Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/9pmvuyQLNPGKmvQ6L1rVdU7WuJI.roa
File: 9pmvuyQLNPGKmvQ6L1rVdU7WuJI.roa (raw, json)
Hash identifier: 59nkCQnoiLFfQUmaazNfOfHHx+QZAZL5CxcZRD9gS98=
Subject key identifier: F6:99:AF:BB:24:0B:34:F1:8A:9A:F4:3A:2F:5A:D5:75:4E:D6:B8:92
Certificate issuer: /CN=dbbf37909ce17ba53ad90a8632377a5d938743e5
Certificate serial: 01904FD67B407004C9A45C10147BAECE6CF1
Authority key identifier: DB:BF:37:90:9C:E1:7B:A5:3A:D9:0A:86:32:37:7A:5D:93:87:43:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2783kJzhe6U62QqGMjd6XZOHQ-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/9pmvuyQLNPGKmvQ6L1rVdU7WuJI.roa
Signing time: Tue 25 Jun 2024 14:39:34 +0000
ROA not before: Tue 25 Jun 2024 14:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 272809
IP address blocks: 82.86.64.0/22 maxlen: 22
82.86.64.0/24 maxlen: 24
82.86.65.0/24 maxlen: 24
82.86.66.0/24 maxlen: 24
82.86.67.0/24 maxlen: 24
82.86.68.0/22 maxlen: 22
82.86.68.0/24 maxlen: 24
82.86.69.0/24 maxlen: 24
82.86.70.0/24 maxlen: 24
82.86.71.0/24 maxlen: 24
82.86.72.0/22 maxlen: 22
82.86.72.0/24 maxlen: 24
82.86.73.0/24 maxlen: 24
82.86.74.0/24 maxlen: 24
82.86.75.0/24 maxlen: 24
82.86.76.0/22 maxlen: 22
82.86.76.0/24 maxlen: 24
82.86.77.0/24 maxlen: 24
82.86.78.0/24 maxlen: 24
82.86.79.0/24 maxlen: 24
82.86.80.0/22 maxlen: 22
82.86.80.0/24 maxlen: 24
82.86.81.0/24 maxlen: 24
82.86.82.0/24 maxlen: 24
82.86.83.0/24 maxlen: 24
82.86.84.0/22 maxlen: 22
82.86.84.0/24 maxlen: 24
82.86.85.0/24 maxlen: 24
82.86.86.0/24 maxlen: 24
82.86.87.0/24 maxlen: 24
82.86.88.0/22 maxlen: 22
82.86.88.0/24 maxlen: 24
82.86.89.0/24 maxlen: 24
82.86.90.0/24 maxlen: 24
82.86.91.0/24 maxlen: 24
82.86.92.0/22 maxlen: 22
82.86.92.0/24 maxlen: 24
82.86.93.0/24 maxlen: 24
82.86.94.0/24 maxlen: 24
82.86.95.0/24 maxlen: 24
82.86.96.0/22 maxlen: 22
82.86.96.0/24 maxlen: 24
82.86.97.0/24 maxlen: 24
82.86.98.0/24 maxlen: 24
82.86.99.0/24 maxlen: 24
82.86.100.0/22 maxlen: 22
82.86.100.0/24 maxlen: 24
82.86.101.0/24 maxlen: 24
82.86.102.0/24 maxlen: 24
82.86.103.0/24 maxlen: 24
82.86.128.0/24 maxlen: 24
82.86.129.0/24 maxlen: 24
82.86.130.0/24 maxlen: 24
82.86.131.0/24 maxlen: 24
82.86.132.0/24 maxlen: 24
82.86.133.0/24 maxlen: 24
82.86.134.0/24 maxlen: 24
82.86.135.0/24 maxlen: 24
82.86.136.0/24 maxlen: 24
82.86.137.0/24 maxlen: 24
82.86.138.0/24 maxlen: 24
82.86.139.0/24 maxlen: 24
82.86.140.0/24 maxlen: 24
82.86.141.0/24 maxlen: 24
82.86.142.0/24 maxlen: 24
82.86.143.0/24 maxlen: 24
82.86.144.0/24 maxlen: 24
82.86.145.0/24 maxlen: 24
82.86.146.0/24 maxlen: 24
82.86.147.0/24 maxlen: 24
82.86.148.0/24 maxlen: 24
82.86.149.0/24 maxlen: 24
82.86.150.0/24 maxlen: 24
82.86.151.0/24 maxlen: 24
82.86.152.0/24 maxlen: 24
82.86.153.0/24 maxlen: 24
82.86.154.0/24 maxlen: 24
82.86.155.0/24 maxlen: 24
82.86.156.0/24 maxlen: 24
82.86.157.0/24 maxlen: 24
82.86.158.0/24 maxlen: 24
82.86.159.0/24 maxlen: 24
82.86.160.0/24 maxlen: 24
82.86.161.0/24 maxlen: 24
82.86.162.0/24 maxlen: 24
82.86.163.0/24 maxlen: 24
82.86.164.0/24 maxlen: 24
82.86.165.0/24 maxlen: 24
82.86.166.0/24 maxlen: 24
82.86.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/2783kJzhe6U62QqGMjd6XZOHQ-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/2783kJzhe6U62QqGMjd6XZOHQ-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/2783kJzhe6U62QqGMjd6XZOHQ-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:d6:7b:40:70:04:c9:a4:5c:10:14:7b:ae:ce:6c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbbf37909ce17ba53ad90a8632377a5d938743e5
Validity
Not Before: Jun 25 14:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f699afbb240b34f18a9af43a2f5ad5754ed6b892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:84:f5:8d:93:09:60:fd:3e:d7:26:ec:ec:a5:
32:ec:67:af:54:94:c8:61:76:1f:60:95:9e:3a:50:
8b:ec:84:11:50:04:2d:48:ad:af:0c:ff:64:39:8d:
26:72:f7:6a:c2:9f:06:90:cb:7d:ed:13:20:4b:ef:
c0:07:e2:d8:6b:46:06:bb:3e:4f:1e:cf:23:a4:0e:
84:54:e7:e3:54:b0:2d:e3:30:03:f7:9d:54:02:92:
6c:c3:5e:5e:f4:da:00:0b:2a:4f:6c:7b:19:a5:db:
2c:66:7b:86:7c:ae:11:18:2f:3b:50:32:e1:e0:e6:
01:5c:72:09:4a:c2:f5:b1:29:a0:01:67:ba:96:43:
b2:5f:9f:9f:f2:09:e6:e8:0f:67:76:0b:6f:e0:bc:
52:51:96:48:d6:72:ec:85:6c:9d:35:77:6b:eb:d0:
80:ca:48:1b:e0:21:67:0b:91:63:c3:f5:83:e0:ca:
9f:2b:c6:85:66:3b:60:b8:d8:e6:9c:f1:79:60:e9:
b6:d9:54:90:84:f4:a4:1e:8e:43:df:e3:38:3b:5e:
ef:f8:38:7f:24:4d:04:d6:28:8f:5d:3b:f5:32:dd:
60:80:4d:30:14:6e:84:74:41:8e:bd:ea:e6:b4:61:
c4:9b:37:56:ed:dd:6c:47:ed:84:31:c6:a8:f6:60:
ad:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:99:AF:BB:24:0B:34:F1:8A:9A:F4:3A:2F:5A:D5:75:4E:D6:B8:92
X509v3 Authority Key Identifier:
keyid:DB:BF:37:90:9C:E1:7B:A5:3A:D9:0A:86:32:37:7A:5D:93:87:43:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2783kJzhe6U62QqGMjd6XZOHQ-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/9pmvuyQLNPGKmvQ6L1rVdU7WuJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1373a0-8c3d-4283-a5ce-822ea43dc18d/1/2783kJzhe6U62QqGMjd6XZOHQ-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.86.64.0-82.86.103.255
82.86.128.0-82.86.167.255
Signature Algorithm: sha256WithRSAEncryption
55:5d:52:4b:13:f9:8a:ce:8b:5d:4c:fa:1d:50:2e:10:5d:00:
a3:67:1f:94:c7:a4:cd:4a:bf:ba:57:07:cc:34:cd:02:a6:10:
95:5b:c6:03:67:59:bf:43:6c:bd:9e:9d:b3:2c:1c:69:33:86:
18:a1:ca:b7:5d:19:03:0e:94:33:3f:e6:89:ca:6a:15:71:4c:
86:dc:81:6d:3e:59:25:d7:f7:c7:96:d0:dc:1b:b0:02:49:f0:
f3:fd:1e:85:b4:ec:5e:02:e9:a4:9d:5f:53:a0:aa:61:df:16:
82:d2:53:a1:81:ad:f9:8d:8f:f6:52:09:92:5f:d7:fd:36:7f:
7b:97:a1:be:7f:25:1d:75:54:9b:46:3c:3b:0e:7b:27:85:3f:
2a:ed:6e:65:fe:73:a3:ac:e4:8e:15:77:fa:b6:30:53:96:15:
0f:d3:83:08:dc:e9:9f:58:ec:90:7f:1f:fc:f6:d8:05:39:07:
cb:d8:d1:b0:1d:d0:78:4e:55:57:74:64:61:7d:ca:d5:bf:4d:
5b:7e:cf:cc:63:56:7d:d5:23:df:ff:1e:88:9b:22:d0:31:f9:
b4:6a:4c:bc:2a:65:f6:8b:8c:08:f2:24:a3:75:f3:33:21:e3:
b5:a7:2d:8d:af:68:37:7a:bd:3e:46:d2:56:36:22:77:e1:68:
0e:ba:dd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 00:06:38 2024 by rpki-client on console-fra.rpki-client.org