Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/C7zRH1Jrw7K4qkebKM5gx-PMLHo.roa
File: C7zRH1Jrw7K4qkebKM5gx-PMLHo.roa (raw, json)
Hash identifier: V9v5Bwq8jAUyaBzFj3ac3ordtwBsUduLjuOy3ng7dlw=
Subject key identifier: 0B:BC:D1:1F:52:6B:C3:B2:B8:AA:47:9B:28:CE:60:C7:E3:CC:2C:7A
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 019424456A0CDD6C1BD509798AABC2303E51
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/C7zRH1Jrw7K4qkebKM5gx-PMLHo.roa
Signing time: Wed 01 Jan 2025 23:48:36 +0000
ROA not before: Wed 01 Jan 2025 23:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 92.50.14.0/24 maxlen: 24
92.50.15.0/24 maxlen: 24
92.50.16.0/24 maxlen: 24
92.50.17.0/24 maxlen: 24
92.50.18.0/24 maxlen: 24
92.50.19.0/24 maxlen: 24
92.50.20.0/24 maxlen: 24
92.50.21.0/24 maxlen: 24
92.50.22.0/24 maxlen: 24
92.50.23.0/24 maxlen: 24
92.50.24.0/24 maxlen: 24
92.50.25.0/24 maxlen: 24
92.50.26.0/24 maxlen: 24
92.50.27.0/24 maxlen: 24
92.50.28.0/24 maxlen: 24
92.50.29.0/24 maxlen: 24
92.50.30.0/24 maxlen: 24
92.50.31.0/24 maxlen: 24
92.50.32.0/24 maxlen: 24
92.50.33.0/24 maxlen: 24
92.50.34.0/24 maxlen: 24
92.50.35.0/24 maxlen: 24
92.50.36.0/24 maxlen: 24
92.50.37.0/24 maxlen: 24
92.50.38.0/24 maxlen: 24
92.50.39.0/24 maxlen: 24
92.50.40.0/24 maxlen: 24
92.50.41.0/24 maxlen: 24
92.50.42.0/24 maxlen: 24
92.50.43.0/24 maxlen: 24
92.50.44.0/24 maxlen: 24
92.50.45.0/24 maxlen: 24
92.50.46.0/24 maxlen: 24
92.50.47.0/24 maxlen: 24
92.50.48.0/24 maxlen: 24
92.50.49.0/24 maxlen: 24
92.50.50.0/24 maxlen: 24
92.50.51.0/24 maxlen: 24
92.50.52.0/24 maxlen: 24
92.50.53.0/24 maxlen: 24
92.50.54.0/24 maxlen: 24
92.50.55.0/24 maxlen: 24
92.50.56.0/24 maxlen: 24
92.50.57.0/24 maxlen: 24
92.50.58.0/24 maxlen: 24
92.50.59.0/24 maxlen: 24
92.50.60.0/24 maxlen: 24
92.50.61.0/24 maxlen: 24
92.50.62.0/24 maxlen: 24
92.50.63.0/24 maxlen: 24
147.136.78.0/24 maxlen: 24
147.136.79.0/24 maxlen: 24
147.136.84.0/24 maxlen: 24
147.136.86.0/24 maxlen: 24
147.136.87.0/24 maxlen: 24
168.199.133.0/24 maxlen: 24
168.199.134.0/24 maxlen: 24
168.199.135.0/24 maxlen: 24
168.199.136.0/24 maxlen: 24
168.199.137.0/24 maxlen: 24
168.199.138.0/24 maxlen: 24
168.199.139.0/24 maxlen: 24
168.199.140.0/24 maxlen: 24
168.199.141.0/24 maxlen: 24
168.199.142.0/24 maxlen: 24
168.199.143.0/24 maxlen: 24
168.199.144.0/24 maxlen: 24
168.199.145.0/24 maxlen: 24
168.199.146.0/24 maxlen: 24
168.199.147.0/24 maxlen: 24
168.199.148.0/24 maxlen: 24
168.199.149.0/24 maxlen: 24
168.199.150.0/24 maxlen: 24
168.199.151.0/24 maxlen: 24
168.199.152.0/24 maxlen: 24
168.199.153.0/24 maxlen: 24
168.199.154.0/24 maxlen: 24
168.199.155.0/24 maxlen: 24
168.199.156.0/24 maxlen: 24
168.199.157.0/24 maxlen: 24
168.199.158.0/24 maxlen: 24
168.199.159.0/24 maxlen: 24
168.199.164.0/24 maxlen: 24
168.199.166.0/24 maxlen: 24
168.199.167.0/24 maxlen: 24
168.199.168.0/24 maxlen: 24
168.199.174.0/24 maxlen: 24
168.199.202.0/24 maxlen: 24
168.199.203.0/24 maxlen: 24
168.199.204.0/24 maxlen: 24
168.199.206.0/24 maxlen: 24
168.199.208.0/24 maxlen: 24
168.199.211.0/24 maxlen: 24
168.199.216.0/24 maxlen: 24
168.199.217.0/24 maxlen: 24
168.199.218.0/24 maxlen: 24
168.199.219.0/24 maxlen: 24
168.199.220.0/24 maxlen: 24
168.199.221.0/24 maxlen: 24
168.199.222.0/24 maxlen: 24
168.199.223.0/24 maxlen: 24
168.199.224.0/24 maxlen: 24
168.199.226.0/24 maxlen: 24
168.199.228.0/24 maxlen: 24
168.199.229.0/24 maxlen: 24
168.199.230.0/24 maxlen: 24
168.199.232.0/24 maxlen: 24
168.199.240.0/24 maxlen: 24
168.199.241.0/24 maxlen: 24
168.199.242.0/24 maxlen: 24
168.199.243.0/24 maxlen: 24
168.199.244.0/24 maxlen: 24
168.199.245.0/24 maxlen: 24
168.199.246.0/24 maxlen: 24
168.199.247.0/24 maxlen: 24
168.199.248.0/24 maxlen: 24
168.199.249.0/24 maxlen: 24
168.199.250.0/24 maxlen: 24
168.199.251.0/24 maxlen: 24
168.199.252.0/24 maxlen: 24
168.199.253.0/24 maxlen: 24
168.199.254.0/24 maxlen: 24
168.199.255.0/24 maxlen: 24
185.100.58.0/24 maxlen: 24
192.95.85.0/24 maxlen: 24
192.95.86.0/24 maxlen: 24
192.95.91.0/24 maxlen: 24
2001:678:8b4::/48 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 11:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:6a:0c:dd:6c:1b:d5:09:79:8a:ab:c2:30:3e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 23:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0bbcd11f526bc3b2b8aa479b28ce60c7e3cc2c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:68:57:52:ce:0c:47:d8:2a:c4:15:1d:ed:
78:73:c6:ed:bc:cb:b3:83:a1:af:75:fd:2e:c7:8f:
43:06:37:bd:28:a1:ab:e6:c3:91:40:a7:b5:d1:45:
81:12:87:85:e3:61:9e:aa:23:a0:e8:9d:3e:12:11:
6a:d5:63:4e:b3:20:da:38:16:0b:3b:83:06:65:9a:
8f:95:cf:ba:10:3e:5c:37:82:1c:d2:99:f3:b1:d4:
bb:99:87:07:39:1e:31:85:2a:17:f8:8b:d3:70:fc:
91:6d:cb:42:e1:20:52:4e:df:5a:3b:9c:b4:b3:75:
73:ee:e0:09:8a:ac:de:9c:02:83:11:c3:77:a2:66:
f5:18:69:c4:92:56:02:7a:d3:94:af:06:df:78:69:
bd:a6:e0:5f:f6:41:30:53:8b:9d:e8:8c:bc:a7:ce:
b9:52:d9:a5:ee:29:70:2c:05:b1:0b:0a:b3:ea:7d:
5d:44:82:fe:32:d0:e4:40:22:76:ef:8b:23:d7:dc:
7b:2d:02:da:15:c4:87:b8:63:a6:17:1d:52:40:89:
83:0e:d6:ae:09:2d:4b:70:94:0a:4c:a1:58:fc:8b:
c4:46:43:b0:99:44:be:b8:88:73:95:28:dc:8a:f8:
06:d2:ef:da:fc:55:30:f9:db:04:a8:e8:06:ff:1b:
a6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BC:D1:1F:52:6B:C3:B2:B8:AA:47:9B:28:CE:60:C7:E3:CC:2C:7A
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/C7zRH1Jrw7K4qkebKM5gx-PMLHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.50.14.0-92.50.63.255
147.136.78.0/23
147.136.84.0/24
147.136.86.0/23
168.199.133.0-168.199.159.255
168.199.164.0/24
168.199.166.0-168.199.168.255
168.199.174.0/24
168.199.202.0-168.199.204.255
168.199.206.0/24
168.199.208.0/24
168.199.211.0/24
168.199.216.0-168.199.224.255
168.199.226.0/24
168.199.228.0-168.199.230.255
168.199.232.0/24
168.199.240.0/20
185.100.58.0/24
192.95.85.0-192.95.86.255
192.95.91.0/24
IPv6:
2001:678:8b4::/48
Signature Algorithm: sha256WithRSAEncryption
4e:40:52:76:e6:df:88:4a:32:d8:7a:b1:b5:bb:0c:cc:34:dd:
a4:23:87:07:66:0b:26:f2:5c:6d:70:fa:17:c5:13:17:8f:c8:
05:f8:28:34:94:0d:a2:ba:97:49:e6:4b:4b:00:ed:11:da:fa:
63:ef:ce:b8:a4:ef:c9:2a:d3:84:e4:7e:fe:67:62:39:8a:2a:
48:41:91:05:db:67:39:45:7f:ea:c9:4f:31:f4:1a:00:74:31:
04:ac:f8:94:2c:fa:53:d5:16:22:14:88:e7:5c:bf:82:cb:ba:
1c:9f:e8:3f:6e:ac:30:03:c5:f4:b3:21:f2:84:c6:a6:ed:1c:
e1:86:d7:8f:40:fa:ad:3b:26:fe:d6:d1:b0:31:25:a5:42:66:
25:86:61:4e:55:f4:12:47:86:94:92:87:4d:be:9e:bc:93:5c:
fa:64:db:55:b7:0d:5b:62:09:80:b7:5c:2b:58:ac:51:ab:7d:
3a:47:ba:8c:fd:0d:07:3e:12:f1:d2:8a:53:63:17:f8:46:fa:
19:e5:bb:8c:c3:fe:60:41:ad:a3:d4:ed:10:3f:da:48:50:9c:
04:16:ab:10:aa:2f:d6:7b:08:c6:be:0c:7b:ca:ea:39:30:ad:
6f:a5:72:e8:67:10:55:91:fe:3d:44:44:34:6c:22:2b:63:3d:
13:77:5f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 19:11:02 2025 by rpki-client