Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/HpT9azmjV5gAUf-oQ6RNlkG108I.roa
File: HpT9azmjV5gAUf-oQ6RNlkG108I.roa (raw, json)
Hash identifier: /Sr55zMta2eM0JGTkYRECJRUxf6VjQf9ic/oUxfNXUA=
Subject key identifier: 1E:94:FD:6B:39:A3:57:98:00:51:FF:A8:43:A4:4D:96:41:B5:D3:C2
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 0191DD5211773611C0AA1B36A3E1919A287F
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/HpT9azmjV5gAUf-oQ6RNlkG108I.roa
Signing time: Tue 10 Sep 2024 19:03:48 +0000
ROA not before: Tue 10 Sep 2024 19:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49531
IP address blocks: 93.92.32.0/21 maxlen: 21
93.92.32.0/24 maxlen: 24
93.92.33.0/24 maxlen: 24
93.92.34.0/23 maxlen: 23
93.92.36.0/23 maxlen: 23
93.92.38.0/23 maxlen: 23
93.186.48.0/20 maxlen: 20
93.186.48.0/23 maxlen: 23
93.186.50.0/23 maxlen: 23
93.186.52.0/23 maxlen: 23
93.186.54.0/23 maxlen: 23
93.186.56.0/23 maxlen: 23
93.186.58.0/23 maxlen: 23
93.186.60.0/23 maxlen: 23
93.186.62.0/23 maxlen: 23
94.159.0.0/17 maxlen: 17
94.159.0.0/18 maxlen: 18
94.159.0.0/23 maxlen: 23
94.159.2.0/23 maxlen: 23
94.159.4.0/23 maxlen: 23
94.159.6.0/23 maxlen: 23
94.159.8.0/23 maxlen: 23
94.159.10.0/23 maxlen: 23
94.159.12.0/23 maxlen: 23
94.159.14.0/23 maxlen: 23
94.159.16.0/23 maxlen: 23
94.159.18.0/23 maxlen: 23
94.159.20.0/23 maxlen: 23
94.159.22.0/23 maxlen: 23
94.159.24.0/23 maxlen: 23
94.159.26.0/23 maxlen: 23
94.159.28.0/23 maxlen: 23
94.159.30.0/23 maxlen: 23
94.159.32.0/23 maxlen: 23
94.159.34.0/23 maxlen: 23
94.159.36.0/23 maxlen: 23
94.159.38.0/23 maxlen: 23
94.159.40.0/23 maxlen: 23
94.159.42.0/23 maxlen: 23
94.159.44.0/23 maxlen: 23
94.159.46.0/23 maxlen: 23
94.159.48.0/23 maxlen: 23
94.159.50.0/23 maxlen: 23
94.159.52.0/23 maxlen: 23
94.159.54.0/23 maxlen: 23
94.159.56.0/23 maxlen: 23
94.159.58.0/23 maxlen: 23
94.159.60.0/23 maxlen: 23
94.159.62.0/23 maxlen: 23
94.159.64.0/19 maxlen: 19
94.159.64.0/23 maxlen: 23
94.159.66.0/23 maxlen: 23
94.159.68.0/23 maxlen: 23
94.159.70.0/23 maxlen: 23
94.159.72.0/23 maxlen: 23
94.159.74.0/23 maxlen: 23
94.159.76.0/23 maxlen: 23
94.159.78.0/23 maxlen: 23
94.159.80.0/23 maxlen: 23
94.159.82.0/23 maxlen: 23
94.159.84.0/23 maxlen: 23
94.159.85.0/24 maxlen: 24
94.159.86.0/23 maxlen: 23
94.159.88.0/21 maxlen: 21
94.159.88.0/22 maxlen: 22
94.159.92.0/24 maxlen: 24
94.159.107.0/24 maxlen: 24
94.159.108.0/22 maxlen: 22
94.159.112.0/21 maxlen: 21
94.159.120.0/22 maxlen: 22
94.159.124.0/22 maxlen: 22
185.42.108.0/22 maxlen: 22
2a04:8f00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:52:11:77:36:11:c0:aa:1b:36:a3:e1:91:9a:28:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Sep 10 19:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e94fd6b39a357980051ffa843a44d9641b5d3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:28:f4:33:1d:7a:de:88:f3:5c:73:ca:32:5c:
b7:32:81:d0:1b:3b:65:a9:a8:6c:ec:a5:dc:86:12:
87:83:56:43:e3:bc:61:d0:ad:5d:45:0c:5b:49:e4:
81:a6:2f:a0:84:8c:03:b9:75:fb:2d:a5:ec:34:ca:
7a:45:7a:c3:eb:cd:06:f5:87:fe:70:2f:3b:76:ab:
ab:f0:10:54:bb:44:04:58:7b:43:d0:01:74:29:f0:
a2:b3:45:2a:f7:66:bd:e3:08:bc:02:62:71:e4:f4:
b1:49:3b:c4:08:6b:c7:f4:dc:56:f9:80:b3:fb:c6:
1e:bc:9b:3d:68:bc:83:d3:b3:72:9d:6a:72:89:d4:
e8:55:e1:a7:1e:fc:cc:59:8d:9b:09:7f:88:49:65:
58:cb:f1:8c:86:bf:a8:de:46:ec:c8:fe:b3:40:ac:
af:0b:04:5e:5f:e6:ce:d4:c7:87:88:15:5c:9a:2f:
75:97:81:24:ed:d0:40:9c:c4:1b:dc:7d:87:56:db:
b7:b0:47:69:3b:c2:7c:25:2a:6b:0f:a6:97:43:f8:
f6:ed:45:75:b0:4a:a5:9d:80:7b:48:fd:20:e1:d6:
02:f1:03:3c:46:ee:de:5d:e2:fa:1f:dc:aa:01:61:
cb:d8:b7:e0:c9:1f:26:20:44:35:42:af:25:4e:19:
1b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:94:FD:6B:39:A3:57:98:00:51:FF:A8:43:A4:4D:96:41:B5:D3:C2
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/HpT9azmjV5gAUf-oQ6RNlkG108I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.32.0/21
93.186.48.0/20
94.159.0.0/17
185.42.108.0/22
IPv6:
2a04:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
a6:ce:88:a0:ca:58:a8:33:2d:8b:f9:2b:1a:2f:85:5e:21:53:
21:26:97:2d:f0:83:f3:0e:eb:60:9a:4c:4f:d1:07:f4:87:c8:
f5:36:c3:5d:ee:c6:55:0c:68:86:36:03:4d:16:8f:ac:3a:e7:
21:bd:5d:1f:b5:a6:4e:4f:76:a1:3b:2c:25:54:81:90:3b:48:
a1:16:a6:51:39:2a:60:ee:17:1c:b8:8f:4f:7f:57:6a:80:39:
7c:b3:8e:cd:e4:27:7f:50:2b:92:61:f0:aa:81:d2:04:f1:1e:
16:e8:cf:c5:c0:5d:50:50:f1:c7:0d:ab:39:a7:12:2f:4c:c3:
e1:b7:f2:3d:63:60:0e:57:52:60:c9:eb:dc:e0:53:6f:c8:d6:
90:73:b6:b0:8a:18:b3:53:0c:63:b1:28:e3:1d:da:a9:69:22:
cf:6d:d1:d5:4b:ba:54:f7:58:9b:90:3a:03:9e:2a:66:92:c3:
4c:5e:82:81:a0:97:76:49:95:9b:b1:5c:f7:45:70:e7:12:9c:
ce:0d:fa:1f:95:3d:00:34:9a:e1:ba:15:5d:54:4b:0b:3f:cc:
ec:8e:09:a1:33:03:5c:74:01:b5:bd:35:31:7d:14:34:ac:b4:
aa:f6:db:5a:96:a9:f5:8d:e1:0e:2d:03:57:d6:65:90:3a:e8:
05:fe:5d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 16:16:58 2024 by rpki-client on console-fra.rpki-client.org