Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/VxEauAX65Yd811hCWBMPJ3iE9X8.roa
File: VxEauAX65Yd811hCWBMPJ3iE9X8.roa (raw, json)
Hash identifier: vw3cpy6GidzbFuQqmDU1njVR7Xn5IFBC+UNz9DTPdm4=
Subject key identifier: 57:11:1A:B8:05:FA:E5:87:7C:D7:58:42:58:13:0F:27:78:84:F5:7F
Certificate issuer: /CN=c037958083b641b773123ceada7bef27558e5940
Certificate serial: 018CC9BC96417377C51E521F8847FB6C938A
Authority key identifier: C0:37:95:80:83:B6:41:B7:73:12:3C:EA:DA:7B:EF:27:55:8E:59:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/VxEauAX65Yd811hCWBMPJ3iE9X8.roa
Signing time: Tue 02 Jan 2024 10:33:48 +0000
ROA not before: Tue 02 Jan 2024 10:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25435
IP address blocks: 185.166.192.0/24 maxlen: 24
185.166.194.0/24 maxlen: 24
185.166.195.0/24 maxlen: 24
185.166.193.0/24 maxlen: 24
62.121.229.0/24 maxlen: 24
62.121.230.0/24 maxlen: 24
62.121.228.0/24 maxlen: 24
62.121.233.0/24 maxlen: 24
62.121.231.0/24 maxlen: 24
62.121.232.0/24 maxlen: 24
62.121.227.0/24 maxlen: 24
62.121.236.0/24 maxlen: 24
62.121.237.0/24 maxlen: 24
62.121.235.0/24 maxlen: 24
62.121.240.0/24 maxlen: 24
62.121.238.0/24 maxlen: 24
62.121.239.0/24 maxlen: 24
62.121.234.0/24 maxlen: 24
62.121.243.0/24 maxlen: 24
62.121.244.0/24 maxlen: 24
62.121.242.0/24 maxlen: 24
62.121.245.0/24 maxlen: 24
62.121.246.0/24 maxlen: 24
62.121.241.0/24 maxlen: 24
62.121.247.0/24 maxlen: 24
62.121.248.0/24 maxlen: 24
62.121.250.0/24 maxlen: 24
62.121.251.0/24 maxlen: 24
62.121.249.0/24 maxlen: 24
62.121.252.0/24 maxlen: 24
62.121.253.0/24 maxlen: 24
62.121.254.0/24 maxlen: 24
62.121.255.0/24 maxlen: 24
62.121.192.0/24 maxlen: 24
62.121.192.0/20 maxlen: 24
62.121.195.0/24 maxlen: 24
62.121.193.0/24 maxlen: 24
62.121.194.0/24 maxlen: 24
62.121.198.0/24 maxlen: 24
62.121.199.0/24 maxlen: 24
62.121.196.0/24 maxlen: 24
62.121.197.0/24 maxlen: 24
62.121.202.0/24 maxlen: 24
62.121.200.0/24 maxlen: 24
62.121.201.0/24 maxlen: 24
62.121.205.0/24 maxlen: 24
62.121.206.0/24 maxlen: 24
62.121.203.0/24 maxlen: 24
62.121.204.0/24 maxlen: 24
62.121.209.0/24 maxlen: 24
62.121.207.0/24 maxlen: 24
62.121.208.0/24 maxlen: 24
62.121.212.0/24 maxlen: 24
62.121.213.0/24 maxlen: 24
62.121.210.0/24 maxlen: 24
62.121.211.0/24 maxlen: 24
62.121.216.0/24 maxlen: 24
62.121.214.0/24 maxlen: 24
62.121.215.0/24 maxlen: 24
62.121.219.0/24 maxlen: 24
62.121.217.0/24 maxlen: 24
62.121.218.0/24 maxlen: 24
62.121.220.0/24 maxlen: 24
62.121.222.0/24 maxlen: 24
62.121.223.0/24 maxlen: 24
62.121.221.0/24 maxlen: 24
62.121.226.0/24 maxlen: 24
62.121.224.0/24 maxlen: 24
62.121.225.0/24 maxlen: 24
2a07:2d40::/48 maxlen: 48
2a07:2d40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:96:41:73:77:c5:1e:52:1f:88:47:fb:6c:93:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c037958083b641b773123ceada7bef27558e5940
Validity
Not Before: Jan 2 10:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57111ab805fae5877cd7584258130f277884f57f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d7:0b:15:6e:7a:a5:28:a8:2c:05:da:95:e5:
cb:83:15:6b:4f:43:eb:d4:bc:99:61:07:82:9c:5a:
96:cb:79:77:b0:a0:5b:fe:e9:1b:83:a4:e2:9a:a8:
0b:fe:42:33:7b:83:6b:60:2d:25:ce:d1:15:9d:b9:
6c:25:a7:0a:07:e2:ab:07:73:9e:ad:91:25:16:2c:
10:5e:46:34:7e:2c:a4:f4:81:bb:89:4c:f6:bd:35:
ad:09:08:22:18:ef:05:74:e9:4c:da:13:c3:9a:88:
9a:1a:84:6a:65:bc:6c:12:04:c5:59:5f:4c:54:f2:
aa:49:b1:04:fb:af:1c:dd:0f:dd:46:20:cb:82:80:
77:74:62:9f:d7:57:60:63:d9:a6:3c:08:ef:40:22:
f3:28:61:a0:b7:7d:e2:43:48:a6:75:b2:89:80:1b:
92:b6:b4:2d:bc:b0:0a:76:fb:bb:a6:b8:be:62:c3:
95:87:08:10:d8:98:fb:cb:5b:2d:56:dc:de:92:de:
57:4b:e2:6e:f6:f3:ae:69:80:46:e4:43:e3:cc:3a:
94:ef:db:e6:e3:fe:88:38:8d:6e:aa:58:4e:e2:62:
56:40:8c:3e:99:62:0e:8d:ae:a6:0d:75:7f:81:b8:
b0:4c:04:d9:f7:81:fc:ae:a2:6a:c7:f8:f2:9d:2c:
fe:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:11:1A:B8:05:FA:E5:87:7C:D7:58:42:58:13:0F:27:78:84:F5:7F
X509v3 Authority Key Identifier:
keyid:C0:37:95:80:83:B6:41:B7:73:12:3C:EA:DA:7B:EF:27:55:8E:59:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/VxEauAX65Yd811hCWBMPJ3iE9X8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.121.192.0/18
185.166.192.0/22
IPv6:
2a07:2d40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:7c:f8:01:4c:58:c8:66:77:14:c5:20:03:af:2d:3b:71:a7:
e1:90:39:94:c8:52:41:4c:bd:9b:3a:fd:d3:66:11:c9:7b:b6:
df:ab:8c:c0:ce:53:61:cd:6d:b6:bb:bd:be:4e:dc:54:e0:b9:
f9:4b:45:91:83:05:4b:61:05:15:fc:5f:b6:d9:99:f2:e6:1f:
41:10:45:e4:28:12:12:bc:21:e3:7c:e7:3c:c4:12:31:c9:6b:
2d:b0:47:a2:cd:f1:06:fd:8e:f5:b3:ab:7d:e3:bd:df:a6:be:
00:09:cb:f2:b3:79:58:02:ff:35:a3:0d:3a:cd:ad:3c:91:7d:
9c:60:3a:91:6e:8d:02:24:73:1e:c4:18:19:11:42:8a:91:16:
32:16:97:ad:a2:de:fe:6a:5a:cc:aa:e6:f8:40:cf:58:70:19:
94:85:d4:ae:85:ca:d6:82:a7:74:96:54:af:1a:63:50:02:6d:
b1:57:0f:ef:3b:4c:9c:a4:4d:e1:19:87:1b:17:fe:7f:bd:9f:
ba:2e:10:fc:fb:d2:c1:64:de:91:d9:3e:bb:de:fb:3e:4a:b8:
06:38:be:f6:61:59:a4:3a:04:c1:85:27:24:3a:c4:6b:ce:86:
0f:cc:d7:bb:f9:f1:9a:20:c0:ff:e1:44:1c:fc:d5:f0:04:9a:
d4:71:a1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:58:04 2024 by rpki-client on console-ams.rpki-client.org