Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/xK_DUEaernj9J6bR4ugzeny_V40.roa
File: xK_DUEaernj9J6bR4ugzeny_V40.roa (raw, json)
Hash identifier: O91bFHSsQbPl1w7Ro7U6w517868GCg419Yl+ACOtZmk=
Subject key identifier: C4:AF:C3:50:46:9E:AE:78:FD:27:A6:D1:E2:E8:33:7A:7C:BF:57:8D
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 0191C5F39CFCAB71910730DC789B4190D1ED
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/xK_DUEaernj9J6bR4ugzeny_V40.roa
Signing time: Fri 06 Sep 2024 06:09:22 +0000
ROA not before: Fri 06 Sep 2024 06:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39737
IP address blocks: 77.93.160.0/23 maxlen: 23
77.93.162.0/24 maxlen: 24
77.93.164.0/22 maxlen: 22
77.93.168.0/22 maxlen: 22
77.93.176.0/20 maxlen: 20
86.105.181.0/24 maxlen: 24
86.107.183.0/24 maxlen: 24
87.243.0.0/21 maxlen: 21
89.18.0.0/20 maxlen: 20
89.18.0.0/21 maxlen: 21
89.18.0.0/24 maxlen: 24
89.18.1.0/24 maxlen: 24
89.18.2.0/24 maxlen: 24
89.18.3.0/24 maxlen: 24
89.18.4.0/24 maxlen: 24
89.18.5.0/24 maxlen: 24
89.18.6.0/24 maxlen: 24
89.18.7.0/24 maxlen: 24
89.18.8.0/24 maxlen: 24
89.18.9.0/24 maxlen: 24
89.18.10.0/24 maxlen: 24
89.18.11.0/24 maxlen: 24
89.18.12.0/24 maxlen: 24
89.18.13.0/24 maxlen: 24
89.18.14.0/24 maxlen: 24
89.18.15.0/24 maxlen: 24
89.18.31.0/24 maxlen: 24
89.34.72.0/23 maxlen: 23
89.35.74.0/23 maxlen: 23
89.37.120.0/21 maxlen: 21
89.38.140.0/22 maxlen: 22
89.43.193.0/24 maxlen: 24
89.44.232.0/22 maxlen: 22
89.46.160.0/22 maxlen: 22
89.47.224.0/21 maxlen: 21
92.55.131.0/24 maxlen: 24
92.55.132.0/24 maxlen: 24
92.55.134.0/24 maxlen: 24
92.55.135.0/24 maxlen: 24
92.55.144.0/21 maxlen: 21
92.55.152.0/24 maxlen: 24
92.55.153.0/24 maxlen: 24
92.55.154.0/24 maxlen: 24
94.177.32.0/21 maxlen: 21
94.177.40.0/21 maxlen: 21
188.247.129.0/24 maxlen: 24
188.247.132.0/23 maxlen: 23
188.247.226.0/23 maxlen: 23
188.247.238.0/24 maxlen: 24
188.247.239.0/24 maxlen: 24
188.247.240.0/21 maxlen: 21
188.247.248.0/21 maxlen: 21
188.247.252.0/22 maxlen: 22
193.58.243.0/24 maxlen: 24
193.254.242.0/23 maxlen: 23
194.102.221.0/24 maxlen: 24
195.20.145.0/24 maxlen: 24
2a00:1480::/48 maxlen: 48
2a00:1480:1::/48 maxlen: 48
2a00:1480:5::/48 maxlen: 48
2a00:1480:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c5:f3:9c:fc:ab:71:91:07:30:dc:78:9b:41:90:d1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Sep 6 06:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4afc350469eae78fd27a6d1e2e8337a7cbf578d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b6:1a:a3:6c:17:9e:9b:94:d7:65:41:59:54:
3e:45:0f:c8:59:44:08:98:8c:f3:f7:a7:a2:fc:ef:
f4:21:05:39:e8:33:8a:2c:fa:df:94:0f:ae:3d:57:
e7:e3:d1:dd:34:14:cf:0b:eb:e7:4d:09:a2:f8:48:
9a:99:5a:f6:74:69:bf:dd:7c:20:5c:bb:ea:2a:2c:
78:e6:4e:6e:cc:cb:a0:b1:91:50:34:6e:d8:77:13:
36:8e:72:f6:11:98:da:2e:de:21:3a:13:11:3c:41:
9a:45:46:d5:15:ce:ff:49:a2:f6:e8:93:e0:cc:da:
14:e8:c0:0a:94:90:e0:a0:93:07:15:fe:c5:6a:f3:
52:1d:30:7f:73:35:85:23:a0:99:97:e3:25:6a:1b:
11:8f:a6:fe:9b:89:35:86:43:fd:83:ce:51:a7:8c:
47:3c:b8:f4:ea:13:38:0c:0a:9f:91:1f:c7:02:d1:
22:41:27:c6:f3:c9:e5:64:fd:4d:63:1b:50:e3:03:
df:c3:93:44:fb:fa:5e:71:3a:63:20:84:2f:8c:d7:
77:fa:47:05:e9:d9:0c:94:20:73:b4:43:c3:17:d4:
cd:ca:54:36:98:f3:b4:77:38:98:0b:98:81:0a:78:
ed:aa:90:1a:c9:fc:c9:16:18:e2:37:d2:73:28:26:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:AF:C3:50:46:9E:AE:78:FD:27:A6:D1:E2:E8:33:7A:7C:BF:57:8D
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/xK_DUEaernj9J6bR4ugzeny_V40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.160.0-77.93.162.255
77.93.164.0-77.93.171.255
77.93.176.0/20
86.105.181.0/24
86.107.183.0/24
87.243.0.0/21
89.18.0.0/20
89.18.31.0/24
89.34.72.0/23
89.35.74.0/23
89.37.120.0/21
89.38.140.0/22
89.43.193.0/24
89.44.232.0/22
89.46.160.0/22
89.47.224.0/21
92.55.131.0-92.55.132.255
92.55.134.0/23
92.55.144.0-92.55.154.255
94.177.32.0/20
188.247.129.0/24
188.247.132.0/23
188.247.226.0/23
188.247.238.0-188.247.255.255
193.58.243.0/24
193.254.242.0/23
194.102.221.0/24
195.20.145.0/24
IPv6:
2a00:1480::/47
2a00:1480:5::-2a00:1480:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
47:5d:76:ce:90:cd:26:8a:9d:ef:22:a7:0e:8b:93:71:ee:c6:
42:af:be:e6:5e:14:df:00:b6:f7:c7:b9:79:93:d7:9c:39:25:
3b:71:75:6b:ef:f0:91:7a:14:fa:93:8e:cd:a8:5f:8e:48:7b:
3c:63:46:03:9c:2a:43:1a:d6:fb:32:5d:99:88:29:18:9c:aa:
72:6a:8f:13:48:37:3f:29:db:50:8c:c8:6e:d1:92:11:9b:49:
d4:fb:1b:dd:9e:75:a3:5e:74:37:02:ae:08:f5:42:20:44:4a:
19:f6:47:2d:b0:ba:06:f3:d5:f4:b7:be:06:03:2f:90:47:f0:
8b:a7:72:2a:5d:b3:06:26:7d:a2:11:33:06:1d:32:70:52:4e:
20:24:a9:0e:50:1b:b7:17:c8:76:b5:c9:90:4c:1b:ed:61:b6:
70:6d:e6:b0:a0:5a:a6:0d:4f:35:25:01:de:75:b8:e6:77:08:
88:7d:be:98:02:a3:c2:84:62:dd:30:20:13:80:2c:e7:2b:a0:
e4:7d:04:af:65:86:b0:e0:89:b2:3e:36:b6:13:d2:39:71:bf:
b2:1f:83:d1:c3:a3:83:2d:73:da:9a:0b:40:d4:5a:d8:02:aa:
16:14:19:dd:8b:ac:40:1f:30:cb:3d:c9:f0:d3:94:6d:0f:3b:
c6:a7:07:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 09:58:20 2024 by rpki-client on console-ams.rpki-client.org