Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/yZhV7ttcaBS1G5WX2LfKz-N9VMo.roa
File: yZhV7ttcaBS1G5WX2LfKz-N9VMo.roa (raw, json)
Hash identifier: AMQHj0u+3Ia23SqNDyWIGYNh/i85X3dvtJkAk8pHSUg=
Subject key identifier: C9:98:55:EE:DB:5C:68:14:B5:1B:95:97:D8:B7:CA:CF:E3:7D:54:CA
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 018CC493507AE37E3BEC7F05C81DC595D513
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/yZhV7ttcaBS1G5WX2LfKz-N9VMo.roa
Signing time: Mon 01 Jan 2024 10:30:37 +0000
ROA not before: Mon 01 Jan 2024 10:30:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29084
IP address blocks: 109.160.98.0/24 maxlen: 24
109.160.4.0/22 maxlen: 22
109.160.4.0/24 maxlen: 24
109.160.5.0/24 maxlen: 24
109.160.6.0/24 maxlen: 24
109.160.7.0/24 maxlen: 24
109.160.13.0/24 maxlen: 24
109.160.43.0/24 maxlen: 24
109.160.42.0/24 maxlen: 24
109.160.42.0/23 maxlen: 23
217.174.48.0/24 maxlen: 24
217.174.50.0/24 maxlen: 24
217.174.51.0/24 maxlen: 24
217.174.48.0/20 maxlen: 20
217.174.49.0/24 maxlen: 24
217.174.57.0/24 maxlen: 24
217.174.58.0/24 maxlen: 24
217.174.56.0/24 maxlen: 24
217.174.54.0/24 maxlen: 24
217.174.55.0/24 maxlen: 24
217.174.52.0/24 maxlen: 24
217.174.53.0/24 maxlen: 24
217.174.61.0/24 maxlen: 24
217.174.62.0/24 maxlen: 24
217.174.59.0/24 maxlen: 24
217.174.60.0/24 maxlen: 24
217.174.63.0/24 maxlen: 24
87.246.35.0/24 maxlen: 24
79.132.1.0/24 maxlen: 24
79.132.3.0/24 maxlen: 24
79.132.0.0/19 maxlen: 19
79.132.2.0/24 maxlen: 24
79.132.4.0/24 maxlen: 24
79.132.0.0/24 maxlen: 24
79.132.9.0/24 maxlen: 24
79.132.5.0/24 maxlen: 24
79.132.6.0/24 maxlen: 24
79.132.7.0/24 maxlen: 24
185.78.36.0/22 maxlen: 22
79.132.10.0/24 maxlen: 24
185.78.37.0/24 maxlen: 24
185.78.38.0/24 maxlen: 24
79.132.8.0/24 maxlen: 24
79.132.11.0/24 maxlen: 24
185.78.36.0/24 maxlen: 24
79.132.17.0/24 maxlen: 24
79.132.15.0/24 maxlen: 24
79.132.16.0/24 maxlen: 24
79.132.13.0/24 maxlen: 24
79.132.14.0/24 maxlen: 24
79.132.12.0/24 maxlen: 24
185.78.39.0/24 maxlen: 24
79.132.20.0/24 maxlen: 24
79.132.21.0/24 maxlen: 24
79.132.18.0/24 maxlen: 24
79.132.19.0/24 maxlen: 24
79.132.24.0/24 maxlen: 24
79.132.22.0/24 maxlen: 24
79.132.23.0/24 maxlen: 24
79.132.30.0/24 maxlen: 24
79.132.31.0/24 maxlen: 24
79.132.29.0/24 maxlen: 24
79.132.27.0/24 maxlen: 24
79.132.28.0/24 maxlen: 24
79.132.25.0/24 maxlen: 24
79.132.26.0/24 maxlen: 24
212.70.150.0/24 maxlen: 24
212.70.157.0/24 maxlen: 24
78.108.242.0/24 maxlen: 24
84.54.187.0/24 maxlen: 24
37.209.173.0/24 maxlen: 24
84.54.190.0/24 maxlen: 24
84.54.188.0/24 maxlen: 24
84.54.189.0/24 maxlen: 24
83.222.168.0/24 maxlen: 24
83.222.175.0/24 maxlen: 24
83.222.182.0/24 maxlen: 24
84.54.137.0/24 maxlen: 24
84.54.138.0/24 maxlen: 24
84.54.136.0/24 maxlen: 24
84.54.139.0/24 maxlen: 24
84.54.134.0/24 maxlen: 24
84.54.135.0/24 maxlen: 24
84.54.133.0/24 maxlen: 24
84.54.141.0/24 maxlen: 24
84.54.142.0/24 maxlen: 24
84.54.144.0/24 maxlen: 24
84.54.145.0/24 maxlen: 24
84.54.143.0/24 maxlen: 24
84.54.151.0/24 maxlen: 24
84.54.152.0/24 maxlen: 24
84.54.149.0/24 maxlen: 24
84.54.146.0/24 maxlen: 24
84.54.147.0/24 maxlen: 24
84.54.158.0/24 maxlen: 24
84.54.159.0/24 maxlen: 24
84.54.157.0/24 maxlen: 24
84.54.156.0/24 maxlen: 24
84.54.153.0/24 maxlen: 24
84.54.154.0/24 maxlen: 24
84.54.160.0/24 maxlen: 24
84.54.161.0/24 maxlen: 24
84.54.166.0/24 maxlen: 24
84.54.165.0/24 maxlen: 24
84.54.163.0/24 maxlen: 24
84.54.164.0/24 maxlen: 24
84.54.162.0/24 maxlen: 24
84.54.169.0/24 maxlen: 24
84.54.167.0/24 maxlen: 24
84.54.168.0/24 maxlen: 24
84.54.172.0/24 maxlen: 24
84.54.170.0/24 maxlen: 24
84.54.171.0/24 maxlen: 24
84.54.179.0/24 maxlen: 24
84.54.177.0/24 maxlen: 24
84.54.178.0/24 maxlen: 24
84.54.173.0/24 maxlen: 24
84.54.176.0/24 maxlen: 24
84.54.174.0/24 maxlen: 24
84.54.175.0/24 maxlen: 24
37.209.170.0/24 maxlen: 24
84.54.180.0/24 maxlen: 24
37.209.169.0/24 maxlen: 24
84.54.183.0/24 maxlen: 24
84.54.181.0/24 maxlen: 24
84.54.182.0/24 maxlen: 24
37.209.168.0/24 maxlen: 24
37.209.168.0/21 maxlen: 24
37.209.171.0/24 maxlen: 24
37.209.172.0/24 maxlen: 24
84.54.186.0/24 maxlen: 24
84.54.185.0/24 maxlen: 24
84.54.128.0/24 maxlen: 24
84.54.130.0/24 maxlen: 24
84.54.128.0/18 maxlen: 18
84.54.131.0/24 maxlen: 24
84.54.129.0/24 maxlen: 24
84.54.132.0/24 maxlen: 24
2a02:1c0::/29 maxlen: 29
2a02:1c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:50:7a:e3:7e:3b:ec:7f:05:c8:1d:c5:95:d5:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: Jan 1 10:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c99855eedb5c6814b51b9597d8b7cacfe37d54ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f6:a1:d4:8c:ed:0d:5c:66:7d:39:e7:f0:c8:
50:05:3c:6c:c9:e9:c1:dc:2c:cf:98:d3:ea:2f:1f:
b3:4f:90:d5:55:de:47:6a:7e:d4:64:ed:c0:4a:43:
88:26:9c:6a:99:b7:85:5b:97:37:cf:ac:ac:3f:d1:
cd:ff:e6:f9:cb:86:d0:b2:54:d3:98:e4:8c:26:af:
10:ae:35:1f:a7:62:2c:e6:20:cc:d4:5e:66:17:1e:
27:3c:a3:34:c3:cb:1a:d9:df:12:08:53:82:03:81:
42:b8:44:d0:7e:0c:4a:f8:84:08:6d:21:b2:85:30:
29:e8:1b:48:df:5d:70:8c:31:60:8f:5a:e1:02:78:
30:7b:17:bc:8a:aa:ce:96:d3:94:86:a3:b7:07:b7:
ca:c5:5a:17:3d:4b:9c:c4:f4:d5:1b:8d:e6:04:3a:
a6:e9:18:5f:ce:79:22:0f:5f:e3:5d:8b:85:c9:a7:
52:c6:6d:b4:f5:50:84:40:f4:52:fd:97:dc:a3:34:
81:e6:23:5f:c9:b6:45:17:d4:1f:e0:f8:f9:83:c7:
5a:77:ab:cd:f8:9a:c3:92:db:82:16:96:4d:43:be:
b2:82:30:2c:7c:94:49:28:cc:f6:35:c0:6a:50:c0:
e2:db:9d:b1:dc:b5:6d:26:98:94:1f:7c:f4:89:a7:
ba:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:98:55:EE:DB:5C:68:14:B5:1B:95:97:D8:B7:CA:CF:E3:7D:54:CA
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/yZhV7ttcaBS1G5WX2LfKz-N9VMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.168.0/21
78.108.242.0/24
79.132.0.0/19
83.222.168.0/24
83.222.175.0/24
83.222.182.0/24
84.54.128.0/18
87.246.35.0/24
109.160.4.0/22
109.160.13.0/24
109.160.42.0/23
109.160.98.0/24
185.78.36.0/22
212.70.150.0/24
212.70.157.0/24
217.174.48.0/20
IPv6:
2a02:1c0::/29
Signature Algorithm: sha256WithRSAEncryption
b5:e2:f7:f1:79:c9:03:0a:a5:92:0e:cb:b2:b4:6f:a9:cc:ce:
d6:f6:22:0a:fc:b8:cc:3b:c9:00:0c:c3:d0:f2:ee:9a:01:c6:
81:8c:b9:0e:6b:d8:63:b1:95:49:7c:87:91:19:6b:01:3d:72:
ad:77:ef:69:83:cb:d7:19:05:f0:27:1a:c3:08:0c:aa:c7:50:
8a:29:ff:0c:db:f2:21:35:c2:b8:48:27:28:96:d6:7d:ab:ef:
53:ef:e0:a4:ae:fc:e2:de:73:e3:a9:b8:19:e9:08:86:80:8f:
e3:40:63:62:28:38:5e:35:12:ff:d5:37:87:d7:1a:94:d3:72:
d2:ef:ba:f7:bc:e6:18:fe:9d:32:4b:c0:dd:d7:25:c0:e6:27:
55:53:9d:df:ae:86:c5:b4:1e:47:1c:5d:aa:4c:c2:fa:db:7d:
94:24:59:c8:10:4f:f1:b1:9b:73:c8:9a:bc:e8:a8:1b:51:e9:
d9:33:b4:fe:b7:42:bd:f0:f9:70:ac:2a:da:37:57:07:5b:da:
0d:4e:b5:c9:3f:95:d5:88:bd:a2:97:e8:18:69:48:30:f0:63:
ed:47:06:0b:8b:ca:6d:b2:40:96:28:be:76:22:1f:85:5e:d2:
a6:18:61:9d:05:b5:95:7f:9e:35:6e:46:9e:5d:b3:ba:3a:10:
1f:96:37:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:15:07 2024 by rpki-client on console-fra.rpki-client.org