Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/v_myW5g8bvot8_-RVxDF6OUZkDY.roa
File: v_myW5g8bvot8_-RVxDF6OUZkDY.roa (raw, json)
Hash identifier: o0o6Ne4vg06rbmJhl6of3ndsXVYdpVRxZTqweF/+T68=
Subject key identifier: BF:F9:B2:5B:98:3C:6E:FA:2D:F3:FF:91:57:10:C5:E8:E5:19:90:36
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01932C89853F8A07AFBF6E31348AAE73031F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/v_myW5g8bvot8_-RVxDF6OUZkDY.roa
Signing time: Thu 14 Nov 2024 21:17:10 +0000
ROA not before: Thu 14 Nov 2024 21:17:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28964
IP address blocks: 77.105.8.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
79.175.66.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
178.253.235.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.195.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
188.255.253.0/24 maxlen: 24
212.69.2.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2c:89:85:3f:8a:07:af:bf:6e:31:34:8a:ae:73:03:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 14 21:17:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bff9b25b983c6efa2df3ff915710c5e8e5199036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:50:9f:e0:f2:20:6e:89:65:37:a0:9b:3d:
3a:d5:bd:b2:e6:50:0d:bf:5d:af:bf:d3:1d:7b:56:
f8:5e:ef:72:9e:2b:e8:30:a8:52:99:2e:27:7d:e4:
7b:1e:69:91:86:cc:67:c3:47:75:0e:16:66:96:8f:
03:4b:d0:6d:c6:8a:34:a1:ab:cf:8e:7f:63:1d:40:
4b:d9:fa:1a:50:5f:c6:a7:37:81:f5:c7:94:71:3a:
92:cd:35:48:d7:b2:b9:e3:00:3b:e7:1a:44:c7:d1:
03:9c:4a:67:49:f4:78:8a:81:be:da:26:f6:c1:7e:
b5:bc:69:20:c3:92:c3:b6:85:f1:c5:a6:d5:38:11:
43:87:3d:c5:ec:07:c4:bd:0e:ba:09:f1:cc:81:fb:
39:39:dc:e1:b0:ac:fb:25:a1:09:fb:0c:a2:6b:6e:
dc:3b:4d:b5:e3:22:8c:97:cd:86:28:55:e6:ec:9a:
c4:96:1b:7a:8c:93:0b:9c:25:71:61:52:51:05:7b:
b5:dd:d5:59:e1:66:53:75:64:eb:2c:49:c8:01:c9:
91:3f:bf:d9:59:1f:a5:ec:6e:12:75:18:59:37:a3:
be:6f:1f:68:5a:6e:28:c5:3e:35:d6:78:c2:8f:cf:
fa:58:d3:8d:29:4d:54:39:25:85:4f:1d:f0:78:75:
f3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F9:B2:5B:98:3C:6E:FA:2D:F3:FF:91:57:10:C5:E8:E5:19:90:36
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/v_myW5g8bvot8_-RVxDF6OUZkDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.8.0/24
77.105.39.0/24
79.175.66.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
178.219.2.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.235.0/24
178.253.238.0/24
178.253.245.0-178.253.246.255
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.2.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
41:cb:3b:13:bb:b9:42:3a:00:53:c3:a6:8d:b9:65:1d:81:e9:
be:ec:a8:72:5c:b4:3a:b1:da:b3:41:f7:63:e9:1c:88:c7:4c:
96:32:16:f9:78:c0:da:07:50:7b:01:ba:1b:be:7a:c5:97:07:
80:71:89:66:c7:87:a0:b8:d7:a2:c1:39:3a:bc:d2:f1:a0:69:
29:43:9b:8a:d7:26:89:29:6f:37:41:f8:67:bd:50:fc:98:ff:
d7:1f:5f:77:bf:31:b7:d2:d9:d7:14:cf:18:49:98:41:71:08:
d2:c5:c5:09:70:c4:aa:e1:50:28:ea:bf:bf:4a:6f:29:df:a6:
b9:a0:25:ef:75:83:ae:f1:b3:a1:4f:40:4f:3e:5f:f0:37:0a:
55:91:e5:c5:97:ca:ce:67:61:64:d3:d0:ff:68:66:49:8a:bf:
f2:fe:5c:b2:8e:ef:a4:f3:61:43:96:3c:03:ef:7c:cb:39:20:
88:af:de:a6:b1:63:3a:ad:0e:3a:90:eb:6a:e1:98:61:88:0c:
9d:94:6c:19:ea:ff:11:89:e2:8c:97:d6:84:10:45:1a:43:60:
93:09:4e:92:c3:e7:ff:e5:f6:2b:37:64:2e:da:cc:00:09:6a:
b1:5a:15:b2:eb:25:a4:f7:ad:52:3d:dd:34:1e:33:6d:e5:a6:
c2:a8:01:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:10:34 2024 by rpki-client on console-fra.rpki-client.org