Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iY7bGWVL3WuEvqzZ3FOsTgb7Yig.roa
File: iY7bGWVL3WuEvqzZ3FOsTgb7Yig.roa (raw, json)
Hash identifier: V1z/wyiQZbUfivKtk1ua+oScHqxqv1xjolucWbxV9c4=
Subject key identifier: 89:8E:DB:19:65:4B:DD:6B:84:BE:AC:D9:DC:53:AC:4E:06:FB:62:28
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018E3BAAAE1EAFD92D78FAB7518F6D0587B4
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iY7bGWVL3WuEvqzZ3FOsTgb7Yig.roa
Signing time: Thu 14 Mar 2024 06:33:45 +0000
ROA not before: Thu 14 Mar 2024 06:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34665
IP address blocks: 5.8.8.0/22 maxlen: 22
5.8.8.0/23 maxlen: 23
5.8.8.0/24 maxlen: 24
5.8.9.0/24 maxlen: 24
5.8.10.0/23 maxlen: 23
5.8.10.0/24 maxlen: 24
5.8.11.0/24 maxlen: 24
5.8.12.0/22 maxlen: 22
5.8.16.0/24 maxlen: 24
5.8.19.0/24 maxlen: 24
5.8.48.0/22 maxlen: 22
5.8.48.0/23 maxlen: 23
5.8.48.0/24 maxlen: 24
5.8.49.0/24 maxlen: 24
5.8.50.0/23 maxlen: 23
5.8.50.0/24 maxlen: 24
5.8.51.0/24 maxlen: 24
5.8.52.0/22 maxlen: 22
5.8.52.0/23 maxlen: 23
5.8.52.0/24 maxlen: 24
5.8.53.0/24 maxlen: 24
5.8.54.0/23 maxlen: 23
5.8.54.0/24 maxlen: 24
5.8.55.0/24 maxlen: 24
5.8.60.0/23 maxlen: 23
5.8.65.0/24 maxlen: 24
5.101.0.0/22 maxlen: 22
5.101.0.0/23 maxlen: 23
5.101.0.0/24 maxlen: 24
5.101.1.0/24 maxlen: 24
5.101.2.0/23 maxlen: 23
5.101.2.0/24 maxlen: 24
5.101.3.0/24 maxlen: 24
5.101.4.0/22 maxlen: 22
5.101.4.0/23 maxlen: 23
5.101.4.0/24 maxlen: 24
5.101.5.0/24 maxlen: 24
5.101.6.0/23 maxlen: 23
5.101.6.0/24 maxlen: 24
5.101.7.0/24 maxlen: 24
5.101.32.0/22 maxlen: 24
5.101.64.0/22 maxlen: 22
5.101.64.0/23 maxlen: 23
5.101.64.0/24 maxlen: 24
5.101.65.0/24 maxlen: 24
5.101.66.0/23 maxlen: 23
5.101.66.0/24 maxlen: 24
5.101.67.0/24 maxlen: 24
5.101.80.0/21 maxlen: 21
5.101.90.0/23 maxlen: 23
5.188.44.0/22 maxlen: 22
5.188.44.0/23 maxlen: 23
5.188.44.0/24 maxlen: 24
5.188.45.0/24 maxlen: 24
5.188.46.0/23 maxlen: 23
5.188.46.0/24 maxlen: 24
5.188.47.0/24 maxlen: 24
5.188.49.0/24 maxlen: 24
5.188.62.0/24 maxlen: 24
5.188.166.0/24 maxlen: 24
5.188.207.0/24 maxlen: 24
5.188.208.0/23 maxlen: 23
5.188.210.0/24 maxlen: 24
5.188.211.0/24 maxlen: 24
5.188.222.0/24 maxlen: 24
5.188.223.0/24 maxlen: 24
5.188.233.0/24 maxlen: 24
5.188.234.0/23 maxlen: 23
31.44.184.0/24 maxlen: 24
31.44.188.0/22 maxlen: 32
31.184.192.0/22 maxlen: 22
31.184.192.0/23 maxlen: 23
31.184.192.0/24 maxlen: 24
31.184.193.0/24 maxlen: 24
31.184.194.0/23 maxlen: 23
31.184.194.0/24 maxlen: 24
31.184.195.0/24 maxlen: 24
31.184.196.0/22 maxlen: 22
31.184.196.0/23 maxlen: 23
31.184.196.0/24 maxlen: 24
31.184.197.0/24 maxlen: 24
31.184.198.0/23 maxlen: 23
31.184.198.0/24 maxlen: 24
31.184.199.0/24 maxlen: 24
31.184.228.0/23 maxlen: 23
31.184.231.0/24 maxlen: 24
31.184.238.0/23 maxlen: 23
31.184.243.0/24 maxlen: 24
37.9.48.0/24 maxlen: 24
37.139.48.0/23 maxlen: 23
37.139.53.0/24 maxlen: 24
37.139.54.0/23 maxlen: 23
37.139.56.0/22 maxlen: 22
37.139.56.0/23 maxlen: 23
37.139.56.0/24 maxlen: 24
37.139.57.0/24 maxlen: 24
37.139.58.0/23 maxlen: 23
37.139.58.0/24 maxlen: 24
37.139.59.0/24 maxlen: 24
46.161.2.0/23 maxlen: 23
46.161.8.0/24 maxlen: 24
46.161.10.0/24 maxlen: 24
46.161.12.0/23 maxlen: 23
46.161.14.0/23 maxlen: 23
46.161.20.0/22 maxlen: 22
46.161.24.0/23 maxlen: 23
46.161.32.0/22 maxlen: 22
46.161.40.0/24 maxlen: 24
46.161.42.0/24 maxlen: 24
46.161.43.0/24 maxlen: 24
46.161.44.0/22 maxlen: 22
46.161.48.0/22 maxlen: 22
46.161.48.0/23 maxlen: 23
46.161.48.0/24 maxlen: 24
46.161.49.0/24 maxlen: 24
46.161.50.0/23 maxlen: 23
46.161.50.0/24 maxlen: 24
46.161.51.0/24 maxlen: 24
91.243.48.0/22 maxlen: 22
91.243.48.0/23 maxlen: 23
91.243.48.0/24 maxlen: 24
91.243.49.0/24 maxlen: 24
91.243.50.0/23 maxlen: 23
91.243.50.0/24 maxlen: 24
91.243.51.0/24 maxlen: 24
91.243.60.0/24 maxlen: 24
91.243.61.0/24 maxlen: 24
91.243.62.0/23 maxlen: 23
91.243.90.0/24 maxlen: 24
91.243.91.0/24 maxlen: 24
91.243.93.0/24 maxlen: 24
95.215.0.0/22 maxlen: 24
95.215.0.0/23 maxlen: 23
95.215.0.0/24 maxlen: 24
95.215.1.0/24 maxlen: 24
95.215.2.0/23 maxlen: 23
95.215.2.0/24 maxlen: 24
95.215.3.0/24 maxlen: 24
146.185.212.0/24 maxlen: 24
146.185.213.0/24 maxlen: 24
146.185.223.0/24 maxlen: 24
146.185.224.0/21 maxlen: 21
146.185.233.0/24 maxlen: 24
146.185.238.0/24 maxlen: 24
146.185.244.0/23 maxlen: 23
188.143.232.0/22 maxlen: 22
188.143.232.0/23 maxlen: 23
188.143.232.0/24 maxlen: 24
188.143.233.0/24 maxlen: 24
188.143.235.0/24 maxlen: 24
195.2.240.0/23 maxlen: 24
2a00:1d78:100:1c0::/58 maxlen: 58
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:aa:ae:1e:af:d9:2d:78:fa:b7:51:8f:6d:05:87:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Mar 14 06:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=898edb19654bdd6b84beacd9dc53ac4e06fb6228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a3:53:f0:c0:91:16:f9:fb:5d:45:c2:6d:23:
cd:a1:8e:09:bf:75:3d:82:49:be:d1:b6:d4:ba:e5:
69:88:24:19:34:a3:88:16:92:10:30:38:cd:e0:de:
57:83:52:52:22:24:f2:46:87:11:71:e4:b8:1d:ec:
36:48:88:c8:bd:e3:db:3c:c7:71:45:60:a7:50:ba:
c9:9f:6c:68:46:b9:50:66:94:5a:5b:e3:a8:e1:da:
d8:e6:69:93:a7:38:08:33:29:d9:2d:57:52:5d:85:
f6:b1:9c:b0:db:2d:c3:ec:6e:99:86:67:90:31:06:
4d:86:55:b5:72:41:99:3b:01:e8:26:b7:5e:9b:0a:
f8:cd:6b:4a:e2:bd:99:74:bb:01:94:6f:ed:b4:14:
aa:7e:82:c6:6b:ad:0b:c3:4d:7f:d4:94:77:b7:a8:
43:f9:11:36:61:73:a1:c7:79:f6:65:2a:d8:40:6d:
14:bf:ab:32:6f:ce:93:9b:ac:f8:9f:a7:aa:3e:19:
cb:1d:0a:fe:90:a9:d0:96:46:d3:0f:d0:22:19:d9:
67:84:dd:8e:9f:46:de:81:8a:2b:2f:70:20:59:8b:
36:c1:3e:d8:93:5e:07:66:d3:b2:52:6a:b7:14:fb:
b7:74:8d:50:9d:06:13:d8:9a:17:c0:04:0c:e9:4e:
4d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8E:DB:19:65:4B:DD:6B:84:BE:AC:D9:DC:53:AC:4E:06:FB:62:28
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/iY7bGWVL3WuEvqzZ3FOsTgb7Yig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.8.0-5.8.16.255
5.8.19.0/24
5.8.48.0/21
5.8.60.0/23
5.8.65.0/24
5.101.0.0/21
5.101.32.0/22
5.101.64.0/22
5.101.80.0/21
5.101.90.0/23
5.188.44.0/22
5.188.49.0/24
5.188.62.0/24
5.188.166.0/24
5.188.207.0-5.188.211.255
5.188.222.0/23
5.188.233.0-5.188.235.255
31.44.184.0/24
31.44.188.0/22
31.184.192.0/21
31.184.228.0/23
31.184.231.0/24
31.184.238.0/23
31.184.243.0/24
37.9.48.0/24
37.139.48.0/23
37.139.53.0-37.139.59.255
46.161.2.0/23
46.161.8.0/24
46.161.10.0/24
46.161.12.0/22
46.161.20.0-46.161.25.255
46.161.32.0/22
46.161.40.0/24
46.161.42.0-46.161.51.255
91.243.48.0/22
91.243.60.0/22
91.243.90.0/23
91.243.93.0/24
95.215.0.0/22
146.185.212.0/23
146.185.223.0-146.185.231.255
146.185.233.0/24
146.185.238.0/24
146.185.244.0/23
188.143.232.0/22
195.2.240.0/23
IPv6:
2a00:1d78:100:1c0::/58
Signature Algorithm: sha256WithRSAEncryption
76:77:cd:9e:38:21:62:32:f8:82:1d:23:f6:df:e5:c6:08:29:
ea:e1:4a:57:50:07:1b:82:9f:fb:4f:c2:71:f4:42:b7:65:db:
97:21:84:50:a4:a3:9f:cc:8f:e9:65:65:eb:08:8a:5a:49:34:
6d:6c:43:1b:9b:c2:eb:18:38:9d:fb:65:ee:73:2f:30:8b:9e:
8e:5e:99:90:89:3f:4e:57:53:16:31:e4:29:30:cb:ca:96:6c:
b2:91:80:b0:77:d5:ff:90:db:0f:fd:16:fb:4e:54:19:45:6f:
71:52:57:06:9e:32:96:99:43:a2:35:4d:c5:74:34:b6:d3:b2:
63:06:f4:77:bb:7f:9e:a3:3e:cd:10:b6:03:bc:87:ab:5e:0d:
4c:af:64:ad:a5:b1:45:47:b6:b2:2f:91:27:fb:fa:9c:78:6e:
18:c1:f8:29:a6:dc:66:4a:5c:95:e5:be:25:ab:fb:52:fd:da:
6e:05:58:f6:b3:ad:39:5f:cb:1b:4c:60:80:21:db:dc:d5:19:
87:67:3c:3b:e2:ae:cb:d9:31:f1:bc:95:6c:f5:7e:d5:38:77:
e9:93:14:d1:03:ad:db:fa:7b:10:53:11:8f:79:7e:f0:66:fa:
1d:5e:08:6c:8c:61:f0:ac:ea:18:33:65:0a:68:75:20:88:dd:
3a:28:ac:7d
-----BEGIN CERTIFICATE-----
MIIGZjCCBU6gAwIBAgISAY47qq4er9ktePq3UY9tBYe0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjQwMzE0MDYzMzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OThlZGIxOTY1NGJkZDZiODRiZWFjZDlkYzUzYWM0ZTA2ZmI2MjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKNT8MCRFvn7XUXCbSPNoY4Jv3U9
gkm+0bbUuuVpiCQZNKOIFpIQMDjN4N5Xg1JSIiTyRocRceS4Hew2SIjIvePbPMdx
RWCnULrJn2xoRrlQZpRaW+Oo4drY5mmTpzgIMynZLVdSXYX2sZyw2y3D7G6ZhmeQ
MQZNhlW1ckGZOwHoJrdemwr4zWtK4r2ZdLsBlG/ttBSqfoLGa60Lw01/1JR3t6hD
+RE2YXOhx3n2ZSrYQG0Uv6syb86Tm6z4n6eqPhnLHQr+kKnQlkbTD9AiGdlnhN2O
n0begYorL3AgWYs2wT7Yk14HZtOyUmq3FPu3dI1QnQYT2JoXwAQM6U5NnQIDAQAB
o4IDcjCCA24wHQYDVR0OBBYEFImO2xllS91rhL6s2dxTrE4G+2IoMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvaVk3YkdXVkwzV3VFdnF6WjNGT3NUZ2I3WWlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBhgYIKwYBBQUHAQcBAf8EggF1MIIBcTCCAVoEAgABMIIB
UjAMAwQDBQgIAwQABQgQAwQABQgTAwQDBQgwAwQBBQg8AwQABQhBAwQDBWUAAwQC
BWUgAwQCBWVAAwQDBWVQAwQBBWVaAwQCBbwsAwQABbwxAwQABbw+AwQABbymMAwD
BAAFvM8DBAIFvNADBAEFvN4wDAMEAAW86QMEAgW86AMEAB8suAMEAh8svAMEAx+4
wAMEAR+45AMEAB+45wMEAR+47gMEAB+48wMEACUJMAMEASWLMDAMAwQAJYs1AwQC
JYs4AwQBLqECAwQALqEIAwQALqEKAwQCLqEMMAwDBAIuoRQDBAEuoRgDBAIuoSAD
BAAuoSgwDAMEAS6hKgMEAi6hMAMEAlvzMAMEAlvzPAMEAVvzWgMEAFvzXQMEAl/X
AAMEAZK51DAMAwQAkrnfAwQDkrngAwQAkrnpAwQAkrnuAwQBkrn0AwQCvI/oAwQB
wwLwMBEEAgACMAsDCQYqAB14AQABwDANBgkqhkiG9w0BAQsFAAOCAQEAdnfNnjgh
YjL4gh0j9t/lxggp6uFKV1AHG4Kf+0/CcfRCt2XblyGEUKSjn8yP6WVl6wiKWkk0
bWxDG5vC6xg4nftl7nMvMIuejl6ZkIk/TldTFjHkKTDLypZsspGAsHfV/5DbD/0W
+05UGUVvcVJXBp4ylplDojVNxXQ0ttOyYwb0d7t/nqM+zRC2A7yHq14NTK9kraWx
RUe2si+RJ/v6nHhuGMH4KabcZkpcleW+Jav7Uv3abgVY9rOtOV/LG0xggCHb3NUZ
h2c8O+Kuy9kx8byVbPV+1Th36ZMU0QOt2/p7EFMRj3l+8Gb6HV4IbIxh8KzqGDNl
Cmh1IIjdOiisfQ==
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:48:45 2024 by rpki-client on console-fra.rpki-client.org