Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/Gt-pVmSOoYWRvHLgSjbQ-OZG9Gw.roa
File: Gt-pVmSOoYWRvHLgSjbQ-OZG9Gw.roa (raw, json)
Hash identifier: jMZU9WxWCEqvNky2H5w95YNRd57AN7v2Ou9+wpKeEU4=
Subject key identifier: 1A:DF:A9:56:64:8E:A1:85:91:BC:72:E0:4A:36:D0:F8:E6:46:F4:6C
Certificate issuer: /CN=d76d71d8845d2fe296a46d79176f590d8db4f16a
Certificate serial: 018CC87157F6C40A902179D2800705ED8F72
Authority key identifier: D7:6D:71:D8:84:5D:2F:E2:96:A4:6D:79:17:6F:59:0D:8D:B4:F1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/121x2IRdL-KWpG15F29ZDY208Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/Gt-pVmSOoYWRvHLgSjbQ-OZG9Gw.roa
Signing time: Tue 02 Jan 2024 04:32:00 +0000
ROA not before: Tue 02 Jan 2024 04:32:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31148
IP address blocks: 94.76.105.77/32 maxlen: 32
94.76.105.78/32 maxlen: 32
94.76.105.73/32 maxlen: 32
94.76.105.74/32 maxlen: 32
193.24.25.14/32 maxlen: 32
94.76.105.109/32 maxlen: 32
94.76.105.110/32 maxlen: 32
94.76.105.105/32 maxlen: 32
94.76.105.106/32 maxlen: 32
94.76.104.121/32 maxlen: 32
94.76.104.122/32 maxlen: 32
94.76.106.117/32 maxlen: 32
94.76.104.117/32 maxlen: 32
94.76.104.118/32 maxlen: 32
94.76.106.118/32 maxlen: 32
94.76.106.113/32 maxlen: 32
94.76.106.114/32 maxlen: 32
94.76.105.13/32 maxlen: 32
109.251.255.186/32 maxlen: 32
94.76.105.14/32 maxlen: 32
109.251.255.185/32 maxlen: 32
193.24.25.93/32 maxlen: 32
94.76.105.5/32 maxlen: 32
109.251.255.178/32 maxlen: 32
109.251.255.177/32 maxlen: 32
94.76.105.6/32 maxlen: 32
109.251.255.182/32 maxlen: 32
193.24.25.85/32 maxlen: 32
193.24.25.86/32 maxlen: 32
109.251.255.181/32 maxlen: 32
193.24.25.73/32 maxlen: 32
94.76.105.25/32 maxlen: 32
109.251.255.174/32 maxlen: 32
109.251.255.173/32 maxlen: 32
94.76.105.26/32 maxlen: 32
109.251.255.154/32 maxlen: 32
109.251.255.153/32 maxlen: 32
94.76.106.41/32 maxlen: 32
94.76.106.42/32 maxlen: 32
185.124.168.0/22 maxlen: 24
109.251.252.146/32 maxlen: 32
94.76.104.37/32 maxlen: 32
94.76.104.38/32 maxlen: 32
109.251.252.145/32 maxlen: 32
46.219.0.0/16 maxlen: 24
109.251.252.150/32 maxlen: 32
94.76.104.33/32 maxlen: 32
94.76.104.34/32 maxlen: 32
109.251.252.149/32 maxlen: 32
109.251.255.138/32 maxlen: 32
109.251.255.137/32 maxlen: 32
94.76.104.56/32 maxlen: 32
109.251.252.142/32 maxlen: 32
94.76.104.57/32 maxlen: 32
109.251.252.141/32 maxlen: 32
78.159.32.0/19 maxlen: 24
94.76.104.52/32 maxlen: 32
94.76.104.53/32 maxlen: 32
193.24.25.0/24 maxlen: 24
109.251.255.134/32 maxlen: 32
109.251.255.133/32 maxlen: 32
89.252.0.0/18 maxlen: 24
109.251.255.126/32 maxlen: 32
109.251.255.125/32 maxlen: 32
212.22.192.0/19 maxlen: 24
94.76.104.197/32 maxlen: 32
109.251.255.114/32 maxlen: 32
94.76.104.198/32 maxlen: 32
109.251.255.113/32 maxlen: 32
109.251.255.118/32 maxlen: 32
94.76.104.193/32 maxlen: 32
109.251.255.117/32 maxlen: 32
94.76.104.194/32 maxlen: 32
94.76.105.217/32 maxlen: 32
94.76.105.218/32 maxlen: 32
89.252.40.101/32 maxlen: 32
89.252.35.101/32 maxlen: 32
193.24.25.129/32 maxlen: 32
89.252.35.102/32 maxlen: 32
89.252.40.102/32 maxlen: 32
94.76.104.209/32 maxlen: 32
89.252.40.97/32 maxlen: 32
89.252.40.98/32 maxlen: 32
94.76.104.210/32 maxlen: 32
109.251.255.82/32 maxlen: 32
109.251.255.81/32 maxlen: 32
109.251.0.0/16 maxlen: 24
109.251.255.86/32 maxlen: 32
109.251.255.85/32 maxlen: 32
109.251.255.74/32 maxlen: 32
109.251.255.73/32 maxlen: 32
188.231.128.0/17 maxlen: 24
109.251.252.66/32 maxlen: 32
94.76.104.245/32 maxlen: 32
109.251.252.65/32 maxlen: 32
94.76.64.0/18 maxlen: 24
94.76.104.246/32 maxlen: 32
193.24.25.209/32 maxlen: 32
109.251.255.42/32 maxlen: 32
193.24.25.201/32 maxlen: 32
193.24.25.202/32 maxlen: 32
109.251.255.41/32 maxlen: 32
193.24.25.205/32 maxlen: 32
193.24.25.206/32 maxlen: 32
109.251.255.34/32 maxlen: 32
109.251.255.33/32 maxlen: 32
81.95.176.0/20 maxlen: 24
109.251.255.38/32 maxlen: 32
109.251.255.37/32 maxlen: 32
109.251.255.30/32 maxlen: 32
109.251.255.29/32 maxlen: 32
109.251.255.18/32 maxlen: 32
109.251.255.17/32 maxlen: 32
109.251.255.10/32 maxlen: 32
109.251.255.9/32 maxlen: 32
109.251.255.14/32 maxlen: 32
94.76.104.185/32 maxlen: 32
94.76.104.186/32 maxlen: 32
109.251.255.13/32 maxlen: 32
109.251.255.2/32 maxlen: 32
109.251.255.1/32 maxlen: 32
109.251.255.6/32 maxlen: 32
109.251.255.5/32 maxlen: 32
2a00:1228::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/121x2IRdL-KWpG15F29ZDY208Wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/121x2IRdL-KWpG15F29ZDY208Wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/121x2IRdL-KWpG15F29ZDY208Wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 10:03:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:57:f6:c4:0a:90:21:79:d2:80:07:05:ed:8f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76d71d8845d2fe296a46d79176f590d8db4f16a
Validity
Not Before: Jan 2 04:32:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1adfa956648ea18591bc72e04a36d0f8e646f46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a3:51:e8:6f:30:3e:c3:66:3f:8c:ba:0c:33:
07:6e:f0:be:29:d2:6e:fc:ec:ac:11:88:b7:c6:93:
f3:41:90:16:48:ef:65:c2:03:f9:21:66:01:0c:31:
8f:49:65:a1:d1:ef:a3:1d:c2:fb:80:86:7c:20:a3:
4e:3a:88:e9:4f:e1:e8:5b:fe:38:5b:e9:08:5c:75:
10:59:4e:8c:2d:77:7b:fc:72:57:98:f2:9c:92:8a:
9a:86:97:d8:06:19:7f:9b:d3:4f:47:f2:73:10:74:
26:d2:f3:93:e2:07:21:5e:a7:c2:80:b7:8b:f1:cc:
9f:68:d5:a0:a2:32:92:0d:b3:04:89:05:e5:24:da:
c8:e0:5d:62:d0:30:9b:bb:f9:10:ab:96:65:db:4d:
af:dc:f3:88:cc:c4:7b:e1:3f:c6:ca:06:c8:28:3b:
49:8e:e7:5e:fb:dc:14:59:73:fe:ba:c1:18:07:72:
cf:26:02:79:93:2d:4a:ba:a4:7d:92:21:86:5d:60:
80:ad:da:12:b7:3f:94:85:fb:41:c1:9c:27:29:df:
6b:04:9c:a4:fb:6e:36:4c:0c:00:f6:c1:11:d6:d9:
3e:80:2a:b0:7c:49:a7:6e:44:2e:c2:33:52:99:cf:
e0:ba:ef:d8:10:43:22:b2:7d:83:d5:54:ca:71:35:
b8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:DF:A9:56:64:8E:A1:85:91:BC:72:E0:4A:36:D0:F8:E6:46:F4:6C
X509v3 Authority Key Identifier:
keyid:D7:6D:71:D8:84:5D:2F:E2:96:A4:6D:79:17:6F:59:0D:8D:B4:F1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/121x2IRdL-KWpG15F29ZDY208Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/Gt-pVmSOoYWRvHLgSjbQ-OZG9Gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/121x2IRdL-KWpG15F29ZDY208Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.219.0.0/16
78.159.32.0/19
81.95.176.0/20
89.252.0.0/18
94.76.64.0/18
109.251.0.0/16
185.124.168.0/22
188.231.128.0/17
193.24.25.0/24
212.22.192.0/19
IPv6:
2a00:1228::/32
Signature Algorithm: sha256WithRSAEncryption
17:a8:bd:ae:57:dd:be:26:64:55:b9:ed:0d:e7:7e:79:ce:74:
08:2d:f7:8a:a7:8a:c7:26:47:37:ff:fb:37:67:a2:cc:69:58:
d8:09:74:ab:e2:09:52:82:ef:8c:15:39:22:d3:9a:22:eb:7f:
7d:ba:c4:39:be:a9:d2:a6:45:5b:5f:9b:f3:49:27:2b:a2:99:
b1:8b:21:4d:25:a5:0d:ff:62:07:bf:5a:28:88:f6:b2:34:38:
19:32:da:63:a0:91:6c:fc:f4:51:a1:46:49:3b:c6:a2:d0:68:
2c:72:0d:10:73:f7:01:45:b9:57:41:a3:31:4f:f9:ba:a1:3a:
59:ef:0c:01:7b:a7:f2:a7:e0:c2:e1:80:7f:f0:05:28:4b:ae:
e8:cb:64:d7:46:2d:de:87:4d:9c:2a:b1:98:d4:a7:67:75:9a:
2c:d9:e9:ef:8e:d5:04:e4:02:d2:a0:f8:f1:fb:e8:99:e5:fc:
aa:ea:ee:11:b3:fc:7b:da:93:4c:79:1e:cb:68:0b:47:88:24:
4e:ac:70:42:ed:c1:8c:50:bd:04:55:57:5a:92:97:02:7e:96:
18:79:76:55:2f:8f:2d:22:d4:b6:13:1b:4f:3f:10:0b:ae:ea:
aa:61:7c:58:9e:89:6a:05:cf:8d:3e:47:58:ff:06:c4:55:09:
d3:cf:1a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 16:58:43 2024 by rpki-client on console-ams.rpki-client.org