EwHQYDVR0OBBYEFN2Ka4oW0yVDd3qExJ5DEmic5ouGMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvM1lwcmloYlRKVU4zZW9URW5rTVNhSnptaTRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBaQYIKwYBBQUHAQcBAf8EggFYMIIBVDCCAToEAgABMIIB
MgMEBwU1gAMEByU/AAMEAy7omAMEBi7uAAMEBT7MgAMEBT7dgAMEB01GAAMEBU3s
oAMDAE5TAwMATloDBARQ/TADBAZSZ0ADBAVSk4ADBANTYRgDBAZU8oADBAZU/AAD
BAVVW4ADBAVVdkADBAdVggADBAZVxIADBAdXYYADBAdX44ADBAdYy4ADBANZusgD
BAVZvsADAwBZ1wMEBln9gAMDAFz3AwQHX28AAwQEX4zQAwMAgswDAwCX+wMEBrAM
AAMEAMEWZwMEBcMYIAMEBcMiYAMEA8OV+AMEAcOx+AMEBdQkAAMEBdQyAAMEBdRb
oAMEBdRfoAMEBdRoYAMEBdWpIAMEBdW/oAMEBdXeIAMEBtXiAAMEBtXwwAMEBNkJ
4AMEBNkK8AMEBNkS8AMEBNlPIDAUBAIAAjAOAwUDKgBIAAMFACoBAogwDQYJKoZI
hvcNAQELBQADggEBAHBCPhoAC48qyCWqZGIAzQaX8xKvrn/oTH/dGwZyksshE89j
ohgTML/Hr+ZXHPeWOZUWrg5meNzpVShJ542KplNumoleDnjnHcYK0Z35W5mNAYK8
FX0+q4dPgfooK+wkITfKKskBKHhd+ViGLakYutBMYb76FEi0wTJ36PWgfyLDrxtu
V/sA1Q4xmtQG32UymWBs0DLeA7a3ywLtQ7XmR+Wa6K53K7k3F7Ab9ZeyuzXDWB5U
8rl/FylYzItMsHPpj0HKKESmm2ZWIIrkcHN9Ij9ih0hQOExwFkpei3SwMMCJOqat
r2TFD/61GP2uH7wezrQYdAzNrUbL42ukWg6CpS4=
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:31:49 2024 by rpki-client on console-ams.rpki-client.org