Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6PbjWwzjqQFywY029RaeM3h1KyY.roa
File: 6PbjWwzjqQFywY029RaeM3h1KyY.roa (raw, json)
Hash identifier: GMMNl21Deyti2SnW6LTLR5VpaRtV5djnyPP/AUlxcrU=
Subject key identifier: E8:F6:E3:5B:0C:E3:A9:01:72:C1:8D:36:F5:16:9E:33:78:75:2B:26
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018F76C0EC3318337F1DCC465665DC6C66CA
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6PbjWwzjqQFywY029RaeM3h1KyY.roa
Signing time: Tue 14 May 2024 10:58:25 +0000
ROA not before: Tue 14 May 2024 10:58:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8717
IP address blocks: 5.53.128.0/17 maxlen: 17
37.63.0.0/17 maxlen: 17
46.238.0.0/18 maxlen: 18
46.238.14.0/24 maxlen: 24
62.204.128.0/19 maxlen: 19
62.204.128.0/24 maxlen: 24
62.204.130.0/24 maxlen: 24
62.221.128.0/19 maxlen: 19
62.221.128.0/24 maxlen: 24
77.70.0.0/17 maxlen: 17
77.236.160.0/19 maxlen: 19
77.236.178.0/23 maxlen: 23
78.83.0.0/16 maxlen: 16
78.83.7.0/24 maxlen: 24
78.83.143.0/24 maxlen: 24
78.83.144.0/24 maxlen: 24
78.83.145.0/24 maxlen: 24
78.83.146.0/24 maxlen: 24
78.83.147.0/24 maxlen: 24
78.83.148.0/24 maxlen: 24
78.83.149.0/24 maxlen: 24
78.83.150.0/24 maxlen: 24
78.83.151.0/24 maxlen: 24
78.83.160.0/24 maxlen: 24
78.83.210.0/24 maxlen: 24
78.83.225.0/24 maxlen: 24
78.83.226.0/23 maxlen: 23
78.90.0.0/16 maxlen: 16
78.90.206.0/24 maxlen: 24
78.90.247.0/24 maxlen: 24
80.253.48.0/20 maxlen: 20
82.103.64.0/18 maxlen: 18
82.103.91.0/24 maxlen: 24
82.103.103.0/24 maxlen: 24
82.103.109.0/24 maxlen: 24
82.103.110.0/23 maxlen: 23
82.103.126.0/24 maxlen: 24
82.103.127.0/24 maxlen: 24
82.147.128.0/19 maxlen: 19
83.97.24.0/21 maxlen: 21
84.242.128.0/18 maxlen: 18
84.252.0.0/18 maxlen: 18
85.91.128.0/19 maxlen: 19
85.118.64.0/19 maxlen: 19
85.130.0.0/17 maxlen: 17
85.130.95.0/24 maxlen: 24
85.130.96.0/23 maxlen: 23
85.130.120.0/23 maxlen: 23
85.196.128.0/18 maxlen: 18
87.97.128.0/17 maxlen: 17
87.97.160.0/22 maxlen: 22
87.227.128.0/17 maxlen: 17
88.203.128.0/17 maxlen: 17
88.203.128.0/23 maxlen: 23
88.203.128.0/24 maxlen: 24
88.203.129.0/24 maxlen: 24
88.203.132.0/24 maxlen: 24
88.203.147.0/24 maxlen: 24
88.203.177.0/24 maxlen: 24
88.203.204.0/24 maxlen: 24
88.203.237.0/24 maxlen: 24
89.186.200.0/21 maxlen: 21
89.190.192.0/19 maxlen: 19
89.215.0.0/16 maxlen: 16
89.215.8.0/22 maxlen: 22
89.215.40.0/22 maxlen: 22
89.215.48.0/22 maxlen: 22
89.253.128.0/18 maxlen: 18
92.247.0.0/16 maxlen: 16
92.247.168.0/24 maxlen: 24
95.111.0.0/17 maxlen: 17
95.140.208.0/20 maxlen: 20
130.204.0.0/16 maxlen: 16
151.251.0.0/16 maxlen: 16
151.251.38.0/24 maxlen: 24
151.251.140.0/24 maxlen: 24
151.251.237.0/24 maxlen: 24
176.12.0.0/18 maxlen: 18
193.22.103.0/24 maxlen: 24
195.24.32.0/19 maxlen: 19
195.34.96.0/19 maxlen: 19
195.34.101.0/24 maxlen: 24
195.34.122.0/24 maxlen: 24
195.34.123.0/24 maxlen: 24
195.149.248.0/21 maxlen: 21
195.177.248.0/23 maxlen: 23
212.36.0.0/19 maxlen: 19
212.36.6.0/24 maxlen: 24
212.50.0.0/19 maxlen: 19
212.50.7.0/24 maxlen: 24
212.91.160.0/19 maxlen: 19
212.91.184.0/24 maxlen: 24
212.91.185.0/24 maxlen: 24
212.91.186.0/24 maxlen: 24
212.91.187.0/24 maxlen: 24
212.95.160.0/19 maxlen: 19
212.95.161.0/24 maxlen: 24
212.104.96.0/19 maxlen: 19
213.169.32.0/19 maxlen: 19
213.191.160.0/19 maxlen: 19
213.222.32.0/19 maxlen: 19
213.222.59.0/24 maxlen: 24
213.226.0.0/18 maxlen: 18
213.226.5.0/24 maxlen: 24
213.226.6.0/24 maxlen: 24
213.226.9.0/24 maxlen: 24
213.226.31.0/24 maxlen: 24
213.226.35.0/24 maxlen: 24
213.226.47.0/24 maxlen: 24
213.226.48.0/24 maxlen: 24
213.240.192.0/18 maxlen: 18
217.9.224.0/20 maxlen: 20
217.9.224.0/24 maxlen: 24
217.10.240.0/20 maxlen: 20
217.18.240.0/20 maxlen: 20
217.18.240.0/24 maxlen: 24
217.18.245.0/24 maxlen: 24
217.79.32.0/20 maxlen: 20
2a00:4800::/29 maxlen: 29
2a01:288::/32 maxlen: 32
2a01:288:400b::/48 maxlen: 48
2a01:288:400c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:c0:ec:33:18:33:7f:1d:cc:46:56:65:dc:6c:66:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 14 10:58:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8f6e35b0ce3a90172c18d36f5169e3378752b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ad:6e:6d:47:af:2a:6b:13:6b:b0:a3:9e:4c:
06:44:05:66:19:2e:e1:f9:0f:c8:63:a8:ed:97:17:
7d:6e:63:0c:63:d6:a4:2b:f2:81:86:aa:30:27:dd:
3c:55:e9:f9:2a:93:6c:e3:f2:df:38:bf:ea:e1:27:
ad:ac:b4:1d:d8:ed:15:35:e4:40:1b:af:0a:48:64:
ca:ac:f3:21:e0:09:37:7a:68:bd:6b:85:a6:4b:97:
ff:98:44:4e:8e:57:83:00:9f:dc:9f:9c:e5:1e:15:
a2:5d:06:a4:16:7d:33:2a:33:0a:6a:50:ec:2a:b3:
68:c2:a7:07:1e:00:ff:43:5d:d6:62:f3:93:6d:05:
15:15:d2:38:7c:6a:f0:2b:8a:08:cc:9f:52:18:9d:
80:46:5d:ad:bb:4f:97:3c:39:5a:02:b4:4b:cd:6e:
be:e0:20:ca:49:46:c2:f2:33:1c:61:dd:64:b6:e5:
cc:fe:70:8e:a4:50:49:21:a2:e8:15:3c:e7:58:e2:
f9:eb:1d:ec:41:ed:da:84:a1:63:68:27:00:6f:df:
d6:e2:c2:ce:28:eb:83:97:4d:11:9a:d7:d5:50:12:
83:a1:6e:2b:39:56:33:40:23:03:47:3b:66:9f:b4:
6f:3e:90:82:20:e3:38:51:13:a6:8e:d8:c5:cd:4e:
28:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F6:E3:5B:0C:E3:A9:01:72:C1:8D:36:F5:16:9E:33:78:75:2B:26
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/6PbjWwzjqQFywY029RaeM3h1KyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.128.0/17
37.63.0.0/17
46.238.0.0/18
62.204.128.0/19
62.221.128.0/19
77.70.0.0/17
77.236.160.0/19
78.83.0.0/16
78.90.0.0/16
80.253.48.0/20
82.103.64.0/18
82.147.128.0/19
83.97.24.0/21
84.242.128.0/18
84.252.0.0/18
85.91.128.0/19
85.118.64.0/19
85.130.0.0/17
85.196.128.0/18
87.97.128.0/17
87.227.128.0/17
88.203.128.0/17
89.186.200.0/21
89.190.192.0/19
89.215.0.0/16
89.253.128.0/18
92.247.0.0/16
95.111.0.0/17
95.140.208.0/20
130.204.0.0/16
151.251.0.0/16
176.12.0.0/18
193.22.103.0/24
195.24.32.0/19
195.34.96.0/19
195.149.248.0/21
195.177.248.0/23
212.36.0.0/19
212.50.0.0/19
212.91.160.0/19
212.95.160.0/19
212.104.96.0/19
213.169.32.0/19
213.191.160.0/19
213.222.32.0/19
213.226.0.0/18
213.240.192.0/18
217.9.224.0/20
217.10.240.0/20
217.18.240.0/20
217.79.32.0/20
IPv6:
2a00:4800::/29
2a01:288::/32
Signature Algorithm: sha256WithRSAEncryption
37:f5:66:83:f5:32:c2:f0:41:12:bd:5b:11:1e:ac:dc:e5:87:
1e:b8:4d:ae:06:c3:1c:30:f0:1f:47:12:61:9d:90:0e:5a:67:
ad:82:fa:e1:c5:61:01:cc:1e:a5:73:d2:25:41:3f:22:7d:8a:
f3:12:b7:5d:b4:63:96:15:d0:c9:88:53:27:1d:b3:98:35:4b:
01:23:0b:26:6c:79:4c:f3:03:ce:1e:ea:f8:82:12:0e:2d:e0:
dd:a8:a0:65:87:72:67:df:a2:9b:12:da:46:b3:8e:e2:01:8f:
81:33:69:34:44:cf:56:44:3e:74:9b:f7:28:c3:b7:2f:19:37:
cc:f5:05:70:21:d9:40:28:da:87:31:85:29:55:c0:3e:a1:00:
42:db:8b:e2:85:28:63:b4:4f:cd:ee:d6:9f:f0:c2:4d:19:7c:
22:bc:42:fe:84:95:5a:02:ed:e3:6e:00:8a:d0:f9:3b:5b:30:
92:4b:c1:d6:a9:86:d7:3f:d9:70:8e:17:c4:a5:8d:d5:da:15:
5f:cc:5d:f0:44:29:e6:6e:ac:f3:eb:69:b7:d7:bf:d8:a8:aa:
0b:14:55:51:15:5b:a0:c3:29:5e:37:3e:95:a2:9b:36:1c:ff:
7d:d0:17:de:78:59:95:66:c1:c6:7f:cd:4a:6b:7e:05:53:8d:
33:f2:9d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:26:32 2024 by rpki-client on console-ams.rpki-client.org