Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/644Sz338I-Ekt3y8eGZP-wscjdI.roa
File: 644Sz338I-Ekt3y8eGZP-wscjdI.roa (raw, json)
Hash identifier: 3UxDr+doZXhrqXKAeS0dxnBwSq7HL0Ir8IP6pWS+lik=
Subject key identifier: EB:8E:12:CF:7D:FC:23:E1:24:B7:7C:BC:78:66:4F:FB:0B:1C:8D:D2
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018F29C71112E5716E192806BAD8A8209A54
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/644Sz338I-Ekt3y8eGZP-wscjdI.roa
Signing time: Mon 29 Apr 2024 12:14:22 +0000
ROA not before: Mon 29 Apr 2024 12:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.41.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.45.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.70.0/24 maxlen: 24
85.254.72.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.136.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.188.0/24 maxlen: 24
85.254.189.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
85.254.191.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.40.0/24 maxlen: 24
91.190.41.0/24 maxlen: 24
91.190.43.0/24 maxlen: 24
91.190.44.0/24 maxlen: 24
91.190.46.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
159.148.243.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:29:c7:11:12:e5:71:6e:19:28:06:ba:d8:a8:20:9a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Apr 29 12:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb8e12cf7dfc23e124b77cbc78664ffb0b1c8dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:74:30:92:98:a0:26:f2:37:17:10:71:b7:b8:
07:da:dc:22:7d:89:e9:1f:e7:76:a5:29:ac:e4:7b:
fa:61:c4:55:88:93:aa:82:e3:d6:3f:09:23:94:db:
04:f6:59:d1:d5:53:05:8e:a2:c4:e1:d8:e7:0d:6e:
ab:76:d2:e2:0f:29:99:6f:6c:76:eb:16:23:fe:df:
e3:1e:15:11:38:8f:d3:ac:20:f4:f1:a9:29:2a:cc:
34:a6:81:9a:62:38:37:bd:85:91:b2:32:dd:55:2b:
30:f1:d4:b8:6d:f1:3f:05:8c:42:0e:e8:ff:ea:0e:
16:62:6e:2d:2f:4b:bc:18:cc:0a:77:75:b3:5f:51:
1e:8c:fa:b4:40:0f:e1:57:50:fa:13:56:b0:f9:fa:
a3:35:d1:e2:83:24:be:f4:6e:f8:47:1b:1c:1b:44:
e9:23:dd:1b:15:48:d8:d2:91:f5:03:07:23:aa:85:
a3:de:28:fb:9e:5c:e7:61:3c:47:4d:24:0d:81:02:
a7:04:ba:c1:3c:95:58:df:5d:1a:d7:68:3c:5c:a7:
a3:a2:f6:77:b8:5f:24:55:0c:e0:8b:8d:dc:92:b3:
19:c0:87:b0:a9:0c:c6:97:a0:b1:05:53:54:3f:8d:
51:31:1a:88:82:ac:02:16:a1:9c:68:ae:17:bf:92:
86:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8E:12:CF:7D:FC:23:E1:24:B7:7C:BC:78:66:4F:FB:0B:1C:8D:D2
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/644Sz338I-Ekt3y8eGZP-wscjdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.41.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.45.0-85.254.46.255
85.254.52.0/22
85.254.66.0/23
85.254.70.0/24
85.254.72.0/24
85.254.133.0/24
85.254.135.0-85.254.136.255
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.188.0/22
91.190.37.0-91.190.41.255
91.190.43.0-91.190.44.255
91.190.46.0/23
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/23
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ac:2d:49:6f:36:56:a6:62:90:10:af:ff:0d:36:a2:b6:a2:
59:67:14:02:18:28:9a:73:88:a0:61:fe:e6:2b:10:49:fd:5a:
1a:9d:e4:d4:34:31:ff:b1:7b:ac:77:64:5e:75:6d:17:68:fb:
0a:c8:6f:03:f2:a5:e3:9c:d4:90:c2:cd:29:c1:de:26:63:f6:
b7:c0:04:57:41:2a:1f:b0:0b:3f:f8:87:b2:d0:48:fb:08:97:
66:77:76:ce:12:1f:06:df:5a:09:14:7e:95:b7:66:35:f7:f4:
66:0f:99:6a:95:b0:34:d8:32:d5:d0:bd:59:ca:b2:41:06:8f:
f8:ce:47:be:61:84:fb:5a:b1:77:69:6e:c2:c6:0d:6a:c8:d7:
2b:68:49:01:f6:7a:85:e4:b2:6a:88:84:40:51:a5:24:67:64:
69:69:8c:0b:af:a2:bf:60:18:51:38:82:28:a6:d7:37:85:43:
37:c3:cc:79:de:e2:f7:c9:a3:d0:95:bd:07:19:a2:dd:06:e0:
3b:a1:09:4c:fa:6b:13:29:08:92:24:6e:29:cb:ad:f5:de:79:
08:e8:2a:1e:af:d6:52:1b:f3:14:4e:82:72:73:a1:3a:2a:c7:
53:02:93:ca:d5:54:89:01:c1:85:d3:f7:ac:49:d8:80:ba:c4:
f2:2a:4b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 23:41:36 2024 by rpki-client on console-ams.rpki-client.org