Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/UgHu7weosoACc9T3B5WhoI94l1Y.roa
File: UgHu7weosoACc9T3B5WhoI94l1Y.roa (raw, json)
Hash identifier: dT7OvVs1aStmoZClf0GA1V1nqOTf6ySOqjY8iY4sv2g=
Subject key identifier: 52:01:EE:EF:07:A8:B2:80:02:73:D4:F7:07:95:A1:A0:8F:78:97:56
Certificate issuer: /CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Certificate serial: 018CC5DC513445B790C70A35176DF6B0EDB1
Authority key identifier: DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/UgHu7weosoACc9T3B5WhoI94l1Y.roa
Signing time: Mon 01 Jan 2024 16:29:59 +0000
ROA not before: Mon 01 Jan 2024 16:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24875
IP address blocks: 185.147.12.0/22 maxlen: 24
89.105.192.0/20 maxlen: 20
89.105.192.0/19 maxlen: 19
89.105.208.0/20 maxlen: 20
80.89.236.0/23 maxlen: 23
80.89.224.0/20 maxlen: 24
185.80.232.0/22 maxlen: 22
185.80.232.0/23 maxlen: 23
185.80.234.0/23 maxlen: 23
2001:968:2016::/48 maxlen: 48
2001:968:2171::/48 maxlen: 48
2001:968:2005::/48 maxlen: 48
2001:968:2185::/48 maxlen: 48
2001:968::/32 maxlen: 32
2001:968:2160::/48 maxlen: 48
2001:968:2019::/48 maxlen: 48
2001:968:2119::/48 maxlen: 48
2001:968:2174::/48 maxlen: 48
2001:968:2177::/48 maxlen: 48
2001:968:677::/48 maxlen: 48
2001:968:2152::/48 maxlen: 48
2001:968:2108::/48 maxlen: 48
2001:968:2188::/48 maxlen: 48
2001:968:2008::/48 maxlen: 48
2001:968:2146::/48 maxlen: 48
2001:968:2021::/48 maxlen: 48
2a07:5440::/29 maxlen: 29
2001:968:2035::/48 maxlen: 48
2001:968:2135::/48 maxlen: 48
2001:968:2010::/48 maxlen: 48
2001:968:2190::/48 maxlen: 48
2001:968:2110::/48 maxlen: 48
2001:968:2193::/48 maxlen: 48
2001:968:2013::/48 maxlen: 48
2001:968:2024::/48 maxlen: 48
2001:968:2227::/48 maxlen: 48
2001:968:2127::/48 maxlen: 48
2001:968:2027::/48 maxlen: 48
2001:968:2182::/48 maxlen: 48
2001:968:2102::/48 maxlen: 48
2001:968:2138::/48 maxlen: 48
2001:968:676::/48 maxlen: 48
2001:968:2151::/48 maxlen: 48
2001:968:2140::/48 maxlen: 48
2001:968:2143::/48 maxlen: 48
2001:968:679::/48 maxlen: 48
2001:968:2179::/48 maxlen: 48
2001:968:2032::/48 maxlen: 48
2001:968:2132::/48 maxlen: 48
2a00:11f8::/32 maxlen: 32
2001:968:2026::/48 maxlen: 48
2001:968:2226::/48 maxlen: 48
2001:968:2101::/48 maxlen: 48
2001:968:2181::/48 maxlen: 48
2001:968:2001::/48 maxlen: 48
2001:968:15::/48 maxlen: 48
2001:968:2195::/48 maxlen: 48
2001:968:2015::/48 maxlen: 48
2001:968:3295::/48 maxlen: 48
2001:968:2173::/48 maxlen: 48
2001:968:2129::/48 maxlen: 48
2001:968:2004::/48 maxlen: 48
2001:968:2184::/48 maxlen: 48
2001:968:2104::/48 maxlen: 48
2001:968:2007::/48 maxlen: 48
2001:968:2107::/48 maxlen: 48
2001:968:1007::/48 maxlen: 48
2001:968:2162::/48 maxlen: 48
2001:968:2062::/48 maxlen: 48
2001:968:2198::/48 maxlen: 48
2001:968:2118::/48 maxlen: 48
2a07:5440::/32 maxlen: 32
2001:968:2131::/48 maxlen: 48
2001:968:2145::/48 maxlen: 48
2001:968:2020::/48 maxlen: 48
2001:968:2023::/48 maxlen: 48
2001:968:2134::/48 maxlen: 48
2001:968:2037::/48 maxlen: 48
2001:968:2137::/48 maxlen: 48
2001:968:2412::/48 maxlen: 48
2001:968:2112::/48 maxlen: 48
2001:968:2192::/48 maxlen: 48
2001:968:2148::/48 maxlen: 48
2001:968:2106::/48 maxlen: 48
2001:968:2006::/48 maxlen: 48
2001:968:2186::/48 maxlen: 48
2001:968::/29 maxlen: 29
2001:968:675::/48 maxlen: 48
2001:968:2150::/48 maxlen: 48
2001:968:2153::/48 maxlen: 48
2001:968:2189::/48 maxlen: 48
2001:968:2109::/48 maxlen: 48
2001:968:2164::/48 maxlen: 48
2a00:11f8::/29 maxlen: 29
2001:968:2178::/48 maxlen: 48
2001:968:678::/48 maxlen: 48
2001:968:2036::/48 maxlen: 48
2001:968:2111::/48 maxlen: 48
2001:968:2191::/48 maxlen: 48
2001:968:2025::/48 maxlen: 48
2001:968:2180::/48 maxlen: 48
2001:968:780::/48 maxlen: 48
2001:968:1400::/48 maxlen: 48
2001:968:100::/48 maxlen: 48
2001:968:2103::/48 maxlen: 48
2001:968:2003::/48 maxlen: 48
2001:968:2139::/48 maxlen: 48
2001:968:2194::/48 maxlen: 48
2001:968:2197::/48 maxlen: 48
2001:968:2117::/48 maxlen: 48
2001:968:2017::/48 maxlen: 48
2001:968:2172::/48 maxlen: 48
2001:968:2128::/48 maxlen: 48
2001:968:2155::/48 maxlen: 48
2001:968:2130::/48 maxlen: 48
2001:968:2133::/48 maxlen: 48
2001:968:2144::/48 maxlen: 48
2001:968:2147::/48 maxlen: 48
2001:968:2022::/48 maxlen: 48
2001:968:2158::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:51:34:45:b7:90:c7:0a:35:17:6d:f6:b0:ed:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Validity
Not Before: Jan 1 16:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5201eeef07a8b2800273d4f70795a1a08f789756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:28:64:ef:c7:ac:eb:21:4c:cc:24:5f:2a:ea:
fb:11:5d:41:a5:af:fc:d3:a3:cb:e6:96:0e:1e:fd:
94:f0:19:f6:4d:24:e2:b4:4d:9a:fe:99:31:4f:2d:
40:4c:f3:90:e4:e0:99:bd:95:0f:17:40:fc:34:00:
1c:59:bd:29:ab:27:1c:e1:bd:db:2c:be:59:bc:b5:
e0:97:fe:a9:98:3d:88:fc:ea:b7:66:5e:13:2e:71:
a4:bb:18:0c:94:51:a2:5c:74:12:78:cf:c9:ca:69:
f5:61:3d:70:91:33:b0:2e:dd:9c:e9:c1:0e:26:67:
23:9b:14:6c:a2:1d:a5:b3:03:fe:5b:00:5a:98:11:
16:13:2b:99:2d:b9:3c:55:69:29:93:6b:38:1a:2c:
d5:b9:da:b9:82:bb:0d:a7:0a:ef:f1:86:be:1a:ba:
f3:12:82:39:01:1c:03:b2:52:a3:e9:e7:21:77:65:
1a:e9:18:53:48:e5:f6:14:81:01:86:f2:58:b2:62:
65:6d:a5:6e:81:8a:06:30:6b:d9:18:d6:c5:dc:dd:
17:2c:09:f0:3f:dc:51:42:17:b5:db:0b:86:d3:84:
94:1f:a5:d2:49:f3:2c:27:72:6d:fb:a7:6c:7b:0d:
75:f1:22:1f:a0:66:73:e9:9c:bb:cb:02:0a:b3:e8:
1d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:01:EE:EF:07:A8:B2:80:02:73:D4:F7:07:95:A1:A0:8F:78:97:56
X509v3 Authority Key Identifier:
keyid:DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/UgHu7weosoACc9T3B5WhoI94l1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.224.0/20
89.105.192.0/19
185.80.232.0/22
185.147.12.0/22
IPv6:
2001:968::/29
2a00:11f8::/29
2a07:5440::/29
Signature Algorithm: sha256WithRSAEncryption
ab:29:33:63:6f:0a:8c:23:af:e8:f9:a7:ce:40:14:53:77:99:
0d:4f:02:0b:b7:ac:31:67:ce:ed:1c:ae:7c:87:a4:d5:2b:c4:
a9:78:a7:4c:9e:a4:b4:75:21:6e:97:08:93:33:95:7f:74:3c:
3a:ff:51:a9:ec:9c:8c:eb:00:9a:5c:f0:d5:15:5a:25:45:f3:
9e:8e:c8:dd:6a:7b:cb:41:0f:96:af:7f:ed:77:b8:55:8b:b3:
2e:19:d5:96:bf:65:1d:5b:e5:b4:42:de:f5:65:74:fb:fb:0a:
4a:24:c8:83:d6:15:ca:69:c9:7b:3c:58:6e:a9:38:e7:17:04:
85:89:e4:a3:a5:3e:15:e5:40:fd:62:3c:65:69:94:52:fb:d0:
60:ec:e6:de:35:7d:1e:ef:0d:d5:0f:12:84:e7:24:5f:f6:f2:
5d:0e:f2:8b:ff:5b:59:9e:03:5f:c0:04:ef:d8:b3:44:98:b4:
fe:75:10:64:73:d7:b2:71:53:00:56:21:22:af:0f:dd:89:7b:
fb:4b:b1:56:79:aa:1e:30:f5:c7:08:90:8c:4b:43:4c:b1:89:
7f:1e:f7:92:0b:de:81:d9:74:86:63:b4:3e:d0:5e:34:ad:94:
5e:79:f3:56:57:9e:37:4a:07:5a:4c:3f:99:2d:9c:4f:4f:ec:
5e:a8:ae:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:30:00 2024 by rpki-client on console-ams.rpki-client.org