Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Mw7QmMhzHzv_PL73x1UkQSPTXrI.roa
File: Mw7QmMhzHzv_PL73x1UkQSPTXrI.roa (raw, json)
Hash identifier: tla9BBKgOJcAAltCqrn9A/cr+eZXLKGO6tOJq6Mrv9A=
Subject key identifier: 33:0E:D0:98:C8:73:1F:3B:FF:3C:BE:F7:C7:55:24:41:23:D3:5E:B2
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018FFD308A231AA0A6548BE404FCAE9BDF38
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Mw7QmMhzHzv_PL73x1UkQSPTXrI.roa
Signing time: Sun 09 Jun 2024 13:29:27 +0000
ROA not before: Sun 09 Jun 2024 13:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34170
IP address blocks: 80.69.48.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.155.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
2a05:8200::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fd:30:8a:23:1a:a0:a6:54:8b:e4:04:fc:ae:9b:df:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Jun 9 13:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=330ed098c8731f3bff3cbef7c755244123d35eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:19:c9:db:1a:98:a8:34:66:61:af:53:16:
9b:8a:12:74:fd:e7:72:93:07:78:fa:23:58:8f:0c:
73:4b:5f:91:99:f4:59:61:2d:c6:9f:9e:21:1f:44:
d4:46:a9:42:8d:dc:87:e5:c5:d9:09:10:2d:89:d3:
95:64:d0:ef:13:d0:88:f6:c8:e0:c3:94:d8:e0:ec:
f6:b5:61:cf:93:62:68:19:77:6d:b2:be:a2:b1:43:
76:bd:8b:83:b8:92:75:17:e4:15:f6:38:e0:7d:f4:
55:28:5e:1b:03:2f:a2:28:c5:91:20:88:f3:9b:d5:
56:f3:bb:ff:b7:91:3d:01:ac:48:f7:ef:28:db:44:
cb:27:4f:3c:39:ef:1f:de:da:dd:9a:6b:d0:c8:e2:
3b:32:44:9c:2a:42:39:53:b6:76:ad:6b:fd:7b:4e:
3a:92:31:34:cf:c0:1c:6e:4f:90:6b:e5:06:60:8c:
6c:21:59:cb:32:52:86:c1:51:95:08:fe:ed:ab:4f:
ac:90:22:28:b1:d3:e9:8a:c2:2e:25:dc:e2:50:83:
b4:79:f9:0a:8f:96:3c:1e:25:e0:c6:3f:6b:c2:f2:
a7:e1:9f:65:45:30:cf:f6:9f:0a:39:38:c8:54:89:
dc:1c:35:0d:14:7a:04:cc:aa:00:ef:04:8c:8c:0e:
9c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0E:D0:98:C8:73:1F:3B:FF:3C:BE:F7:C7:55:24:41:23:D3:5E:B2
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Mw7QmMhzHzv_PL73x1UkQSPTXrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/22
80.69.53.0/24
80.69.56.0/23
80.69.60.0/24
91.135.240.0-91.135.244.255
91.135.252.0/23
92.39.90.0-92.39.94.255
158.181.34.0/24
158.181.37.0-158.181.39.255
158.181.44.0/22
185.105.196.0/22
212.47.154.0/23
212.47.157.0-212.47.158.255
IPv6:
2a05:8200::/29
Signature Algorithm: sha256WithRSAEncryption
16:3f:ce:b3:1a:92:c9:70:53:ad:1d:5e:13:ea:ec:aa:20:03:
37:23:95:ea:75:89:d4:23:0b:20:23:fa:3d:d5:be:b8:40:de:
d1:b3:d2:3e:69:64:6e:3b:60:3e:5f:3d:a5:d8:97:55:e3:96:
1b:c2:1b:a0:69:88:aa:9b:d3:2e:c3:53:af:d7:06:1b:56:df:
06:6c:ca:dc:38:c9:8d:ef:7a:92:c2:e4:db:ce:67:42:54:88:
69:98:66:cd:ef:d3:2c:d4:9a:8c:f4:ba:b6:ed:31:f8:04:74:
a2:1b:19:f4:d8:c5:bd:02:df:44:3c:b9:53:a7:2a:59:45:a2:
0a:11:56:8e:e0:f9:81:ea:1c:7f:67:06:ca:0e:63:95:9c:71:
35:3b:c0:7c:76:1d:fb:74:7d:fc:d0:ad:cd:a6:d9:38:96:25:
29:98:97:66:d9:5f:b4:1d:d8:1a:c3:54:04:32:7f:8f:a2:cf:
cd:8f:3f:c8:4d:59:59:31:0f:53:07:58:94:0e:07:e8:e3:74:
0f:db:7d:91:e2:f7:3f:71:ab:ff:21:44:c4:b1:97:96:56:7e:
38:51:51:a0:62:ff:b7:06:a3:f5:40:ba:1b:46:75:42:c5:74:
eb:4f:50:d4:58:6b:f3:4e:c1:69:85:c3:3d:e4:c8:f9:a2:73:
82:37:b9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:11:41 2024 by rpki-client on console-fra.rpki-client.org