Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/vIATmj2GMMRJ3YG3xydQustXLss.roa
File: vIATmj2GMMRJ3YG3xydQustXLss.roa (raw, json)
Hash identifier: mvIxIBQlB0exo1H3antJxgUM6cpzr2S25+QNGx60FIc=
Subject key identifier: BC:80:13:9A:3D:86:30:C4:49:DD:81:B7:C7:27:50:BA:CB:57:2E:CB
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 018CC64B671CCB870B82E2976D52D7CA4FA5
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/vIATmj2GMMRJ3YG3xydQustXLss.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9150
IP address blocks: 185.67.64.0/24 maxlen: 24
185.67.66.0/24 maxlen: 24
185.67.65.0/24 maxlen: 24
185.67.67.0/24 maxlen: 24
213.207.64.0/18 maxlen: 18
213.206.192.0/18 maxlen: 18
212.83.192.0/18 maxlen: 18
185.67.64.0/22 maxlen: 22
213.207.95.0/24 maxlen: 24
213.207.94.0/24 maxlen: 24
213.207.93.0/24 maxlen: 24
213.207.98.0/24 maxlen: 24
213.207.97.0/24 maxlen: 24
213.207.96.0/24 maxlen: 24
213.207.92.0/24 maxlen: 24
213.207.99.0/24 maxlen: 24
213.207.102.0/24 maxlen: 24
213.207.101.0/24 maxlen: 24
213.207.100.0/24 maxlen: 24
213.207.105.0/24 maxlen: 24
213.207.104.0/24 maxlen: 24
213.207.103.0/24 maxlen: 24
213.207.109.0/24 maxlen: 24
213.207.108.0/24 maxlen: 24
213.207.107.0/24 maxlen: 24
213.207.112.0/24 maxlen: 24
213.207.111.0/24 maxlen: 24
213.207.110.0/24 maxlen: 24
213.207.106.0/24 maxlen: 24
213.207.113.0/24 maxlen: 24
213.207.116.0/24 maxlen: 24
213.207.115.0/24 maxlen: 24
213.207.114.0/24 maxlen: 24
213.207.118.0/24 maxlen: 24
213.207.117.0/24 maxlen: 24
213.207.123.0/24 maxlen: 24
213.207.122.0/24 maxlen: 24
213.207.121.0/24 maxlen: 24
213.207.125.0/24 maxlen: 24
213.207.124.0/24 maxlen: 24
213.207.120.0/24 maxlen: 24
213.207.119.0/24 maxlen: 24
213.207.126.0/24 maxlen: 24
213.207.127.0/24 maxlen: 24
213.207.64.0/24 maxlen: 24
213.207.67.0/24 maxlen: 24
213.207.66.0/24 maxlen: 24
213.207.65.0/24 maxlen: 24
213.207.71.0/24 maxlen: 24
213.207.70.0/24 maxlen: 24
213.207.69.0/24 maxlen: 24
213.207.68.0/24 maxlen: 24
213.207.74.0/24 maxlen: 24
213.207.73.0/24 maxlen: 24
213.207.72.0/24 maxlen: 24
213.207.78.0/24 maxlen: 24
213.207.77.0/24 maxlen: 24
213.207.76.0/24 maxlen: 24
213.207.75.0/24 maxlen: 24
213.207.81.0/24 maxlen: 24
213.207.80.0/24 maxlen: 24
213.207.79.0/24 maxlen: 24
213.207.85.0/24 maxlen: 24
213.207.84.0/24 maxlen: 24
213.207.83.0/24 maxlen: 24
213.207.82.0/24 maxlen: 24
213.207.88.0/24 maxlen: 24
213.207.87.0/24 maxlen: 24
213.207.86.0/24 maxlen: 24
213.207.91.0/24 maxlen: 24
213.207.90.0/24 maxlen: 24
213.207.89.0/24 maxlen: 24
213.206.243.0/24 maxlen: 24
213.206.242.0/24 maxlen: 24
213.206.241.0/24 maxlen: 24
213.206.246.0/24 maxlen: 24
213.206.245.0/24 maxlen: 24
213.206.244.0/24 maxlen: 24
213.206.253.0/24 maxlen: 24
213.206.252.0/24 maxlen: 24
213.206.251.0/24 maxlen: 24
213.206.247.0/24 maxlen: 24
213.206.250.0/24 maxlen: 24
213.206.249.0/24 maxlen: 24
213.206.248.0/24 maxlen: 24
213.206.254.0/24 maxlen: 24
213.206.255.0/24 maxlen: 24
213.206.192.0/24 maxlen: 24
213.206.195.0/24 maxlen: 24
213.206.194.0/24 maxlen: 24
213.206.193.0/24 maxlen: 24
213.206.198.0/24 maxlen: 24
213.206.197.0/24 maxlen: 24
213.206.196.0/24 maxlen: 24
213.206.199.0/24 maxlen: 24
213.206.202.0/24 maxlen: 24
213.206.201.0/24 maxlen: 24
213.206.200.0/24 maxlen: 24
213.206.205.0/24 maxlen: 24
213.206.204.0/24 maxlen: 24
213.206.203.0/24 maxlen: 24
213.206.206.0/24 maxlen: 24
213.206.212.0/24 maxlen: 24
213.206.211.0/24 maxlen: 24
213.206.210.0/24 maxlen: 24
213.206.213.0/24 maxlen: 24
213.206.209.0/24 maxlen: 24
213.206.208.0/24 maxlen: 24
213.206.207.0/24 maxlen: 24
213.206.216.0/24 maxlen: 24
213.206.215.0/24 maxlen: 24
213.206.214.0/24 maxlen: 24
213.206.219.0/24 maxlen: 24
213.206.218.0/24 maxlen: 24
213.206.217.0/24 maxlen: 24
213.206.226.0/24 maxlen: 24
213.206.225.0/24 maxlen: 24
213.206.224.0/24 maxlen: 24
213.206.223.0/24 maxlen: 24
213.206.222.0/24 maxlen: 24
213.206.221.0/24 maxlen: 24
213.206.220.0/24 maxlen: 24
213.206.229.0/24 maxlen: 24
213.206.228.0/24 maxlen: 24
213.206.227.0/24 maxlen: 24
213.206.233.0/24 maxlen: 24
213.206.232.0/24 maxlen: 24
213.206.231.0/24 maxlen: 24
213.206.230.0/24 maxlen: 24
213.206.240.0/24 maxlen: 24
213.206.239.0/24 maxlen: 24
213.206.238.0/24 maxlen: 24
213.206.237.0/24 maxlen: 24
213.206.236.0/24 maxlen: 24
213.206.235.0/24 maxlen: 24
213.206.234.0/24 maxlen: 24
212.83.192.0/24 maxlen: 24
212.83.194.0/24 maxlen: 24
212.83.193.0/24 maxlen: 24
212.83.198.0/24 maxlen: 24
212.83.197.0/24 maxlen: 24
212.83.196.0/24 maxlen: 24
212.83.195.0/24 maxlen: 24
212.83.199.0/24 maxlen: 24
212.83.255.0/24 maxlen: 24
212.83.254.0/24 maxlen: 24
212.83.201.0/24 maxlen: 24
212.83.200.0/24 maxlen: 24
212.83.205.0/24 maxlen: 24
212.83.204.0/24 maxlen: 24
212.83.203.0/24 maxlen: 24
212.83.202.0/24 maxlen: 24
212.83.206.0/24 maxlen: 24
212.83.212.0/24 maxlen: 24
212.83.211.0/24 maxlen: 24
212.83.210.0/24 maxlen: 24
212.83.209.0/24 maxlen: 24
212.83.213.0/24 maxlen: 24
212.83.208.0/24 maxlen: 24
212.83.207.0/24 maxlen: 24
212.83.215.0/24 maxlen: 24
212.83.214.0/24 maxlen: 24
212.83.219.0/24 maxlen: 24
212.83.218.0/24 maxlen: 24
212.83.217.0/24 maxlen: 24
212.83.216.0/24 maxlen: 24
212.83.226.0/24 maxlen: 24
212.83.225.0/24 maxlen: 24
212.83.224.0/24 maxlen: 24
212.83.223.0/24 maxlen: 24
212.83.222.0/24 maxlen: 24
212.83.221.0/24 maxlen: 24
212.83.220.0/24 maxlen: 24
212.83.229.0/24 maxlen: 24
212.83.228.0/24 maxlen: 24
212.83.227.0/24 maxlen: 24
212.83.233.0/24 maxlen: 24
212.83.232.0/24 maxlen: 24
212.83.231.0/24 maxlen: 24
212.83.230.0/24 maxlen: 24
212.83.239.0/24 maxlen: 24
212.83.238.0/24 maxlen: 24
212.83.237.0/24 maxlen: 24
212.83.240.0/24 maxlen: 24
212.83.236.0/24 maxlen: 24
212.83.235.0/24 maxlen: 24
212.83.234.0/24 maxlen: 24
212.83.243.0/24 maxlen: 24
212.83.242.0/24 maxlen: 24
212.83.241.0/24 maxlen: 24
212.83.246.0/24 maxlen: 24
212.83.245.0/24 maxlen: 24
212.83.244.0/24 maxlen: 24
212.83.253.0/24 maxlen: 24
212.83.252.0/24 maxlen: 24
212.83.251.0/24 maxlen: 24
212.83.250.0/24 maxlen: 24
212.83.249.0/24 maxlen: 24
212.83.248.0/24 maxlen: 24
212.83.247.0/24 maxlen: 24
2001:4018::/32 maxlen: 48
2001:4019::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 16:03:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:67:1c:cb:87:0b:82:e2:97:6d:52:d7:ca:4f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc80139a3d8630c449dd81b7c72750bacb572ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:4f:7a:f6:0c:3e:06:91:c9:3b:f1:8b:f8:
d9:57:e6:65:dc:ed:33:f0:c9:08:e2:9f:83:62:16:
7e:84:c4:57:53:3c:da:ed:3f:df:f6:d2:e1:43:81:
a0:c1:5a:4c:96:69:bd:e4:23:47:19:2b:63:c9:d2:
33:19:6b:85:82:54:d7:16:7d:cc:a6:c2:6d:e5:4a:
6e:02:0b:46:c0:55:1d:10:50:27:65:60:6a:d5:43:
fa:8b:e4:95:f3:36:4f:af:a5:59:48:d3:2d:8a:5f:
76:20:2a:65:a7:e0:38:d5:11:98:07:b1:a4:fd:c5:
02:ed:30:6e:5a:56:47:73:d4:18:cc:44:4d:99:5f:
1b:4b:4c:c6:42:03:09:31:31:e8:5a:ed:ad:43:0d:
66:df:7d:c0:95:0b:2c:24:16:01:7d:1f:7d:b4:42:
ea:01:07:f3:5c:c0:32:27:b0:77:6a:2e:c1:69:22:
bb:fd:9f:70:8b:2c:7d:5d:fe:06:f1:9f:86:3f:11:
2a:3d:c8:21:c2:34:4c:cd:ab:4f:57:46:66:d1:25:
45:a3:64:00:5d:e0:8d:18:57:42:b7:83:cc:74:70:
eb:ca:a8:32:10:1b:8d:4a:77:b6:af:7b:23:cd:8f:
d8:2e:6e:8a:9f:6a:2f:99:03:aa:f7:44:b6:03:f4:
67:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:80:13:9A:3D:86:30:C4:49:DD:81:B7:C7:27:50:BA:CB:57:2E:CB
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/vIATmj2GMMRJ3YG3xydQustXLss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.64.0/22
212.83.192.0/18
213.206.192.0/18
213.207.64.0/18
IPv6:
2001:4018::/31
Signature Algorithm: sha256WithRSAEncryption
3d:17:80:69:ae:a3:5c:08:ad:ab:37:e8:ff:61:84:28:97:a2:
e4:c5:c3:1e:b7:7b:8d:0b:c3:4e:6f:d9:a1:94:3b:41:d7:71:
59:ac:20:a2:6e:d1:38:01:f6:04:1f:49:70:01:32:c1:06:33:
d3:a9:3e:c9:41:b2:ee:a7:3d:fd:bd:7b:ff:f0:a0:93:76:e8:
e4:c6:67:40:6c:19:cc:7c:85:6e:12:ed:f3:57:33:aa:61:d6:
01:f8:2b:c1:a6:ee:dd:e0:61:6e:09:66:64:94:11:a7:16:91:
a9:2a:32:0e:12:09:a3:ce:56:1c:ae:2d:d6:ac:dd:4b:69:6f:
2e:61:09:a1:1c:0b:f6:37:8f:4f:85:e0:88:dd:2b:ec:07:2c:
7f:58:8c:8c:8b:8a:58:22:f9:5c:38:df:de:36:8d:56:dd:f1:
10:68:7e:45:c1:1d:84:6f:79:48:44:50:dd:1d:db:68:93:23:
a4:6d:37:3c:5d:bf:47:7e:c2:cd:2a:3e:e3:99:96:5c:81:a9:
8d:36:3c:be:fc:55:9b:6f:ae:ee:47:2c:94:fa:57:a2:32:41:
d9:b7:59:eb:31:a3:94:fe:7e:1e:a4:a9:81:90:ec:c2:c2:3c:
ed:7f:5a:37:45:80:01:8c:48:8a:f5:57:ad:ab:de:e3:df:ab:
3f:7c:66:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 21:59:57 2024 by rpki-client on console-ams.rpki-client.org