Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ihS39tl8c_1-F6LyYOT_Ge1KWFc.roa
File: ihS39tl8c_1-F6LyYOT_Ge1KWFc.roa (raw, json)
Hash identifier: ZHjUCO9XAhzG6r/UwNxE2z89cMDfFG/dXSc5KZTgUGw=
Subject key identifier: 8A:14:B7:F6:D9:7C:73:FD:7E:17:A2:F2:60:E4:FF:19:ED:4A:58:57
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EC7F3E10370EA1EB337B9FF9EEBDB35FF
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ihS39tl8c_1-F6LyYOT_Ge1KWFc.roa
Signing time: Wed 10 Apr 2024 12:20:32 +0000
ROA not before: Wed 10 Apr 2024 12:20:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41436
IP address blocks: 5.180.180.0/24 maxlen: 24
5.180.181.0/24 maxlen: 24
5.180.182.0/24 maxlen: 24
5.180.183.0/24 maxlen: 24
45.91.168.0/24 maxlen: 24
45.91.169.0/24 maxlen: 24
63.250.56.0/24 maxlen: 24
63.250.57.0/24 maxlen: 24
83.229.82.0/24 maxlen: 24
83.229.83.0/24 maxlen: 24
103.13.210.0/24 maxlen: 24
103.45.247.0/24 maxlen: 24
185.181.8.0/24 maxlen: 24
185.220.204.0/24 maxlen: 24
185.220.205.0/24 maxlen: 24
185.227.110.0/24 maxlen: 24
185.247.117.0/24 maxlen: 24
193.168.173.0/24 maxlen: 24
194.37.81.0/24 maxlen: 24
194.146.38.0/24 maxlen: 24
194.146.39.0/24 maxlen: 24
195.238.121.0/24 maxlen: 24
2a06:c5c0:200::/48 maxlen: 48
2a07:3b80:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:f3:e1:03:70:ea:1e:b3:37:b9:ff:9e:eb:db:35:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 10 12:20:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a14b7f6d97c73fd7e17a2f260e4ff19ed4a5857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:38:1a:71:29:b1:6f:50:66:cd:e1:d1:c9:8c:
67:30:7d:d2:4e:bc:d5:0d:a9:11:5f:d9:85:2f:3c:
a5:c6:ef:52:21:6d:7f:0b:1d:73:87:93:72:bb:2e:
5c:3f:83:f0:40:4a:05:b9:88:e6:50:49:af:04:01:
89:e9:a3:f0:d0:7e:7d:ea:a0:59:b9:45:c8:2f:1f:
fc:cd:29:3a:4b:d4:51:c3:7b:b6:e5:81:15:94:76:
09:92:9b:c6:70:bb:c7:31:c3:7a:c9:3a:d3:d3:d1:
a5:aa:96:e8:fe:ac:f3:4e:22:2c:e4:4e:92:e1:0c:
bb:9a:32:88:dc:16:d6:d3:31:80:28:de:bc:07:d5:
1d:e6:c8:73:26:53:0b:03:0b:ef:81:8b:7b:35:a6:
cc:5e:0c:64:31:7e:f6:05:ef:52:a5:2c:a2:68:42:
78:69:20:32:29:f8:d2:ba:cd:dd:d8:04:e1:6f:e9:
17:66:7c:19:9c:2e:7c:de:1b:52:4c:6f:92:6d:65:
75:35:38:92:ff:2b:56:f2:cf:6c:90:da:2c:d9:27:
9d:90:8e:a5:1e:4f:52:c0:f4:cf:64:ca:5a:53:2e:
7c:9d:78:44:dd:d2:b0:a5:b0:b5:1a:74:06:4a:eb:
7b:ed:c5:4e:ad:59:81:ae:80:c5:56:d3:b3:40:ab:
f1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:14:B7:F6:D9:7C:73:FD:7E:17:A2:F2:60:E4:FF:19:ED:4A:58:57
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ihS39tl8c_1-F6LyYOT_Ge1KWFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.180.0/22
45.91.168.0/23
63.250.56.0/23
83.229.82.0/23
103.13.210.0/24
103.45.247.0/24
185.181.8.0/24
185.220.204.0/23
185.227.110.0/24
185.247.117.0/24
193.168.173.0/24
194.37.81.0/24
194.146.38.0/23
195.238.121.0/24
IPv6:
2a06:c5c0:200::/48
2a07:3b80:3::/48
Signature Algorithm: sha256WithRSAEncryption
ad:8b:58:53:2c:81:d0:33:79:83:c4:92:2a:a2:58:b0:62:b5:
52:dc:74:51:c5:b7:3d:fc:2f:db:10:ba:93:5a:38:a2:e1:21:
50:00:54:ca:05:95:03:d6:ba:31:fe:a2:5d:91:e7:98:46:cd:
8b:eb:72:d2:ac:0c:93:85:43:4c:5f:6b:24:11:e3:3b:63:3b:
4b:2a:9c:f6:9a:36:9e:db:23:d6:78:0c:b6:d7:7a:d3:34:ca:
ed:8d:93:fe:c0:25:59:2c:6c:14:7f:3b:7a:35:a7:83:3f:47:
d6:6c:02:c5:7c:d4:b0:8b:a0:1a:2e:18:e9:7e:58:3b:61:d8:
e7:43:9e:ee:c5:31:63:b3:4e:99:70:f3:c6:ce:af:4a:3c:31:
d3:f0:cd:b7:29:0a:35:c5:67:e3:af:b7:13:71:c1:8c:c9:ca:
21:f6:e5:fc:f9:48:8f:18:9f:b9:5c:bc:77:1f:0b:27:71:0e:
4e:f3:13:c4:49:09:79:1b:84:43:4c:a6:5f:dc:24:f4:75:38:
70:30:19:83:f6:90:a0:b4:b8:83:c2:c3:8f:ec:53:de:60:58:
83:d2:4e:a2:4b:05:89:81:12:18:1a:81:af:76:0e:da:e6:6a:
b3:52:11:bd:39:bc:a8:50:02:bb:98:37:5e:64:5b:a7:f5:42:
7f:65:1b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 08:47:13 2024 by rpki-client on console-ams.rpki-client.org