Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xf_fnJE5uPC2yERG87TqR0mZizY.roa
File: Xf_fnJE5uPC2yERG87TqR0mZizY.roa (raw, json)
Hash identifier: HM0XCaTouysLiQe0ogo2d8Ku3fufT7pq0m75E1sxd54=
Subject key identifier: 5D:FF:DF:9C:91:39:B8:F0:B6:C8:44:46:F3:B4:EA:47:49:99:8B:36
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D8D6000E299E8708F545AB1FFD7B7ABCA
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xf_fnJE5uPC2yERG87TqR0mZizY.roa
Signing time: Fri 09 Feb 2024 10:18:15 +0000
ROA not before: Fri 09 Feb 2024 10:18:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.66.0/24 maxlen: 24
217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:8::/48 maxlen: 48
2a03:32c0:1000::/48 maxlen: 48
2a03:32c0:1001::/48 maxlen: 48
2a03:32c0:1002::/48 maxlen: 48
2a03:32c0:1003::/48 maxlen: 48
2a03:32c0:1004::/48 maxlen: 48
2a03:32c0:1005::/48 maxlen: 48
2a03:32c0:1006::/48 maxlen: 48
2a03:32c0:1007::/48 maxlen: 48
2a03:32c0:1008::/48 maxlen: 48
2a03:32c0:1009::/48 maxlen: 48
2a03:32c0:2000::/48 maxlen: 48
2a03:32c0:2001::/48 maxlen: 48
2a03:32c0:2002::/48 maxlen: 48
2a03:32c0:2003::/48 maxlen: 48
2a03:32c0:2004::/48 maxlen: 48
2a03:32c0:2005::/48 maxlen: 48
2a03:32c0:2006::/48 maxlen: 48
2a03:32c0:2007::/48 maxlen: 48
2a03:32c0:2008::/48 maxlen: 48
2a03:32c0:2009::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:3006::/48 maxlen: 48
2a03:32c0:3007::/48 maxlen: 48
2a03:32c0:3008::/48 maxlen: 48
2a03:32c0:3009::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:4003::/48 maxlen: 48
2a03:32c0:4004::/48 maxlen: 48
2a03:32c0:4005::/48 maxlen: 48
2a03:32c0:4006::/48 maxlen: 48
2a03:32c0:4007::/48 maxlen: 48
2a03:32c0:4008::/48 maxlen: 48
2a03:32c0:4009::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:5003::/48 maxlen: 48
2a03:32c0:5004::/48 maxlen: 48
2a03:32c0:5005::/48 maxlen: 48
2a03:32c0:5006::/48 maxlen: 48
2a03:32c0:5007::/48 maxlen: 48
2a03:32c0:5008::/48 maxlen: 48
2a03:32c0:5009::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:6002::/48 maxlen: 48
2a03:32c0:6003::/48 maxlen: 48
2a03:32c0:6004::/48 maxlen: 48
2a03:32c0:6005::/48 maxlen: 48
2a03:32c0:6006::/48 maxlen: 48
2a03:32c0:6007::/48 maxlen: 48
2a03:32c0:6008::/48 maxlen: 48
2a03:32c0:6009::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:7008::/48 maxlen: 48
2a03:32c0:7009::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
2a03:32c0:8008::/48 maxlen: 48
2a03:32c0:8009::/48 maxlen: 48
2a03:32c0:9000::/48 maxlen: 48
2a03:32c0:9001::/48 maxlen: 48
2a03:32c0:9002::/48 maxlen: 48
2a03:32c0:9003::/48 maxlen: 48
2a03:32c0:9004::/48 maxlen: 48
2a03:32c0:9005::/48 maxlen: 48
2a03:32c0:9006::/48 maxlen: 48
2a03:32c0:9007::/48 maxlen: 48
2a03:32c0:9008::/48 maxlen: 48
2a03:32c0:9009::/48 maxlen: 48
2a03:32c0:9010::/48 maxlen: 48
2a03:32c0:9011::/48 maxlen: 48
2a03:32c0:a000::/48 maxlen: 48
2a03:32c0:a001::/48 maxlen: 48
2a03:32c0:a002::/48 maxlen: 48
2a03:32c0:a003::/48 maxlen: 48
2a03:32c0:a004::/48 maxlen: 48
2a03:32c0:a005::/48 maxlen: 48
2a03:32c0:a006::/48 maxlen: 48
2a03:32c0:a007::/48 maxlen: 48
2a03:32c0:a008::/48 maxlen: 48
2a03:32c0:a009::/48 maxlen: 48
2a03:32c0:b000::/48 maxlen: 48
2a03:32c0:b001::/48 maxlen: 48
2a03:32c0:b002::/48 maxlen: 48
2a03:32c0:b003::/48 maxlen: 48
2a03:32c0:b004::/48 maxlen: 48
2a03:32c0:b005::/48 maxlen: 48
2a03:32c0:b006::/48 maxlen: 48
2a03:32c0:b007::/48 maxlen: 48
2a03:32c0:b008::/48 maxlen: 48
2a03:32c0:b009::/48 maxlen: 48
2a03:32c0:c008::/48 maxlen: 48
2a03:32c0:d008::/48 maxlen: 48
2a03:32c0:e000::/48 maxlen: 48
2a03:32c0:e001::/48 maxlen: 48
2a03:32c0:e002::/48 maxlen: 48
2a03:32c0:e003::/48 maxlen: 48
2a03:32c0:e004::/48 maxlen: 48
2a03:32c0:e005::/48 maxlen: 48
2a03:32c0:e006::/48 maxlen: 48
2a03:32c0:e007::/48 maxlen: 48
2a03:32c0:e008::/48 maxlen: 48
2a03:32c0:e009::/48 maxlen: 48
2a03:32c0:f008::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8d:60:00:e2:99:e8:70:8f:54:5a:b1:ff:d7:b7:ab:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Feb 9 10:18:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dffdf9c9139b8f0b6c84446f3b4ea4749998b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:f8:dc:d3:da:f1:c5:fb:4c:2d:43:31:bf:
81:04:9f:3f:1e:97:91:83:08:7f:ce:b7:78:9e:45:
98:48:29:bf:35:d1:a4:f1:2f:ef:a6:09:b3:d2:6b:
ed:24:63:12:37:38:20:42:45:8d:5d:43:83:1c:4a:
a5:cd:6a:73:b6:49:62:f5:75:9d:f7:7c:4b:8e:c4:
5d:6d:8d:0a:93:9e:25:39:60:b8:c0:7f:31:aa:e7:
65:2b:33:8e:57:79:87:1b:f4:2e:2a:81:c7:df:d3:
ee:35:bb:16:c6:55:31:11:fd:2e:9d:a3:a8:1f:c3:
fc:de:01:b7:bc:e8:48:9a:96:85:3e:ec:55:c7:83:
d7:44:6d:3e:ee:46:43:d6:b7:f8:62:c0:77:67:e4:
d2:2b:4f:18:43:ae:36:52:ba:74:05:c5:e0:fa:9c:
4a:a1:76:78:f8:d9:88:9d:38:84:5d:58:c9:b4:69:
32:e3:cd:be:4c:8f:ee:ae:b4:1d:2a:d4:10:6c:78:
43:03:6a:4a:c6:4c:7e:63:13:4e:c4:29:5c:2d:4e:
77:7f:4a:af:35:7e:7a:d4:a1:3e:36:22:07:89:d2:
5c:6a:67:fc:f7:d4:3e:83:c9:01:72:90:2c:dc:bf:
e1:8b:17:86:e7:75:f1:91:fa:ae:a0:ee:af:93:df:
c3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FF:DF:9C:91:39:B8:F0:B6:C8:44:46:F3:B4:EA:47:49:99:8B:36
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xf_fnJE5uPC2yERG87TqR0mZizY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.66.0/24
217.76.70.0/24
IPv6:
2a03:32c0::-2a03:32c0:8:ffff:ffff:ffff:ffff:ffff
2a03:32c0:1000::-2a03:32c0:1009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:2000::-2a03:32c0:2009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:3000::-2a03:32c0:3009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::-2a03:32c0:6009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:7000::/47
2a03:32c0:7008::/47
2a03:32c0:8000::-2a03:32c0:8009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:9000::-2a03:32c0:9009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:9010::/47
2a03:32c0:a000::-2a03:32c0:a009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:b000::-2a03:32c0:b009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:c008::/48
2a03:32c0:d008::/48
2a03:32c0:e000::-2a03:32c0:e009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:f008::/48
Signature Algorithm: sha256WithRSAEncryption
e7:f9:93:50:58:4e:2c:e1:e6:28:f6:ca:21:81:76:8e:29:c9:
26:49:5f:31:cf:9b:69:c0:09:65:9b:31:e4:22:51:2b:0b:0d:
52:e9:28:94:7f:cf:45:66:e9:e0:e2:19:d6:ff:08:4d:a5:90:
0e:41:2b:c5:eb:2f:46:b8:59:b8:66:34:98:7d:0d:c1:00:2c:
f2:39:c3:23:dc:52:22:d6:60:be:b0:a6:31:22:34:04:d8:f9:
51:9e:e4:9d:f8:fe:ef:06:bb:ae:48:a0:51:69:29:a9:9e:c3:
08:bf:73:42:7a:60:17:25:5f:fd:71:58:a3:33:ca:af:56:8e:
b7:ef:9b:00:1c:b0:08:27:be:7b:6d:32:95:38:9f:35:bc:9d:
8d:c3:52:d7:85:cf:30:53:fa:0b:0d:9d:75:e4:b0:13:7e:03:
01:74:51:b1:8f:1c:75:bb:d5:75:a7:52:f1:f2:ca:a1:bc:7d:
98:a4:ca:9f:68:16:2a:6a:21:ae:b4:78:82:7b:d5:48:4c:b8:
5d:70:27:60:b8:58:15:fa:2a:c9:b1:d6:76:bc:84:f6:90:f0:
7a:22:b5:ab:8e:1b:35:75:2d:a0:65:c8:72:a4:ba:5b:f9:fc:
f4:ec:fa:c5:39:b2:4f:5b:a7:ed:bc:1e:0e:f1:f7:dc:12:72:
95:bc:79:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:12:56 2024 by rpki-client on console-fra.rpki-client.org