Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/93s97jjf9PJIQ1PmrLTdQBAyYBA.roa
File: 93s97jjf9PJIQ1PmrLTdQBAyYBA.roa (raw, json)
Hash identifier: oMS/y+c1aaV2HwDfHzzArhr0qCBNKolL0qZzPCRrrQg=
Subject key identifier: F7:7B:3D:EE:38:DF:F4:F2:48:43:53:E6:AC:B4:DD:40:10:32:60:10
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 019424B3AA55E812F959791F12287FB8BA7D
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/93s97jjf9PJIQ1PmrLTdQBAyYBA.roa
Signing time: Thu 02 Jan 2025 01:49:01 +0000
ROA not before: Thu 02 Jan 2025 01:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29084
IP address blocks: 37.209.168.0/21 maxlen: 24
37.209.168.0/24 maxlen: 24
37.209.169.0/24 maxlen: 24
37.209.170.0/24 maxlen: 24
37.209.171.0/24 maxlen: 24
37.209.172.0/24 maxlen: 24
37.209.173.0/24 maxlen: 24
78.108.242.0/24 maxlen: 24
79.132.0.0/19 maxlen: 19
79.132.0.0/24 maxlen: 24
79.132.1.0/24 maxlen: 24
79.132.2.0/24 maxlen: 24
79.132.3.0/24 maxlen: 24
79.132.4.0/24 maxlen: 24
79.132.5.0/24 maxlen: 24
79.132.6.0/24 maxlen: 24
79.132.7.0/24 maxlen: 24
79.132.8.0/24 maxlen: 24
79.132.9.0/24 maxlen: 24
79.132.10.0/24 maxlen: 24
79.132.11.0/24 maxlen: 24
79.132.12.0/24 maxlen: 24
79.132.13.0/24 maxlen: 24
79.132.14.0/24 maxlen: 24
79.132.15.0/24 maxlen: 24
79.132.16.0/24 maxlen: 24
79.132.17.0/24 maxlen: 24
79.132.18.0/24 maxlen: 24
79.132.19.0/24 maxlen: 24
79.132.20.0/24 maxlen: 24
79.132.21.0/24 maxlen: 24
79.132.22.0/24 maxlen: 24
79.132.23.0/24 maxlen: 24
79.132.24.0/24 maxlen: 24
79.132.25.0/24 maxlen: 24
79.132.26.0/24 maxlen: 24
79.132.27.0/24 maxlen: 24
79.132.28.0/24 maxlen: 24
79.132.29.0/24 maxlen: 24
79.132.30.0/24 maxlen: 24
79.132.31.0/24 maxlen: 24
83.222.168.0/24 maxlen: 24
83.222.175.0/24 maxlen: 24
83.222.182.0/24 maxlen: 24
84.54.128.0/18 maxlen: 18
84.54.128.0/24 maxlen: 24
84.54.129.0/24 maxlen: 24
84.54.130.0/24 maxlen: 24
84.54.131.0/24 maxlen: 24
84.54.132.0/24 maxlen: 24
84.54.133.0/24 maxlen: 24
84.54.134.0/24 maxlen: 24
84.54.135.0/24 maxlen: 24
84.54.136.0/24 maxlen: 24
84.54.137.0/24 maxlen: 24
84.54.138.0/24 maxlen: 24
84.54.139.0/24 maxlen: 24
84.54.141.0/24 maxlen: 24
84.54.142.0/24 maxlen: 24
84.54.143.0/24 maxlen: 24
84.54.144.0/24 maxlen: 24
84.54.145.0/24 maxlen: 24
84.54.146.0/24 maxlen: 24
84.54.147.0/24 maxlen: 24
84.54.149.0/24 maxlen: 24
84.54.151.0/24 maxlen: 24
84.54.152.0/24 maxlen: 24
84.54.153.0/24 maxlen: 24
84.54.154.0/24 maxlen: 24
84.54.156.0/24 maxlen: 24
84.54.157.0/24 maxlen: 24
84.54.158.0/24 maxlen: 24
84.54.159.0/24 maxlen: 24
84.54.160.0/24 maxlen: 24
84.54.161.0/24 maxlen: 24
84.54.162.0/24 maxlen: 24
84.54.163.0/24 maxlen: 24
84.54.164.0/24 maxlen: 24
84.54.165.0/24 maxlen: 24
84.54.166.0/24 maxlen: 24
84.54.167.0/24 maxlen: 24
84.54.168.0/24 maxlen: 24
84.54.169.0/24 maxlen: 24
84.54.170.0/24 maxlen: 24
84.54.171.0/24 maxlen: 24
84.54.172.0/24 maxlen: 24
84.54.173.0/24 maxlen: 24
84.54.174.0/24 maxlen: 24
84.54.175.0/24 maxlen: 24
84.54.176.0/24 maxlen: 24
84.54.177.0/24 maxlen: 24
84.54.178.0/24 maxlen: 24
84.54.179.0/24 maxlen: 24
84.54.180.0/24 maxlen: 24
84.54.181.0/24 maxlen: 24
84.54.182.0/24 maxlen: 24
84.54.183.0/24 maxlen: 24
84.54.185.0/24 maxlen: 24
84.54.186.0/24 maxlen: 24
84.54.187.0/24 maxlen: 24
84.54.188.0/24 maxlen: 24
84.54.189.0/24 maxlen: 24
84.54.190.0/24 maxlen: 24
87.246.35.0/24 maxlen: 24
109.160.4.0/22 maxlen: 22
109.160.4.0/24 maxlen: 24
109.160.5.0/24 maxlen: 24
109.160.6.0/24 maxlen: 24
109.160.7.0/24 maxlen: 24
109.160.13.0/24 maxlen: 24
109.160.24.0/21 maxlen: 24
109.160.24.0/24 maxlen: 24
109.160.25.0/24 maxlen: 24
109.160.26.0/24 maxlen: 24
109.160.27.0/24 maxlen: 24
109.160.28.0/24 maxlen: 24
109.160.29.0/24 maxlen: 24
109.160.30.0/24 maxlen: 24
109.160.31.0/24 maxlen: 24
109.160.42.0/23 maxlen: 23
109.160.42.0/24 maxlen: 24
109.160.43.0/24 maxlen: 24
109.160.98.0/24 maxlen: 24
185.78.36.0/22 maxlen: 22
185.78.36.0/24 maxlen: 24
185.78.37.0/24 maxlen: 24
185.78.38.0/24 maxlen: 24
185.78.39.0/24 maxlen: 24
212.70.150.0/24 maxlen: 24
212.70.157.0/24 maxlen: 24
217.174.48.0/20 maxlen: 20
217.174.48.0/24 maxlen: 24
217.174.49.0/24 maxlen: 24
217.174.50.0/24 maxlen: 24
217.174.51.0/24 maxlen: 24
217.174.52.0/24 maxlen: 24
217.174.53.0/24 maxlen: 24
217.174.54.0/24 maxlen: 24
217.174.55.0/24 maxlen: 24
217.174.56.0/24 maxlen: 24
217.174.57.0/24 maxlen: 24
217.174.58.0/24 maxlen: 24
217.174.59.0/24 maxlen: 24
217.174.60.0/24 maxlen: 24
217.174.61.0/24 maxlen: 24
217.174.62.0/24 maxlen: 24
217.174.63.0/24 maxlen: 24
2a02:1c0::/29 maxlen: 29
2a02:1c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:aa:55:e8:12:f9:59:79:1f:12:28:7f:b8:ba:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: Jan 2 01:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f77b3dee38dff4f2484353e6acb4dd4010326010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:59:ae:02:9c:0b:39:cb:41:76:40:c4:7d:da:
97:32:2c:9f:00:04:09:24:61:27:be:10:89:a8:6d:
bc:87:0a:a9:bd:81:eb:86:e4:3c:96:62:69:21:dd:
63:3b:80:7d:dd:86:96:59:8b:9c:23:87:1a:fd:1c:
bf:aa:92:53:2c:e1:c9:a3:5a:07:89:f8:fd:4c:ef:
11:e2:7f:67:fa:cf:84:97:8b:8c:87:3e:ed:11:d7:
28:6c:ef:a6:e6:40:1b:76:65:85:ae:e9:b7:9c:83:
ae:57:9b:45:86:d0:a1:ef:2e:8d:e1:b4:5d:e9:17:
53:63:3a:eb:9c:5d:0f:54:af:23:12:03:90:eb:0f:
df:9c:f1:19:c9:f6:86:4f:72:fd:a9:f0:73:95:5c:
14:2e:99:9c:b8:af:91:05:a7:a0:3b:92:f3:07:ed:
f9:51:88:a7:e5:bc:4d:24:a2:2b:ee:18:0a:bb:b6:
d8:fb:97:e7:f5:d1:fd:c0:47:fd:54:f8:e2:af:57:
12:86:2e:cd:89:fd:cb:ad:31:df:2a:61:0e:7f:9e:
c1:a3:f6:96:42:68:40:b6:7e:61:1f:47:5f:28:86:
f7:b8:e4:82:2b:7f:1b:1b:ea:84:2b:04:f8:aa:d9:
16:32:45:0d:66:6d:e0:ef:d8:74:30:86:85:7a:19:
40:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:7B:3D:EE:38:DF:F4:F2:48:43:53:E6:AC:B4:DD:40:10:32:60:10
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/93s97jjf9PJIQ1PmrLTdQBAyYBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.168.0/21
78.108.242.0/24
79.132.0.0/19
83.222.168.0/24
83.222.175.0/24
83.222.182.0/24
84.54.128.0/18
87.246.35.0/24
109.160.4.0/22
109.160.13.0/24
109.160.24.0/21
109.160.42.0/23
109.160.98.0/24
185.78.36.0/22
212.70.150.0/24
212.70.157.0/24
217.174.48.0/20
IPv6:
2a02:1c0::/29
Signature Algorithm: sha256WithRSAEncryption
47:06:e6:c5:43:a1:e7:a9:a7:1c:d7:80:4e:68:59:8b:17:5f:
d8:41:1d:0e:49:e6:16:23:d9:79:6b:46:a7:5b:f4:6a:ad:d2:
b8:d3:d2:fd:a3:63:0a:60:9c:35:64:8f:11:7d:48:bf:b2:f8:
9d:6d:84:fc:4f:5f:82:1b:de:5e:f2:42:23:fb:46:74:b8:91:
6a:da:d5:85:8c:02:c9:e8:32:59:b1:e6:90:0d:82:1f:e9:19:
d5:06:28:84:b8:5d:ad:83:5c:7a:7e:8a:8b:6b:bf:5e:22:63:
9c:47:40:7f:20:f9:6f:20:8c:c7:fa:89:5f:b3:44:98:68:f0:
99:f8:3c:e4:f7:b4:54:e0:54:0c:d1:39:64:ac:18:44:b0:23:
01:3e:ae:38:e5:0a:0c:77:80:85:bd:b2:c4:af:51:f9:40:72:
c7:98:c0:73:d9:ae:c4:55:c0:ea:c9:ad:5f:59:04:b6:f9:8b:
55:dc:6a:a6:60:68:2b:b2:8b:09:d9:d1:43:21:91:5c:ca:9c:
2d:58:8c:fa:c6:15:a1:86:41:d5:60:d2:de:4e:1b:7e:d7:a5:
bd:da:81:97:d0:b0:0c:97:30:90:80:60:43:25:e8:7d:02:dc:
cc:62:bd:f3:31:77:d1:84:4f:95:fe:16:38:af:c8:97:92:fa:
fa:44:15:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:48:25 2025 by rpki-client