Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_ZSjjVfzV_IXhoMfU-jwTEwW0WY.roa
File: _ZSjjVfzV_IXhoMfU-jwTEwW0WY.roa (raw, json)
Hash identifier: SLu2b4/bXOV7HUGnvMvUt8G7qxKCQve4TJW//0hgEN8=
Subject key identifier: FD:94:A3:8D:57:F3:57:F2:17:86:83:1F:53:E8:F0:4C:4C:16:D1:66
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 0192F87838F4992548EFEC8D2E81B8C4D4ED
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_ZSjjVfzV_IXhoMfU-jwTEwW0WY.roa
Signing time: Mon 04 Nov 2024 18:38:01 +0000
ROA not before: Mon 04 Nov 2024 18:38:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 5.226.136.0/21 maxlen: 21
31.14.102.0/24 maxlen: 24
31.14.254.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
46.102.155.0/24 maxlen: 24
46.247.142.0/23 maxlen: 24
46.247.143.0/24 maxlen: 24
64.239.236.0/22 maxlen: 22
77.81.124.0/22 maxlen: 22
77.81.191.0/24 maxlen: 24
79.139.84.0/22 maxlen: 22
80.240.108.0/23 maxlen: 23
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.211.0/24 maxlen: 24
81.19.215.0/24 maxlen: 24
81.19.216.0/24 maxlen: 24
82.97.192.0/23 maxlen: 23
84.247.0.0/24 maxlen: 24
84.247.40.0/23 maxlen: 24
84.247.42.0/23 maxlen: 24
85.204.70.0/24 maxlen: 24
86.104.20.0/22 maxlen: 22
86.104.20.0/23 maxlen: 24
86.104.22.0/23 maxlen: 24
86.104.248.0/22 maxlen: 22
86.104.248.0/24 maxlen: 24
86.104.249.0/24 maxlen: 24
86.106.89.0/24 maxlen: 24
86.106.112.0/24 maxlen: 24
86.106.135.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.107.241.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
89.21.67.0/24 maxlen: 24
89.32.127.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
89.34.96.0/24 maxlen: 24
89.34.97.0/24 maxlen: 24
89.35.25.0/24 maxlen: 24
89.35.28.0/22 maxlen: 22
89.37.64.0/22 maxlen: 22
89.37.172.0/22 maxlen: 22
89.37.173.0/24 maxlen: 24
89.38.68.0/23 maxlen: 23
89.40.212.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.248.0/22 maxlen: 22
93.114.83.0/24 maxlen: 24
93.114.129.0/24 maxlen: 24
93.118.40.0/22 maxlen: 22
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
134.255.243.0/24 maxlen: 24
176.223.172.0/22 maxlen: 22
176.223.172.0/23 maxlen: 24
176.223.174.0/23 maxlen: 24
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.16.204.0/22 maxlen: 22
185.38.148.0/22 maxlen: 22
185.44.76.0/22 maxlen: 22
185.61.156.0/22 maxlen: 22
185.61.156.0/24 maxlen: 24
185.61.157.0/24 maxlen: 24
185.114.224.0/24 maxlen: 24
185.121.136.0/22 maxlen: 22
185.125.204.0/22 maxlen: 22
185.134.20.0/22 maxlen: 22
185.137.36.0/22 maxlen: 24
185.158.240.0/22 maxlen: 24
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
185.200.204.0/22 maxlen: 22
185.216.144.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
185.223.235.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.60.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
188.241.246.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
193.32.208.0/24 maxlen: 24
193.124.20.0/23 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
194.88.96.0/21 maxlen: 24
194.88.98.0/23 maxlen: 24
195.20.108.0/23 maxlen: 23
195.20.108.0/24 maxlen: 24
195.140.212.0/22 maxlen: 24
195.206.165.0/24 maxlen: 24
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
195.234.124.0/23 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
212.237.224.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
217.146.92.0/24 maxlen: 24
2a00:1a30::/32 maxlen: 32
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:34::/48 maxlen: 48
2a01:4020:35::/48 maxlen: 48
2a01:4020:100::/40 maxlen: 40
2a01:4020:200::/40 maxlen: 40
2a0b:b840::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f8:78:38:f4:99:25:48:ef:ec:8d:2e:81:b8:c4:d4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Nov 4 18:38:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd94a38d57f357f21786831f53e8f04c4c16d166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:46:2f:53:0e:e8:b3:bd:bf:f0:b0:9b:47:
13:47:1c:f0:eb:0f:78:89:96:c0:4c:85:ae:58:49:
d6:d1:cf:e9:19:09:eb:e9:50:b4:b5:3d:32:be:ee:
84:15:85:3f:79:ca:85:f6:c8:15:f0:69:c2:ef:0e:
d7:d7:d0:65:d3:66:ff:02:e4:c3:46:ce:45:6b:91:
f0:97:e3:9f:8b:e3:9a:31:fc:fc:14:76:1d:74:c1:
58:e5:ea:14:7e:47:19:f8:bd:9e:f8:69:5d:3d:e5:
90:80:5e:92:78:87:73:03:bc:e5:25:44:dd:d4:09:
b5:de:32:94:17:f4:7f:b2:b3:3f:0b:74:96:10:cc:
b0:7f:bd:b4:d2:67:5b:40:6c:17:8a:b5:59:94:f3:
a5:ea:21:13:6e:80:91:17:06:7a:82:e8:be:f7:61:
8a:f1:6c:94:33:99:e6:32:2b:8a:f0:57:99:4e:e4:
13:b2:17:9e:0e:b3:d0:30:9f:a6:c7:34:31:83:64:
86:01:6e:fc:21:1b:69:46:16:48:37:e6:df:46:9b:
2c:a4:97:96:6a:30:d6:9a:dc:33:8e:0c:fd:c2:3b:
d4:cc:00:84:60:19:7d:f7:17:b3:92:12:aa:f4:59:
2e:e6:b1:5f:1f:be:65:20:de:53:df:60:d0:72:23:
1d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:94:A3:8D:57:F3:57:F2:17:86:83:1F:53:E8:F0:4C:4C:16:D1:66
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_ZSjjVfzV_IXhoMfU-jwTEwW0WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
31.14.254.0/24
37.10.113.0-37.10.114.255
46.102.155.0/24
46.247.142.0/23
64.239.236.0/22
77.81.124.0/22
77.81.191.0/24
79.139.84.0/22
80.240.108.0/23
81.19.208.0/20
82.97.192.0/23
84.247.0.0/24
84.247.40.0/22
85.204.70.0/24
86.104.20.0/22
86.104.248.0/22
86.106.89.0/24
86.106.112.0/24
86.106.135.0/24
86.106.157.0-86.106.158.255
86.107.241.0/24
89.21.64.0/22
89.32.127.0/24
89.34.96.0/22
89.35.25.0/24
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
89.46.248.0/22
93.114.83.0/24
93.114.129.0/24
93.118.40.0/22
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
176.223.172.0/22
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.200.204.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
188.241.246.0/24
193.32.208.0/22
193.124.20.0/23
193.176.28.0/22
194.50.234.0/23
194.88.96.0/21
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
212.237.224.0/22
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
cf:28:00:68:a5:5e:4a:47:6a:25:a0:b7:82:1a:17:fc:5a:18:
e7:23:ef:f6:66:02:82:30:aa:8b:4b:cd:42:1d:3e:f5:b2:25:
a6:29:74:ab:76:2c:6c:93:63:eb:10:5b:2f:6d:f7:ec:05:a9:
d6:c0:c0:a3:e2:a9:d8:8d:05:89:3d:11:1b:fc:94:55:c8:cc:
fd:cd:59:e6:d5:78:93:cf:6a:c8:64:c4:67:45:3f:4a:31:19:
9c:85:af:06:f0:ad:38:e3:14:96:24:65:70:be:bc:95:0c:43:
f0:78:6f:eb:7e:34:32:c8:a3:d3:ca:6f:eb:a4:4c:58:bc:a8:
31:a5:2c:7b:f6:8f:f4:39:6f:86:22:53:02:0e:e6:2d:1e:4e:
85:a6:3f:9f:c4:43:89:56:e6:be:6a:3d:69:48:df:57:4c:9e:
3c:19:b9:3a:c3:09:2e:0d:1a:7a:93:e8:96:b4:4f:d9:5e:b3:
34:c7:42:03:e7:ad:8c:a8:31:af:76:f7:5a:56:f1:6e:a4:3f:
97:82:f3:31:08:0d:89:2c:2a:ff:f6:bd:35:74:ec:04:d0:75:
3e:a1:b3:21:58:fe:bf:ea:a5:00:95:0c:10:ed:85:79:a6:8a:
82:d9:57:f4:46:8f:09:ae:51:ca:45:d9:d2:04:32:ce:3e:46:
3b:d7:c1:24
-----BEGIN CERTIFICATE-----
MIIHNjCCBh6gAwIBAgISAZL4eDj0mSVI7+yNLoG4xNTtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzdjYzhmMTZiM2M2Y2JkMzM0NmFhM2VkNjE3NzFmM2U4
M2FjOTcwHhcNMjQxMTA0MTgzODAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDk0YTM4ZDU3ZjM1N2YyMTc4NjgzMWY1M2U4ZjA0YzRjMTZkMTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/RGL1MO6LO9v/Cwm0cTRxzw6w94
iZbATIWuWEnW0c/pGQnr6VC0tT0yvu6EFYU/ecqF9sgV8GnC7w7X19Bl02b/AuTD
Rs5Fa5Hwl+Ofi+OaMfz8FHYddMFY5eoUfkcZ+L2e+GldPeWQgF6SeIdzA7zlJUTd
1Am13jKUF/R/srM/C3SWEMywf7200mdbQGwXirVZlPOl6iETboCRFwZ6gui+92GK
8WyUM5nmMiuK8FeZTuQTsheeDrPQMJ+mxzQxg2SGAW78IRtpRhZIN+bfRpsspJeW
ajDWmtwzjgz9wjvUzACEYBl99xezkhKq9Fku5rFfH75lIN5T32DQciMdGwIDAQAB
o4IEQjCCBD4wHQYDVR0OBBYEFP2Uo41X81fyF4aDH1Po8ExMFtFmMB8GA1UdIwQY
MBaAFP03zI8Ws8bL0zRqo+1hdx8+g6yXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMt
N2UwNWFiNDFiNmU0LzEvX1pTampWZnpWX0lYaG9NZlUtandURXdXMFdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMtN2UwNWFiNDFiNmU0
LzEvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICVgYIKwYBBQUHAQcBAf8EggJFMIICQTCCAiAEAgABMIIC
GAMEAwXiiAMEAB8OZgMEAB8O/jAMAwQAJQpxAwQAJQpyAwQALmabAwQBLveOAwQC
QO/sAwQCTVF8AwQATVG/AwQCT4tUAwQBUPBsAwQEURPQAwQBUmHAAwQAVPcAAwQC
VPcoAwQAVcxGAwQCVmgUAwQCVmj4AwQAVmpZAwQAVmpwAwQAVmqHMAwDBABWap0D
BABWap4DBABWa/EDBAJZFUADBABZIH8DBAJZImADBABZIxkDBAJZIxwDBAJZJUAD
BAJZJawDBAFZJkQDBABZKNQDBAFZLt4DBAJZLvgDBABdclMDBABdcoEDBAJddigD
BANtRWgDBANtRpADBABt5ssDBABt5tEDBABt5tcDBABt5toDBABt5twDBAKAf5QD
BACG//MDBAKw36wDBASy76ADBAK5A+wDBAK5EMwDBAK5JpQDBAK5LEwDBAK5PZwD
BAC5cuADBAK5eYgDBAK5fcwDBAK5hhQDBAK5iSQDBAK5nvADBAK5yMwDBAK52JAD
BAK53+gDBAC81JoDBAO88DgDBAC88EcDBAC88XgDBAC88ZADBAG88ZwDBAC88fYD
BALBINADBAHBfBQDBALBsBwDBAHCMuoDBAPCWGADBAHDFGwDBALDjNQwDAMEAMPO
pQMEA8POoDAMAwQAw86pAwQCw86oAwQCw860AwQBw+p8AwQAw+p/AwQC1O3gAwQC
1aZUAwQE2ZJQMBsEAgACMBUDBQAqABowAwUAKgFAIAMFAyoLuEAwDQYJKoZIhvcN
AQELBQADggEBAM8oAGilXkpHaiWgt4IaF/xaGOcj7/ZmAoIwqotLzUIdPvWyJaYp
dKt2LGyTY+sQWy9t9+wFqdbAwKPiqdiNBYk9ERv8lFXIzP3NWebVeJPPashkxGdF
P0oxGZyFrwbwrTjjFJYkZXC+vJUMQ/B4b+t+NDLIo9PKb+ukTFi8qDGlLHv2j/Q5
b4YiUwIO5i0eToWmP5/EQ4lW5r5qPWlI31dMnjwZuTrDCS4NGnqT6Ja0T9leszTH
QgPnrYyoMa9291pW8W6kP5eC8zEIDYksKv/2vTV07ATQdT6hsyFY/r/qpQCVDBDt
hXmmioLZV/RGjwmuUcpF2dIEMs4+RjvXwSQ=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:19 2024 by rpki-client on console-fra.rpki-client.org