Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/J3GaNUsWH0FoR0Pd4Q_QMxU4vis.roa
File: J3GaNUsWH0FoR0Pd4Q_QMxU4vis.roa (raw, json)
Hash identifier: FMeS4Ji0fYUVE6GytU3Bf/i/dQfPpIvjJruqrKphFDc=
Subject key identifier: 27:71:9A:35:4B:16:1F:41:68:47:43:DD:E1:0F:D0:33:15:38:BE:2B
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 0190FD2F7702EA76713D613DBA02E4755C47
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/J3GaNUsWH0FoR0Pd4Q_QMxU4vis.roa
Signing time: Mon 29 Jul 2024 06:31:04 +0000
ROA not before: Mon 29 Jul 2024 06:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60976
IP address blocks: 31.214.168.0/21 maxlen: 21
31.214.168.0/24 maxlen: 24
31.214.169.0/24 maxlen: 24
31.214.170.0/24 maxlen: 24
31.214.171.0/24 maxlen: 24
31.214.172.0/24 maxlen: 24
31.214.173.0/24 maxlen: 24
31.214.174.0/24 maxlen: 24
31.214.175.0/24 maxlen: 24
31.214.248.0/21 maxlen: 21
31.214.248.0/24 maxlen: 24
31.214.249.0/24 maxlen: 24
31.214.250.0/24 maxlen: 24
31.214.251.0/24 maxlen: 24
31.214.252.0/24 maxlen: 24
31.214.253.0/24 maxlen: 24
31.214.254.0/24 maxlen: 24
31.214.255.0/24 maxlen: 24
37.10.64.0/24 maxlen: 24
37.10.65.0/24 maxlen: 24
37.10.66.0/24 maxlen: 24
37.10.67.0/24 maxlen: 24
37.10.109.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
37.228.136.0/24 maxlen: 24
37.228.137.0/24 maxlen: 24
37.228.138.0/24 maxlen: 24
37.228.139.0/24 maxlen: 24
82.99.215.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.216.0/24 maxlen: 24
82.99.217.0/24 maxlen: 24
82.99.218.0/24 maxlen: 24
82.99.219.0/24 maxlen: 24
82.99.238.0/24 maxlen: 24
82.99.242.0/24 maxlen: 24
82.99.243.0/24 maxlen: 24
82.99.244.0/24 maxlen: 24
95.156.236.0/24 maxlen: 24
95.156.237.0/24 maxlen: 24
95.156.252.0/22 maxlen: 22
95.156.252.0/24 maxlen: 24
95.156.253.0/24 maxlen: 24
95.156.254.0/24 maxlen: 24
95.156.255.0/24 maxlen: 24
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.204.0/24 maxlen: 24
109.230.205.0/24 maxlen: 24
109.230.206.0/24 maxlen: 24
109.230.207.0/24 maxlen: 24
109.230.221.0/24 maxlen: 24
109.230.223.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
109.230.251.0/24 maxlen: 24
134.255.200.0/21 maxlen: 21
134.255.200.0/24 maxlen: 24
134.255.201.0/24 maxlen: 24
134.255.202.0/24 maxlen: 24
134.255.203.0/24 maxlen: 24
134.255.204.0/24 maxlen: 24
134.255.205.0/24 maxlen: 24
134.255.206.0/24 maxlen: 24
134.255.207.0/24 maxlen: 24
185.10.71.0/24 maxlen: 24
185.13.228.0/22 maxlen: 22
185.13.228.0/24 maxlen: 24
185.13.229.0/24 maxlen: 24
185.13.230.0/24 maxlen: 24
185.13.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.mft
rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:2f:77:02:ea:76:71:3d:61:3d:ba:02:e4:75:5c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jul 29 06:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27719a354b161f41684743dde10fd0331538be2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3f:9a:85:6b:bd:5d:c4:b3:64:12:ab:54:07:
53:e5:33:11:89:6b:06:41:bf:68:d6:0e:ee:65:8b:
9d:7e:a4:69:84:bf:6a:ca:15:6d:4e:b7:9c:73:ae:
f2:0e:04:a2:3e:bd:4e:de:97:64:c1:8e:45:9f:1d:
13:38:22:f6:5b:71:7b:99:45:ae:e3:4e:52:76:43:
83:b2:73:d4:62:9a:5a:4c:65:41:bf:9e:3f:cd:8e:
f5:26:dd:c0:80:cf:4f:73:a5:61:f3:9a:20:c3:3a:
49:b3:e5:a0:84:0a:35:19:10:be:6f:27:85:7a:f0:
89:68:d4:57:cd:bd:fd:6a:2e:1b:60:7a:67:d6:99:
e6:45:85:ac:fb:47:ba:d9:33:bd:14:71:84:ed:8f:
eb:a2:9f:62:0b:7d:2b:97:56:e5:44:08:01:55:03:
3d:72:72:93:34:73:e0:d4:a0:6a:49:0f:36:ae:6e:
70:c6:c4:bd:e0:79:8a:e5:d8:9d:7b:ed:a8:20:56:
d5:dd:7a:a6:15:ad:e8:dd:88:50:c6:5c:48:44:10:
9a:e2:94:73:b7:7b:f5:7f:45:fd:3d:5f:1a:40:c3:
26:0d:82:e3:ba:74:f4:43:d0:d8:66:4f:4a:24:83:
f5:c6:bc:87:64:d6:c4:41:f3:5e:2e:27:fd:d4:7f:
e4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:71:9A:35:4B:16:1F:41:68:47:43:DD:E1:0F:D0:33:15:38:BE:2B
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/J3GaNUsWH0FoR0Pd4Q_QMxU4vis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.168.0/21
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.228.136.0/22
82.99.215.0-82.99.219.255
82.99.238.0/24
82.99.242.0-82.99.244.255
95.156.236.0/23
95.156.252.0/22
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.251.0/24
134.255.200.0/21
185.10.71.0/24
185.13.228.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:0a:89:74:b7:6e:d1:c8:d7:82:69:a7:b3:95:5e:4e:2e:e1:
05:42:44:a1:a6:c3:f1:01:3c:30:14:48:32:41:1f:c0:2b:88:
54:e7:0f:e8:9f:ad:84:b7:51:65:dd:d2:ab:0d:c1:ee:50:30:
17:54:52:db:b8:56:34:cf:c7:0c:c9:38:cc:71:11:4b:5d:8d:
67:7d:6a:4d:1a:f0:32:97:7f:8a:d2:0e:0b:76:ba:50:50:42:
0a:5b:f6:a1:14:25:8b:84:45:1b:b1:e4:d9:c3:34:90:26:a3:
72:cd:6c:a6:43:35:e0:83:df:f0:8d:a2:60:47:f7:36:e9:fa:
66:c2:2c:8f:80:0d:85:dd:86:5a:31:eb:14:7c:a2:dc:a8:a5:
4d:3e:df:ac:6b:c0:a1:c0:2c:36:5e:0a:c7:f9:b3:e7:a3:58:
eb:c4:f0:12:d6:2e:b6:94:56:e6:2d:67:dc:c9:e1:55:15:c8:
ed:2e:2e:df:86:92:9a:fb:46:52:d9:50:19:0d:2a:88:6a:db:
1e:00:79:a1:53:06:00:6d:6d:3f:99:e5:9f:08:71:03:e3:31:
9d:13:70:a4:d9:00:8b:5a:fa:ba:a1:62:75:a2:6e:0f:2e:c5:
ad:fc:16:34:88:67:e3:d7:84:da:f8:72:b7:c8:f3:dc:7e:47:
55:61:01:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:55:33 2024 by rpki-client on console-ams.rpki-client.org