Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/42oA1Z5xULsdlYHZ2rpZQMpE7Yc.roa
File: 42oA1Z5xULsdlYHZ2rpZQMpE7Yc.roa (raw, json)
Hash identifier: Ynn5p7sNVggJp5F9kZ0D9Isy7mQl5GF/C73eXRaoYeE=
Subject key identifier: E3:6A:00:D5:9E:71:50:BB:1D:95:81:D9:DA:BA:59:40:CA:44:ED:87
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EC7F3E12ED325093B7646C87F7A0AE898
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/42oA1Z5xULsdlYHZ2rpZQMpE7Yc.roa
Signing time: Wed 10 Apr 2024 12:20:32 +0000
ROA not before: Wed 10 Apr 2024 12:20:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44709
IP address blocks: 5.100.248.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.251.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.253.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.95.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.228.126.0/23 maxlen: 23
103.45.244.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
185.139.231.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.91.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
2a06:c5c0::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:f3:e1:2e:d3:25:09:3b:76:46:c8:7f:7a:0a:e8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 10 12:20:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e36a00d59e7150bb1d9581d9daba5940ca44ed87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:e1:d4:f4:d4:88:ae:5f:9b:84:43:8c:67:
0f:32:ca:a6:30:80:e8:e9:0d:92:06:ea:05:eb:ce:
c4:fc:dc:fd:0e:87:d6:53:bb:48:29:58:9a:22:ce:
f7:66:82:7d:9c:78:7d:bf:29:83:71:b2:20:f7:04:
d1:91:a0:72:55:7c:58:9f:56:03:3b:de:85:a8:a0:
4b:6e:6b:c7:96:71:cb:64:c0:13:d2:9e:cb:37:b2:
c0:4d:79:99:3b:6f:d2:07:7b:89:62:52:0c:dd:88:
c8:eb:b7:5e:c0:e5:ad:07:24:a8:85:d2:0b:fd:88:
45:a2:bb:e8:9c:69:c0:fe:bf:3c:8b:04:40:65:16:
6a:3d:54:52:3b:0d:b7:ff:36:e6:1a:ae:95:c8:f6:
79:f6:4a:f1:db:4c:1f:08:94:2a:78:40:ed:4a:13:
8c:f1:fa:dd:d2:ee:89:9e:aa:a4:48:df:d3:86:1a:
c4:5a:75:03:40:29:57:44:3e:16:08:e7:d4:2d:86:
c9:0c:8b:16:3e:9b:dd:e1:a5:8f:e5:12:aa:3a:38:
7c:cc:b0:b6:3d:33:9a:ad:4b:9f:83:0d:d8:f3:76:
44:fe:8b:36:f8:18:e2:7c:20:0f:4f:9e:dc:5c:3b:
3b:80:17:bc:f5:bd:8f:3a:86:0d:86:28:b4:40:4d:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6A:00:D5:9E:71:50:BB:1D:95:81:D9:DA:BA:59:40:CA:44:ED:87
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/42oA1Z5xULsdlYHZ2rpZQMpE7Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.45.244.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0::/48
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
70:00:dc:4b:5f:15:61:50:51:91:dd:8d:9f:a0:85:24:4d:f5:
de:67:89:26:c3:ed:ad:b4:91:a7:c1:48:03:72:75:cd:17:59:
07:90:91:d8:99:21:c1:97:5e:cb:d9:18:0b:0c:16:2e:4c:39:
5b:94:ad:d5:ab:1f:91:76:5c:45:ba:fe:18:41:99:ab:1d:da:
65:4a:24:93:fb:4f:45:4d:51:57:42:ef:9c:61:b3:2b:0d:c7:
48:61:2d:41:58:8e:4d:09:fb:1d:e1:d1:0e:6f:5d:39:48:cf:
b1:d3:a9:b1:61:48:fc:6e:f7:95:8b:92:12:5c:98:83:80:65:
62:07:88:e4:d8:fb:af:87:18:43:f2:f3:50:6c:d7:02:23:cd:
aa:48:da:cf:b5:5c:a8:c4:f9:04:1d:65:22:29:b4:f2:66:11:
61:2e:28:2f:dd:f4:8c:55:6e:d6:26:13:d9:5c:92:e9:0a:e5:
2b:34:1b:f6:a1:dc:62:10:95:7c:d7:48:ba:91:31:84:87:d2:
a9:58:e7:45:f7:63:06:8b:07:0a:e7:0c:f4:e8:6d:32:0b:fa:
b5:b7:07:c2:35:e4:0f:18:99:97:bf:e3:04:dc:aa:fd:d7:c0:
83:f0:4f:3c:72:f7:e9:af:fe:7a:f8:ad:c8:37:2c:ff:6f:6b:
c9:89:d9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 08:47:13 2024 by rpki-client on console-ams.rpki-client.org