Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/9oo_4Gw7mdRmW5Xf9uhOgupAdA0.roa
File: 9oo_4Gw7mdRmW5Xf9uhOgupAdA0.roa (raw, json)
Hash identifier: 9P7NF0IjRAqOJrLhSM0MTLBN4ypiRw7Ae6rvJF/SkxQ=
Subject key identifier: F6:8A:3F:E0:6C:3B:99:D4:66:5B:95:DF:F6:E8:4E:82:EA:40:74:0D
Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Certificate serial: 018D7DE683AB164C195675E35E746347E292
Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/9oo_4Gw7mdRmW5Xf9uhOgupAdA0.roa
Signing time: Tue 06 Feb 2024 10:11:15 +0000
ROA not before: Tue 06 Feb 2024 10:11:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41221
IP address blocks: 5.56.64.0/18 maxlen: 24
37.75.16.0/20 maxlen: 24
37.75.64.0/18 maxlen: 24
46.55.0.0/17 maxlen: 24
85.204.176.0/21 maxlen: 24
86.104.196.0/22 maxlen: 24
86.105.56.0/21 maxlen: 24
86.105.80.0/21 maxlen: 24
86.105.172.0/22 maxlen: 24
86.105.208.0/22 maxlen: 24
86.106.144.0/21 maxlen: 24
86.106.208.0/20 maxlen: 24
86.107.64.0/22 maxlen: 24
86.107.160.0/21 maxlen: 24
89.32.56.0/21 maxlen: 24
89.32.136.0/21 maxlen: 24
89.32.172.0/22 maxlen: 24
89.32.252.0/22 maxlen: 24
89.34.64.0/21 maxlen: 24
89.34.112.0/21 maxlen: 24
89.34.192.0/21 maxlen: 24
89.34.204.0/22 maxlen: 24
89.34.232.0/22 maxlen: 24
89.35.8.0/21 maxlen: 24
89.35.40.0/21 maxlen: 24
89.35.84.0/22 maxlen: 24
89.35.200.0/22 maxlen: 24
89.36.156.0/22 maxlen: 24
89.37.44.0/22 maxlen: 24
89.37.104.0/24 maxlen: 24
89.38.32.0/22 maxlen: 24
89.38.64.0/22 maxlen: 24
89.38.76.0/22 maxlen: 24
89.39.76.0/22 maxlen: 24
89.39.84.0/22 maxlen: 24
89.39.96.0/21 maxlen: 24
89.39.112.0/21 maxlen: 24
89.40.228.0/22 maxlen: 24
89.41.64.0/18 maxlen: 24
89.42.64.0/22 maxlen: 24
89.42.72.0/21 maxlen: 24
89.42.104.0/22 maxlen: 24
89.42.128.0/22 maxlen: 24
89.42.180.0/22 maxlen: 24
89.42.224.0/22 maxlen: 24
89.43.128.0/22 maxlen: 24
89.43.168.0/22 maxlen: 24
89.44.152.0/22 maxlen: 24
89.45.40.0/22 maxlen: 24
89.46.164.0/22 maxlen: 24
92.114.128.0/17 maxlen: 24
93.113.64.0/21 maxlen: 24
93.113.80.0/21 maxlen: 24
93.113.92.0/22 maxlen: 24
93.113.244.0/22 maxlen: 24
93.115.136.0/21 maxlen: 24
93.116.0.0/16 maxlen: 24
93.117.48.0/20 maxlen: 24
93.117.68.0/22 maxlen: 24
93.117.72.0/21 maxlen: 24
93.117.128.0/21 maxlen: 24
93.117.140.0/22 maxlen: 24
93.117.144.0/21 maxlen: 24
93.117.156.0/22 maxlen: 24
93.117.160.0/21 maxlen: 24
93.117.168.0/22 maxlen: 24
93.118.176.0/22 maxlen: 24
93.118.188.0/22 maxlen: 24
93.119.96.0/21 maxlen: 24
93.119.108.0/22 maxlen: 24
93.119.128.0/21 maxlen: 24
93.119.140.0/22 maxlen: 24
93.119.144.0/21 maxlen: 24
93.119.160.0/21 maxlen: 24
93.119.196.0/22 maxlen: 24
93.119.200.0/21 maxlen: 24
93.119.228.0/22 maxlen: 24
93.119.232.0/21 maxlen: 24
94.176.64.0/20 maxlen: 24
109.185.0.0/16 maxlen: 24
178.132.112.0/20 maxlen: 24
178.132.128.0/19 maxlen: 24
185.28.104.0/22 maxlen: 24
188.208.96.0/22 maxlen: 24
188.208.104.0/22 maxlen: 24
188.208.112.0/22 maxlen: 24
188.208.120.0/21 maxlen: 24
188.208.192.0/22 maxlen: 24
188.208.204.0/22 maxlen: 24
188.209.216.0/21 maxlen: 24
188.210.240.0/21 maxlen: 24
188.210.248.0/22 maxlen: 24
188.212.0.0/22 maxlen: 24
188.212.8.0/21 maxlen: 24
188.212.24.0/21 maxlen: 24
188.212.40.0/21 maxlen: 24
188.213.36.0/22 maxlen: 24
188.213.52.0/22 maxlen: 24
188.213.220.0/22 maxlen: 24
188.213.236.0/22 maxlen: 24
188.213.244.0/22 maxlen: 24
188.214.60.0/22 maxlen: 24
188.214.136.0/22 maxlen: 24
188.214.144.0/22 maxlen: 24
188.214.200.0/21 maxlen: 24
188.214.228.0/22 maxlen: 24
188.215.236.0/22 maxlen: 24
188.215.252.0/22 maxlen: 24
188.237.0.0/16 maxlen: 24
212.0.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:e6:83:ab:16:4c:19:56:75:e3:5e:74:63:47:e2:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Validity
Not Before: Feb 6 10:11:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f68a3fe06c3b99d4665b95dff6e84e82ea40740d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:0f:8a:32:fa:73:f4:2d:01:4f:ef:20:17:
30:5d:0f:83:15:ab:72:da:2a:6f:63:2d:28:18:a5:
a5:29:33:07:05:7f:27:e8:ea:48:10:e6:0d:3f:db:
f3:72:f9:97:87:18:7c:07:fb:d3:aa:40:e2:ae:b3:
d9:2e:ec:19:53:d5:f0:1c:5a:44:0d:0d:b6:75:f7:
c9:17:3c:42:cd:d4:f6:61:38:b1:5f:41:6c:eb:59:
0c:a8:7d:11:ea:3a:01:5f:2b:4a:56:c4:0c:11:ff:
94:bc:f7:9c:eb:b7:bc:39:bc:2d:8b:a5:c0:50:48:
b2:75:6b:3c:b5:50:f9:f5:92:63:6d:a0:8d:35:6a:
51:05:c6:1c:aa:d2:a9:95:3b:15:ce:9d:56:ac:5e:
a9:44:b8:f8:ca:cd:e4:4c:b5:aa:9a:fd:e7:bc:91:
e1:f3:d5:b4:de:3b:83:53:00:3e:87:88:c5:40:f2:
8a:31:6d:a7:2c:3f:91:c1:36:d1:97:81:95:96:4b:
52:ed:aa:92:1e:ca:5d:b3:cb:26:dc:1c:25:8c:d4:
65:4e:f1:fa:7b:0d:7a:88:87:c7:df:88:ea:11:eb:
af:e8:55:61:2a:e6:bb:4a:95:04:ae:06:47:4b:3d:
48:b6:2e:ef:f2:3e:ec:af:3b:ac:a6:66:56:38:54:
89:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8A:3F:E0:6C:3B:99:D4:66:5B:95:DF:F6:E8:4E:82:EA:40:74:0D
X509v3 Authority Key Identifier:
keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/9oo_4Gw7mdRmW5Xf9uhOgupAdA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.64.0/18
37.75.16.0/20
37.75.64.0/18
46.55.0.0/17
85.204.176.0/21
86.104.196.0/22
86.105.56.0/21
86.105.80.0/21
86.105.172.0/22
86.105.208.0/22
86.106.144.0/21
86.106.208.0/20
86.107.64.0/22
86.107.160.0/21
89.32.56.0/21
89.32.136.0/21
89.32.172.0/22
89.32.252.0/22
89.34.64.0/21
89.34.112.0/21
89.34.192.0/21
89.34.204.0/22
89.34.232.0/22
89.35.8.0/21
89.35.40.0/21
89.35.84.0/22
89.35.200.0/22
89.36.156.0/22
89.37.44.0/22
89.37.104.0/24
89.38.32.0/22
89.38.64.0/22
89.38.76.0/22
89.39.76.0/22
89.39.84.0/22
89.39.96.0/21
89.39.112.0/21
89.40.228.0/22
89.41.64.0/18
89.42.64.0/22
89.42.72.0/21
89.42.104.0/22
89.42.128.0/22
89.42.180.0/22
89.42.224.0/22
89.43.128.0/22
89.43.168.0/22
89.44.152.0/22
89.45.40.0/22
89.46.164.0/22
92.114.128.0/17
93.113.64.0/21
93.113.80.0/21
93.113.92.0/22
93.113.244.0/22
93.115.136.0/21
93.116.0.0/16
93.117.48.0/20
93.117.68.0-93.117.79.255
93.117.128.0/21
93.117.140.0-93.117.151.255
93.117.156.0-93.117.171.255
93.118.176.0/22
93.118.188.0/22
93.119.96.0/21
93.119.108.0/22
93.119.128.0/21
93.119.140.0-93.119.151.255
93.119.160.0/21
93.119.196.0-93.119.207.255
93.119.228.0-93.119.239.255
94.176.64.0/20
109.185.0.0/16
178.132.112.0-178.132.159.255
185.28.104.0/22
188.208.96.0/22
188.208.104.0/22
188.208.112.0/22
188.208.120.0/21
188.208.192.0/22
188.208.204.0/22
188.209.216.0/21
188.210.240.0-188.210.251.255
188.212.0.0/22
188.212.8.0/21
188.212.24.0/21
188.212.40.0/21
188.213.36.0/22
188.213.52.0/22
188.213.220.0/22
188.213.236.0/22
188.213.244.0/22
188.214.60.0/22
188.214.136.0/22
188.214.144.0/22
188.214.200.0/21
188.214.228.0/22
188.215.236.0/22
188.215.252.0/22
188.237.0.0/16
212.0.192.0/19
Signature Algorithm: sha256WithRSAEncryption
60:4c:b5:35:a6:e4:dc:65:84:1c:ed:eb:6a:82:e3:c4:b2:d3:
1c:9c:5a:a7:c4:92:42:6b:97:12:0b:8f:ec:c7:26:c4:d1:c9:
e7:d3:84:0b:64:0c:1d:aa:3a:50:a7:43:2d:23:43:b5:61:c4:
c5:18:06:aa:5e:d6:a8:99:0f:97:4f:3f:18:d0:be:97:8e:67:
79:d8:27:48:4f:ee:68:ef:e3:2c:42:b4:35:71:dc:a8:dd:a3:
ca:85:f1:8d:ca:50:d9:ce:e8:c5:d3:ad:b3:29:15:0d:bb:97:
49:f6:27:47:dd:60:38:ad:a1:07:58:da:e2:eb:d0:7a:17:48:
c5:d5:8e:2d:d2:10:e3:16:bb:84:11:89:60:c0:16:16:12:52:
34:31:7a:f7:d6:46:fa:e0:fd:6f:d1:94:73:f3:fa:d4:7a:8a:
79:0f:0f:99:20:23:3b:8f:6c:58:3b:c7:96:99:13:e6:89:12:
53:65:e5:db:10:fa:9a:e3:79:82:e3:79:12:09:74:13:d9:32:
a2:3d:8e:43:0e:85:50:eb:31:d2:bd:cb:89:a1:81:e5:36:97:
af:cc:2d:f3:a7:e9:86:b3:ef:7f:ee:ad:cc:33:1a:20:23:56:
fa:f8:d3:70:c2:e2:47:bf:48:67:1f:52:1c:9d:6c:38:c3:c2:
ea:57:cd:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:18:47 2024 by rpki-client on console-fra.rpki-client.org