Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/teBeW8la5KgLbinC4LrQvq4xcbM.roa
File: teBeW8la5KgLbinC4LrQvq4xcbM.roa (raw, json)
Hash identifier: u3qD3TAKaiQPl8910jKWih9f8EzLBUbQzkQdyOKDL4E=
Subject key identifier: B5:E0:5E:5B:C9:5A:E4:A8:0B:6E:29:C2:E0:BA:D0:BE:AE:31:71:B3
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 018CC6B93AC9F01DCA6883921DB4F23399FD
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/teBeW8la5KgLbinC4LrQvq4xcbM.roa
Signing time: Mon 01 Jan 2024 20:31:17 +0000
ROA not before: Mon 01 Jan 2024 20:31:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12301
IP address blocks: 79.120.168.0/23 maxlen: 24
79.120.176.0/20 maxlen: 24
79.120.192.0/19 maxlen: 24
79.120.198.0/24 maxlen: 24
79.120.200.0/24 maxlen: 24
79.120.128.0/19 maxlen: 24
79.120.224.0/20 maxlen: 24
79.120.240.0/21 maxlen: 24
79.120.250.0/23 maxlen: 24
212.24.160.0/19 maxlen: 19
193.226.196.0/22 maxlen: 24
193.226.194.0/23 maxlen: 24
193.226.200.0/21 maxlen: 24
89.186.98.0/23 maxlen: 24
89.186.100.0/23 maxlen: 24
193.226.208.0/22 maxlen: 24
213.253.192.0/18 maxlen: 24
89.186.104.0/23 maxlen: 24
193.226.216.0/21 maxlen: 24
89.186.116.0/23 maxlen: 24
193.226.224.0/23 maxlen: 24
193.226.228.0/22 maxlen: 24
193.226.236.0/23 maxlen: 24
193.226.234.0/23 maxlen: 24
193.226.242.0/23 maxlen: 24
193.226.252.0/22 maxlen: 24
193.226.250.0/23 maxlen: 24
94.125.248.0/21 maxlen: 24
82.131.160.0/20 maxlen: 24
62.77.192.0/22 maxlen: 24
193.91.64.0/19 maxlen: 24
82.131.176.0/22 maxlen: 24
62.77.200.0/21 maxlen: 24
62.77.208.0/20 maxlen: 24
82.131.180.0/23 maxlen: 24
82.131.192.0/22 maxlen: 24
62.77.224.0/20 maxlen: 24
82.131.199.0/24 maxlen: 24
82.131.208.0/21 maxlen: 24
62.77.244.0/22 maxlen: 24
62.77.242.0/23 maxlen: 24
91.83.148.0/22 maxlen: 24
91.83.146.0/23 maxlen: 24
91.83.152.0/23 maxlen: 24
91.83.156.0/22 maxlen: 24
91.83.160.0/20 maxlen: 24
213.16.64.0/18 maxlen: 24
91.83.176.0/22 maxlen: 24
87.97.64.0/20 maxlen: 24
91.83.92.0/23 maxlen: 24
91.83.96.0/22 maxlen: 24
91.83.100.0/23 maxlen: 24
91.83.104.0/22 maxlen: 24
91.83.108.0/23 maxlen: 24
91.83.122.0/23 maxlen: 24
91.83.124.0/22 maxlen: 24
91.83.128.0/21 maxlen: 24
82.144.160.0/22 maxlen: 24
91.83.254.0/23 maxlen: 24
82.144.168.0/22 maxlen: 24
82.144.178.0/23 maxlen: 24
82.144.180.0/22 maxlen: 24
82.144.184.0/22 maxlen: 24
82.144.190.0/23 maxlen: 24
185.50.28.0/22 maxlen: 24
91.83.208.0/20 maxlen: 24
91.83.224.0/20 maxlen: 24
91.83.220.0/22 maxlen: 22
91.83.240.0/21 maxlen: 24
91.83.248.0/22 maxlen: 24
91.82.192.0/20 maxlen: 24
91.82.208.0/23 maxlen: 24
91.82.216.0/21 maxlen: 24
91.82.224.0/22 maxlen: 24
91.82.236.0/22 maxlen: 24
91.82.152.0/21 maxlen: 24
91.82.148.0/22 maxlen: 24
91.82.174.0/23 maxlen: 24
213.197.64.0/21 maxlen: 24
91.82.184.0/22 maxlen: 24
91.83.40.0/21 maxlen: 24
91.83.48.0/22 maxlen: 24
91.83.56.0/21 maxlen: 24
91.83.64.0/20 maxlen: 24
194.143.224.0/19 maxlen: 24
91.83.80.0/21 maxlen: 24
91.83.88.0/22 maxlen: 24
91.82.244.0/22 maxlen: 24
195.184.0.0/19 maxlen: 24
91.82.252.0/22 maxlen: 24
91.82.248.0/23 maxlen: 24
91.82.8.0/21 maxlen: 24
91.82.16.0/21 maxlen: 24
212.108.192.0/18 maxlen: 24
91.82.84.0/22 maxlen: 24
91.82.80.0/23 maxlen: 24
91.82.88.0/21 maxlen: 24
91.82.96.0/19 maxlen: 24
194.169.253.0/24 maxlen: 24
91.82.128.0/23 maxlen: 24
213.163.0.0/18 maxlen: 24
91.82.40.0/21 maxlen: 24
91.82.48.0/21 maxlen: 24
91.82.58.0/23 maxlen: 24
91.82.62.0/23 maxlen: 24
91.82.72.0/21 maxlen: 24
81.0.64.0/20 maxlen: 24
81.0.80.0/23 maxlen: 24
81.0.88.0/23 maxlen: 24
81.0.96.0/23 maxlen: 24
81.94.176.0/20 maxlen: 24
81.0.104.0/22 maxlen: 24
81.0.100.0/22 maxlen: 24
82.141.128.0/18 maxlen: 24
193.68.32.0/19 maxlen: 24
81.0.110.0/23 maxlen: 24
81.0.112.0/21 maxlen: 24
81.0.124.0/23 maxlen: 24
81.0.121.0/24 maxlen: 24
81.0.120.0/23 maxlen: 24
81.0.120.0/24 maxlen: 24
2001:1aa0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:3a:c9:f0:1d:ca:68:83:92:1d:b4:f2:33:99:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 20:31:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5e05e5bc95ae4a80b6e29c2e0bad0beae3171b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5c:5f:fb:4e:9a:af:64:d4:22:a5:c6:bd:ad:
80:4c:0b:2a:36:d7:37:5b:2b:2c:ff:82:6c:cc:86:
36:0f:67:f6:d6:62:0e:1f:30:96:10:d3:93:6b:07:
7e:92:ef:09:91:89:1a:d1:a9:a0:d5:6e:6d:38:95:
3f:3f:9f:0f:79:90:1e:b3:58:97:67:cb:35:12:cc:
21:c6:06:67:08:b3:ad:cd:a6:be:4c:be:82:a7:f1:
b7:f3:05:63:e7:d4:33:3a:cb:8c:8c:a2:50:dc:0d:
89:0e:3a:c6:b6:a3:eb:93:91:b6:8c:a7:b6:d9:74:
9b:b0:d7:bb:a1:0f:00:50:f7:a8:2e:c5:c3:56:e3:
ef:f0:f6:a1:84:92:2d:bd:74:6f:c6:51:ac:16:dd:
34:71:51:23:4f:2f:39:78:f0:fe:e1:3c:69:b0:b4:
a1:a4:a2:c3:b3:2b:04:68:ed:57:f1:b0:57:d6:22:
ac:4b:ca:21:c9:9a:54:29:de:9b:4e:63:12:6c:37:
41:8f:85:82:47:9d:70:c4:30:a3:bd:00:5c:69:d5:
c7:9d:76:ee:63:78:07:be:5a:12:4e:52:9b:e0:dc:
af:93:cb:1f:e2:3c:3b:d9:b0:79:f3:c5:d9:4d:17:
e0:aa:ec:89:f6:e6:5e:66:71:37:37:bc:25:d6:8d:
0e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E0:5E:5B:C9:5A:E4:A8:0B:6E:29:C2:E0:BA:D0:BE:AE:31:71:B3
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/teBeW8la5KgLbinC4LrQvq4xcbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.77.192.0/22
62.77.200.0-62.77.239.255
62.77.242.0-62.77.247.255
79.120.128.0/19
79.120.168.0/23
79.120.176.0-79.120.247.255
79.120.250.0/23
81.0.64.0-81.0.81.255
81.0.88.0/23
81.0.96.0/23
81.0.100.0-81.0.107.255
81.0.110.0-81.0.121.255
81.0.124.0/23
81.94.176.0/20
82.131.160.0-82.131.181.255
82.131.192.0/22
82.131.199.0/24
82.131.208.0/21
82.141.128.0/18
82.144.160.0/22
82.144.168.0/22
82.144.178.0-82.144.187.255
82.144.190.0/23
87.97.64.0/20
89.186.98.0-89.186.101.255
89.186.104.0/23
89.186.116.0/23
91.82.8.0-91.82.23.255
91.82.40.0-91.82.55.255
91.82.58.0/23
91.82.62.0/23
91.82.72.0-91.82.81.255
91.82.84.0-91.82.129.255
91.82.148.0-91.82.159.255
91.82.174.0/23
91.82.184.0/22
91.82.192.0-91.82.209.255
91.82.216.0-91.82.227.255
91.82.236.0/22
91.82.244.0-91.82.249.255
91.82.252.0/22
91.83.40.0-91.83.51.255
91.83.56.0-91.83.93.255
91.83.96.0-91.83.101.255
91.83.104.0-91.83.109.255
91.83.122.0-91.83.135.255
91.83.146.0-91.83.153.255
91.83.156.0-91.83.179.255
91.83.208.0-91.83.251.255
91.83.254.0/23
94.125.248.0/21
185.50.28.0/22
193.68.32.0/19
193.91.64.0/19
193.226.194.0-193.226.211.255
193.226.216.0-193.226.225.255
193.226.228.0/22
193.226.234.0-193.226.237.255
193.226.242.0/23
193.226.250.0-193.226.255.255
194.143.224.0/19
194.169.253.0/24
195.184.0.0/19
212.24.160.0/19
212.108.192.0/18
213.16.64.0/18
213.163.0.0/18
213.197.64.0/21
213.253.192.0/18
IPv6:
2001:1aa0::/29
Signature Algorithm: sha256WithRSAEncryption
b5:2a:d3:cc:c0:5e:6a:03:fb:aa:9d:81:24:9f:b0:31:f8:e8:
ed:fd:ab:b6:30:cd:98:77:a8:0a:aa:22:e9:b9:72:84:5e:d6:
6e:0e:fc:f6:28:5f:09:6c:54:95:da:c6:d2:6a:0e:83:69:55:
f8:12:83:f2:de:9f:d8:84:eb:d7:e4:52:e8:57:47:6f:89:e6:
3f:a4:92:9f:57:3d:4c:94:a0:f5:10:1b:77:82:e8:4c:0a:41:
21:b9:33:9c:35:98:a6:28:5e:53:3c:0d:f3:42:79:e6:a9:97:
ab:2d:eb:d8:fe:e2:77:36:57:07:95:85:86:a2:e5:78:54:d2:
52:f4:ce:89:88:40:65:73:4f:3d:09:b2:aa:e1:4e:5b:28:d3:
23:59:e6:67:4a:41:c4:e3:04:9b:83:ea:35:06:f9:0d:ed:0d:
14:56:d7:bf:bb:92:9f:b0:66:00:4e:83:12:31:94:75:95:9f:
c8:3b:b5:50:e9:fd:80:98:4b:74:95:6c:09:33:f9:cc:37:f4:
ad:09:92:67:97:7f:30:70:18:4d:ad:85:4c:ad:07:c5:3f:10:
ad:66:78:28:b2:24:ad:e6:be:93:fd:51:d1:0c:36:58:57:41:
66:6d:32:0b:c7:d4:bf:8e:53:62:97:e0:bd:e0:c8:51:06:c5:
6f:6c:59:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:28:23 2024 by rpki-client on console-ams.rpki-client.org