Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa
File: Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa (raw, json)
Hash identifier: q7D+uYjVVd+gxuDL6tlb+AsrCzQEiYlRNKgS/JEddnI=
Subject key identifier: 12:3D:22:BB:AB:AB:DA:00:63:FD:13:9C:47:4A:2C:02:B1:59:F2:2F
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018F70FE7A0AD848D4C917CDE48CB566B4CA
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa
Signing time: Mon 13 May 2024 08:07:56 +0000
ROA not before: Mon 13 May 2024 08:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 66.81.160.0/21 maxlen: 21
66.81.168.0/21 maxlen: 21
66.81.176.0/21 maxlen: 21
66.81.184.0/21 maxlen: 21
67.218.224.0/21 maxlen: 21
67.218.232.0/21 maxlen: 21
67.218.240.0/21 maxlen: 21
67.218.248.0/21 maxlen: 21
78.30.0.0/21 maxlen: 21
78.30.8.0/21 maxlen: 21
78.30.16.0/21 maxlen: 21
78.30.24.0/21 maxlen: 21
78.30.32.0/20 maxlen: 20
78.30.48.0/20 maxlen: 20
81.0.0.0/20 maxlen: 20
81.0.16.0/20 maxlen: 20
82.213.192.0/20 maxlen: 20
82.213.208.0/20 maxlen: 20
82.213.224.0/19 maxlen: 19
83.138.40.0/21 maxlen: 21
84.39.176.0/21 maxlen: 21
85.31.128.0/22 maxlen: 22
85.31.132.0/22 maxlen: 22
85.235.68.0/22 maxlen: 22
85.239.128.0/22 maxlen: 22
85.239.132.0/22 maxlen: 22
89.35.62.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
91.106.16.0/21 maxlen: 21
91.194.62.0/23 maxlen: 23
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.115.152.0/24 maxlen: 24
93.115.202.0/24 maxlen: 24
93.115.242.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
93.177.120.0/22 maxlen: 23
94.73.32.0/19 maxlen: 19
119.12.224.0/22 maxlen: 22
119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/22 maxlen: 22
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.236.0/22 maxlen: 22
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/22 maxlen: 22
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.248.0/22 maxlen: 22
119.12.248.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
119.12.252.0/23 maxlen: 23
119.12.254.0/23 maxlen: 23
137.59.58.0/24 maxlen: 24
170.253.0.0/20 maxlen: 20
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
178.218.194.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
185.79.20.0/22 maxlen: 22
185.145.64.0/22 maxlen: 22
185.146.56.0/22 maxlen: 22
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
185.176.4.0/22 maxlen: 22
185.197.240.0/22 maxlen: 22
185.197.240.0/23 maxlen: 23
185.197.242.0/23 maxlen: 23
185.227.212.0/23 maxlen: 23
185.227.214.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
185.252.12.0/22 maxlen: 22
188.65.88.0/21 maxlen: 21
188.208.219.0/24 maxlen: 24
188.212.23.0/24 maxlen: 24
193.53.160.0/22 maxlen: 22
193.177.208.0/22 maxlen: 22
195.160.224.0/22 maxlen: 22
206.204.128.0/23 maxlen: 23
206.204.130.0/23 maxlen: 23
206.204.132.0/23 maxlen: 23
206.204.134.0/24 maxlen: 24
206.204.136.0/23 maxlen: 23
206.204.150.0/23 maxlen: 23
206.204.156.0/22 maxlen: 22
207.188.128.0/21 maxlen: 21
207.188.130.0/24 maxlen: 24
207.188.136.0/21 maxlen: 21
207.188.144.0/21 maxlen: 21
207.188.152.0/21 maxlen: 21
207.188.160.0/21 maxlen: 21
207.188.168.0/21 maxlen: 21
207.188.176.0/21 maxlen: 21
207.188.184.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
212.230.136.0/24 maxlen: 24
212.230.156.0/24 maxlen: 24
212.231.112.0/21 maxlen: 21
212.231.120.0/22 maxlen: 22
212.231.124.0/22 maxlen: 22
213.94.0.0/18 maxlen: 23
213.177.192.0/19 maxlen: 21
217.113.240.0/20 maxlen: 22
2a00:d100::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:6800::/37 maxlen: 37
2a00:d100:7000::/37 maxlen: 37
2a00:d100:7800::/37 maxlen: 37
2a00:d100:8000::/37 maxlen: 37
2a00:d100:8800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:3000::/37 maxlen: 37
2a00:d102:3800::/37 maxlen: 37
2a00:d102:4000::/37 maxlen: 37
2a00:d102:4800::/37 maxlen: 37
2a00:d102:5000::/37 maxlen: 37
2a00:d102:5800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
2a01:8480:2004::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:70:fe:7a:0a:d8:48:d4:c9:17:cd:e4:8c:b5:66:b4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: May 13 08:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=123d22bbababda0063fd139c474a2c02b159f22f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e2:ba:1e:7c:04:dd:11:b6:b6:37:76:32:57:
62:30:2a:94:00:36:30:3a:c8:15:8e:c1:5b:1e:99:
e3:47:8b:50:8f:24:5b:fb:5a:7e:a3:0c:a8:83:c2:
32:91:40:27:3c:2a:81:3b:b4:c1:9d:6a:64:c5:c1:
63:b2:70:74:dc:28:27:33:66:f8:e3:62:35:bb:c6:
95:82:6a:a9:74:f2:20:7d:0a:3d:7f:0c:28:f0:69:
8a:c7:14:ef:86:b6:0a:35:b6:8b:4e:51:f6:bc:4d:
e6:ee:e5:e0:f3:e1:95:da:cb:f5:18:54:a4:4d:d0:
8c:5a:03:58:63:07:34:cc:64:30:8b:8d:91:f1:38:
ab:18:f1:3f:18:e9:84:86:82:19:25:e1:e5:c5:5d:
6c:3c:c9:6d:6c:e9:0d:26:05:91:f7:ba:5e:61:23:
6c:d8:d5:80:71:c1:2a:1c:65:03:44:7d:24:96:df:
32:d7:13:38:0f:78:72:2a:b6:5b:c0:ea:33:28:4d:
b4:e6:9d:61:56:6a:05:ff:07:e2:10:f0:e6:76:ce:
37:af:3f:fd:9c:4b:7b:a4:da:5c:a2:0b:a2:e4:7a:
5c:cb:50:61:a4:05:2a:69:0a:42:82:47:7c:0c:b2:
f7:52:f2:15:e9:b1:86:63:5f:c9:c8:3a:81:06:47:
01:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3D:22:BB:AB:AB:DA:00:63:FD:13:9C:47:4A:2C:02:B1:59:F2:2F
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.81.160.0/19
67.218.224.0/19
78.30.0.0/18
81.0.0.0/19
82.213.192.0/18
83.138.40.0/21
84.39.176.0/21
85.31.128.0/21
85.235.68.0/22
85.239.128.0/21
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0/19
137.59.58.0/24
170.253.0.0/18
178.218.194.0/24
181.41.128.0/21
185.79.20.0/22
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.176.4.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.65.88.0/21
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
193.177.208.0/22
195.160.224.0/22
206.204.128.0-206.204.134.255
206.204.136.0/23
206.204.150.0/23
206.204.156.0/22
207.188.128.0/18
212.14.96.0/19
212.230.136.0/24
212.230.156.0/24
212.231.112.0/20
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:8fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::-2a00:d102:5fff:ffff:ffff:ffff:ffff:ffff
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
44:fc:24:db:6d:aa:04:ee:76:e8:9e:38:4a:3b:2e:64:ba:87:
b6:77:a7:b4:69:0e:6d:0a:53:9a:64:bc:7d:d7:73:2c:91:7d:
43:2f:d9:b2:34:3b:81:82:d5:da:93:da:31:4f:de:1d:a3:bc:
14:cf:54:3b:6e:40:8f:39:75:f2:c3:08:cd:65:9b:30:65:fa:
50:61:f2:5b:0a:20:7a:c2:8d:19:91:39:f1:6d:06:62:ec:23:
ed:13:3d:b2:87:2c:26:3e:f9:09:14:2c:cd:5b:2c:7b:d2:ad:
f1:cd:af:23:e6:29:3c:91:4d:63:fc:9e:1e:76:eb:df:c6:96:
c8:6b:f8:f7:91:1c:7f:88:a5:28:83:24:30:90:42:85:d5:e7:
57:23:a1:a5:5c:41:5a:bf:94:d9:dc:fc:d0:c8:4c:86:2a:34:
71:46:df:7d:76:d1:c8:55:e1:49:e0:91:1b:af:67:3c:2a:4c:
5d:e8:d2:2d:a0:17:06:8d:43:81:cc:90:66:5c:08:a1:8f:68:
6c:ab:b3:37:9c:16:fc:c0:2c:97:37:64:0d:72:11:6e:91:c9:
60:d4:a6:9c:5a:91:fd:36:15:fc:06:e4:18:6d:ec:8a:0c:b3:
34:f7:f2:58:d0:7f:e7:aa:19:ef:fe:2d:6a:6c:a7:f8:fa:9f:
49:0a:12:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:39:39 2024 by rpki-client on console-ams.rpki-client.org