Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/tvCNB8ybHduT-KKPn6p4R5UEM70.roa
File: tvCNB8ybHduT-KKPn6p4R5UEM70.roa (raw, json)
Hash identifier: V1Elm8lopx/YZeMROXgpXOsg0vOUnchXki1jmpTSpvY=
Subject key identifier: B6:F0:8D:07:CC:9B:1D:DB:93:F8:A2:8F:9F:AA:78:47:95:04:33:BD
Certificate issuer: /CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Certificate serial: 018CC7955BF91496A9C4B8E68EA2E5135B44
Authority key identifier: 1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/tvCNB8ybHduT-KKPn6p4R5UEM70.roa
Signing time: Tue 02 Jan 2024 00:31:43 +0000
ROA not before: Tue 02 Jan 2024 00:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39273
IP address blocks: 77.92.165.0/24 maxlen: 24
77.92.166.0/24 maxlen: 24
77.92.163.0/24 maxlen: 24
77.92.164.0/24 maxlen: 24
77.92.161.0/24 maxlen: 24
77.92.160.0/21 maxlen: 21
77.92.162.0/24 maxlen: 24
77.92.160.0/19 maxlen: 19
77.92.160.0/24 maxlen: 24
77.92.172.0/24 maxlen: 24
77.92.170.0/24 maxlen: 24
77.92.171.0/24 maxlen: 24
77.92.168.0/24 maxlen: 24
77.92.169.0/24 maxlen: 24
77.92.167.0/24 maxlen: 24
77.92.168.0/21 maxlen: 21
77.92.173.0/24 maxlen: 24
77.92.179.0/24 maxlen: 24
77.92.177.0/24 maxlen: 24
77.92.178.0/24 maxlen: 24
77.92.175.0/24 maxlen: 24
77.92.176.0/24 maxlen: 24
77.92.176.0/21 maxlen: 21
77.92.174.0/24 maxlen: 24
77.92.186.0/24 maxlen: 24
77.92.184.0/21 maxlen: 21
77.92.184.0/24 maxlen: 24
77.92.185.0/24 maxlen: 24
77.92.182.0/24 maxlen: 24
77.92.183.0/24 maxlen: 24
77.92.181.0/24 maxlen: 24
77.92.180.0/24 maxlen: 24
77.92.187.0/24 maxlen: 24
77.92.191.0/24 maxlen: 24
77.92.189.0/24 maxlen: 24
77.92.190.0/24 maxlen: 24
77.92.188.0/24 maxlen: 24
78.110.79.0/24 maxlen: 24
81.22.25.0/24 maxlen: 24
81.22.26.0/24 maxlen: 24
81.22.30.0/24 maxlen: 24
81.22.31.0/24 maxlen: 24
81.22.28.0/24 maxlen: 24
81.22.29.0/24 maxlen: 24
81.22.27.0/24 maxlen: 24
81.22.16.0/20 maxlen: 20
81.22.16.0/24 maxlen: 24
81.22.17.0/24 maxlen: 24
81.22.23.0/24 maxlen: 24
81.22.24.0/24 maxlen: 24
81.22.21.0/24 maxlen: 24
81.22.22.0/24 maxlen: 24
81.22.20.0/24 maxlen: 24
81.22.18.0/24 maxlen: 24
81.22.19.0/24 maxlen: 24
78.110.64.0/24 maxlen: 24
78.110.64.0/20 maxlen: 20
78.110.64.0/21 maxlen: 21
78.110.70.0/24 maxlen: 24
78.110.71.0/24 maxlen: 24
78.110.68.0/24 maxlen: 24
78.110.69.0/24 maxlen: 24
78.110.67.0/24 maxlen: 24
78.110.65.0/24 maxlen: 24
78.110.66.0/24 maxlen: 24
78.110.75.0/24 maxlen: 24
78.110.77.0/24 maxlen: 24
77.83.91.0/24 maxlen: 24
78.110.78.0/24 maxlen: 24
77.83.89.0/24 maxlen: 24
78.110.76.0/24 maxlen: 24
77.83.90.0/24 maxlen: 24
78.110.74.0/24 maxlen: 24
77.83.88.0/24 maxlen: 24
77.83.88.0/22 maxlen: 22
78.110.72.0/21 maxlen: 21
78.110.72.0/24 maxlen: 24
78.110.73.0/24 maxlen: 24
87.236.50.0/24 maxlen: 24
87.236.48.0/21 maxlen: 21
87.236.51.0/24 maxlen: 24
87.236.48.0/22 maxlen: 22
87.236.48.0/24 maxlen: 24
87.236.49.0/24 maxlen: 24
185.33.178.0/24 maxlen: 24
185.33.179.0/24 maxlen: 24
185.33.177.0/24 maxlen: 24
185.33.176.0/24 maxlen: 24
185.33.176.0/22 maxlen: 22
87.236.54.0/24 maxlen: 24
87.236.52.0/22 maxlen: 22
87.236.52.0/24 maxlen: 24
87.236.53.0/24 maxlen: 24
87.236.55.0/24 maxlen: 24
2a04:8ac0::/29 maxlen: 29
2a00:6600::/29 maxlen: 29
2a00:6600::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/HCiwfBV6XcYTySZNr4nnyGDjPmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/HCiwfBV6XcYTySZNr4nnyGDjPmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5b:f9:14:96:a9:c4:b8:e6:8e:a2:e5:13:5b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Validity
Not Before: Jan 2 00:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6f08d07cc9b1ddb93f8a28f9faa7847950433bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:37:7a:f5:c3:22:e8:c3:e9:fa:cf:45:ed:dd:
e2:dd:70:c9:87:08:0e:00:f1:fb:8e:28:e1:6a:db:
6a:8d:3c:2f:68:40:63:e5:e6:b5:d9:27:72:8d:0a:
14:ad:89:fe:d3:db:30:1b:96:4c:99:dd:67:19:b7:
f2:89:6b:ce:05:a0:06:91:a1:ba:ee:d4:b6:5b:c4:
b9:b5:fc:ec:75:fa:6b:fb:04:5d:88:2f:4c:26:a8:
91:cd:71:fd:4e:be:1e:ca:cd:66:34:ca:ed:f9:87:
d2:ea:09:41:a8:5a:2c:49:cc:4f:3c:ef:cb:2d:dc:
97:a4:9d:c2:31:d3:29:f2:50:76:c6:9b:d6:29:ee:
b7:f6:f1:0e:6d:65:de:f4:c8:09:0e:ef:03:81:a1:
ec:29:c6:7f:1c:09:d9:0f:63:2d:58:f0:0e:b7:56:
a0:b5:dc:d2:cc:13:9c:07:97:2d:80:b9:89:bb:f9:
62:74:8a:8b:99:d6:2a:c1:e6:e4:ff:80:07:d0:4e:
a1:0d:e3:98:dd:5e:65:df:30:10:c9:1e:74:cd:a5:
78:7c:51:43:26:31:b5:9f:5b:b2:0a:36:ce:70:5f:
21:2f:09:00:1b:a4:f3:56:30:72:9b:46:55:ec:7f:
78:25:5f:d1:40:42:d4:df:97:92:9e:94:10:f6:3e:
91:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F0:8D:07:CC:9B:1D:DB:93:F8:A2:8F:9F:AA:78:47:95:04:33:BD
X509v3 Authority Key Identifier:
keyid:1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/tvCNB8ybHduT-KKPn6p4R5UEM70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/HCiwfBV6XcYTySZNr4nnyGDjPmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.88.0/22
77.92.160.0/19
78.110.64.0/20
81.22.16.0/20
87.236.48.0/21
185.33.176.0/22
IPv6:
2a00:6600::/29
2a04:8ac0::/29
Signature Algorithm: sha256WithRSAEncryption
d6:d0:6d:de:89:b5:54:c9:64:39:39:2e:cc:0d:18:c2:01:f5:
fe:c4:37:85:4b:e2:a7:9d:12:c0:52:fc:02:3a:75:27:57:75:
83:5b:5b:4a:fd:99:be:51:0f:6d:6e:8f:fe:46:20:db:23:56:
ad:99:c6:6c:bb:e2:61:bd:7d:d1:41:39:79:c4:0e:e5:7e:90:
3a:e8:2c:f1:09:bd:b8:c9:34:e7:ab:7e:3f:d7:60:67:b3:ec:
12:f2:1d:0c:11:db:2f:d8:63:a2:99:32:b0:22:a1:bc:35:1b:
9b:e8:0f:cf:57:3e:60:9c:d8:bb:75:03:43:4f:ed:fc:37:6b:
08:36:fb:78:6c:80:8b:b2:43:e8:e6:87:63:d9:40:80:8c:9b:
a0:fa:d8:75:e3:7d:ad:5b:0f:aa:41:f7:f4:64:2c:5e:c3:13:
f2:b7:07:33:47:fd:f0:a6:5c:b9:24:08:75:c6:f4:f1:1d:5e:
ef:0c:b2:25:9f:bd:bf:e4:ce:b2:5b:38:03:93:57:c5:1f:1f:
3c:e8:c2:3b:26:08:10:0b:eb:38:0f:10:a9:f0:aa:d2:cc:f5:
cd:6f:63:51:ff:25:ce:19:05:bf:3f:14:fa:94:3d:28:ef:4f:
c8:dd:98:8b:34:59:7b:ea:be:53:03:98:3b:5d:99:09:8a:ce:
53:43:91:e9
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgISAYzHlVv5FJapxLjmjqLlE1tEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjhiMDdjMTU3YTVkYzYxM2M5MjY0ZGFmODllN2M4NjBl
MzNlNjMwHhcNMjQwMTAyMDAzMTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmYwOGQwN2NjOWIxZGRiOTNmOGEyOGY5ZmFhNzg0Nzk1MDQzM2JkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTd69cMi6MPp+s9F7d3i3XDJhwgO
APH7jijhattqjTwvaEBj5ea12SdyjQoUrYn+09swG5ZMmd1nGbfyiWvOBaAGkaG6
7tS2W8S5tfzsdfpr+wRdiC9MJqiRzXH9Tr4eys1mNMrt+YfS6glBqFosScxPPO/L
LdyXpJ3CMdMp8lB2xpvWKe639vEObWXe9MgJDu8DgaHsKcZ/HAnZD2MtWPAOt1ag
tdzSzBOcB5ctgLmJu/lidIqLmdYqwebk/4AH0E6hDeOY3V5l3zAQyR50zaV4fFFD
JjG1n1uyCjbOcF8hLwkAG6TzVjBym0ZV7H94JV/RQELU35eSnpQQ9j6RGwIDAQAB
o4ICPTCCAjkwHQYDVR0OBBYEFLbwjQfMmx3bk/iij5+qeEeVBDO9MB8GA1UdIwQY
MBaAFBwosHwVel3GE8kmTa+J58hg4z5jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENpd2ZCVjZYY1lUeVNaTnI0bm55R0RqUG1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9mZTdkZmMtMTI2NC00Yzk0LTliY2Mt
OTYzMzM0ODllODU1LzEvdHZDTkI4eWJIZHVULUtLUG42cDRSNVVFTTcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9mZTdkZmMtMTI2NC00Yzk0LTliY2MtOTYzMzM0ODllODU1
LzEvSENpd2ZCVjZYY1lUeVNaTnI0bm55R0RqUG1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCTVNYAwQF
TVygAwQETm5AAwQEURYQAwQDV+wwAwQCuSGwMBQEAgACMA4DBQMqAGYAAwUDKgSK
wDANBgkqhkiG9w0BAQsFAAOCAQEA1tBt3om1VMlkOTkuzA0YwgH1/sQ3hUvip50S
wFL8Ajp1J1d1g1tbSv2ZvlEPbW6P/kYg2yNWrZnGbLviYb190UE5ecQO5X6QOugs
8Qm9uMk056t+P9dgZ7PsEvIdDBHbL9hjopkysCKhvDUbm+gPz1c+YJzYu3UDQ0/t
/DdrCDb7eGyAi7JD6OaHY9lAgIyboPrYdeN9rVsPqkH39GQsXsMT8rcHM0f98KZc
uSQIdcb08R1e7wyyJZ+9v+TOsls4A5NXxR8fPOjCOyYIEAvrOA8QqfCq0sz1zW9j
Uf8lzhkFvz8U+pQ9KO9PyN2YizRZe+q+UwOYO12ZCYrOU0OR6Q==
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:56:54 2024 by rpki-client on console-fra.rpki-client.org