Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/s2BrBpPJF038uugDHJxPJHxipb4.roa
File: s2BrBpPJF038uugDHJxPJHxipb4.roa (raw, json)
Hash identifier: C/RPtmZ7cnAsm0G7cYWzChHF8vAD0R6gXrBBmyKF80c=
Subject key identifier: B3:60:6B:06:93:C9:17:4D:FC:BA:E8:03:1C:9C:4F:24:7C:62:A5:BE
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 018CC5DC4533B183F0D00B87F786171D22A4
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/s2BrBpPJF038uugDHJxPJHxipb4.roa
Signing time: Mon 01 Jan 2024 16:29:56 +0000
ROA not before: Mon 01 Jan 2024 16:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5610
IP address blocks: 80.188.0.0/17 maxlen: 17
80.188.0.0/16 maxlen: 16
83.208.64.0/18 maxlen: 18
88.83.160.0/19 maxlen: 19
194.228.128.0/17 maxlen: 17
88.83.175.0/24 maxlen: 24
90.178.0.0/15 maxlen: 15
80.188.40.0/24 maxlen: 24
83.208.0.0/18 maxlen: 18
194.228.59.0/24 maxlen: 24
83.208.0.0/16 maxlen: 16
194.228.68.0/24 maxlen: 24
109.80.0.0/15 maxlen: 15
194.228.76.0/24 maxlen: 24
217.194.160.0/20 maxlen: 20
194.228.79.0/24 maxlen: 24
85.70.0.0/17 maxlen: 17
85.70.0.0/16 maxlen: 16
85.70.0.0/15 maxlen: 15
80.188.128.0/17 maxlen: 17
37.188.128.0/17 maxlen: 17
37.188.128.0/21 maxlen: 21
37.188.136.0/21 maxlen: 21
217.117.208.0/20 maxlen: 20
37.188.144.0/20 maxlen: 20
37.188.144.0/21 maxlen: 21
37.188.152.0/21 maxlen: 21
83.208.128.0/19 maxlen: 19
81.90.160.0/20 maxlen: 20
81.90.170.0/24 maxlen: 24
81.90.168.0/24 maxlen: 24
81.90.173.0/24 maxlen: 24
85.70.128.0/17 maxlen: 17
85.160.0.0/15 maxlen: 15
83.69.32.0/19 maxlen: 19
90.177.0.0/16 maxlen: 16
194.228.0.0/17 maxlen: 17
194.228.11.0/24 maxlen: 24
194.228.0.0/16 maxlen: 16
88.100.0.0/15 maxlen: 15
194.228.13.0/24 maxlen: 24
194.228.20.0/24 maxlen: 24
88.100.0.0/14 maxlen: 14
160.218.0.0/16 maxlen: 16
194.228.32.0/24 maxlen: 24
160.218.13.0/24 maxlen: 24
90.176.64.0/18 maxlen: 18
92.243.192.0/19 maxlen: 19
109.81.213.0/24 maxlen: 24
109.81.211.0/24 maxlen: 24
109.81.212.0/24 maxlen: 24
109.81.209.0/24 maxlen: 24
90.176.32.0/19 maxlen: 19
109.81.210.0/24 maxlen: 24
88.102.0.0/16 maxlen: 16
109.81.208.0/24 maxlen: 24
88.102.0.0/15 maxlen: 15
109.81.214.0/24 maxlen: 24
109.81.215.0/24 maxlen: 24
85.193.0.0/18 maxlen: 18
90.180.0.0/14 maxlen: 14
185.61.228.0/22 maxlen: 22
90.176.128.0/17 maxlen: 17
90.183.78.0/24 maxlen: 24
90.183.76.0/24 maxlen: 24
90.183.77.0/24 maxlen: 24
90.183.72.0/24 maxlen: 24
80.188.222.0/24 maxlen: 24
37.188.224.0/21 maxlen: 21
37.188.232.0/21 maxlen: 21
85.71.0.0/16 maxlen: 16
37.188.240.0/21 maxlen: 21
37.188.240.0/20 maxlen: 20
37.188.248.0/21 maxlen: 21
37.188.160.0/21 maxlen: 21
37.188.160.0/20 maxlen: 20
37.188.168.0/21 maxlen: 21
37.188.176.0/20 maxlen: 20
37.188.176.0/21 maxlen: 21
37.188.184.0/21 maxlen: 21
37.188.192.0/23 maxlen: 23
37.188.194.0/23 maxlen: 23
90.182.6.0/24 maxlen: 24
90.182.108.0/24 maxlen: 24
2001:41d8::/32 maxlen: 32
2a00:1028::/32 maxlen: 32
2a00:1028::/29 maxlen: 29
2a00:1028:d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft
rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 01:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:45:33:b1:83:f0:d0:0b:87:f7:86:17:1d:22:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jan 1 16:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3606b0693c9174dfcbae8031c9c4f247c62a5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:93:09:80:8b:da:83:03:c9:92:80:85:0f:dc:
5c:04:57:9c:06:6c:a8:71:58:83:5b:8f:a1:18:05:
aa:93:af:18:02:3f:86:8a:c8:6b:2c:f8:4b:45:40:
c4:ce:32:6d:b7:10:18:96:ba:d5:cc:33:ab:74:ff:
51:62:ae:73:eb:01:29:df:b2:ea:17:e0:bb:c5:f5:
4d:c2:d0:3c:4d:9e:7c:97:7e:ff:14:27:47:de:45:
fe:99:84:c9:7e:e1:4b:45:12:a6:c3:9b:6a:a4:43:
e8:1b:b4:83:4e:f5:1b:e0:0d:95:9f:c8:29:b0:0c:
a5:15:13:16:a9:4d:8c:54:16:68:27:fa:b6:93:f3:
53:9c:4e:c9:50:59:96:7e:b0:22:c7:09:42:cf:aa:
23:85:fe:db:8e:7b:c6:1f:4f:64:68:06:84:b6:ba:
6c:71:c5:64:87:d7:89:18:15:6f:75:e8:47:63:b7:
62:48:b8:f0:0f:58:77:c2:79:93:94:51:6c:bc:21:
d9:43:89:e7:26:97:aa:b2:87:2e:4d:38:fd:11:f6:
2f:e7:ff:e9:c7:37:c8:b6:84:f7:80:be:c0:ae:38:
93:39:ce:54:59:e6:15:6e:1f:65:f7:ae:9b:76:65:
71:be:71:eb:89:54:a7:09:c3:6d:27:dd:9a:8c:e2:
b7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:60:6B:06:93:C9:17:4D:FC:BA:E8:03:1C:9C:4F:24:7C:62:A5:BE
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/s2BrBpPJF038uugDHJxPJHxipb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.188.128.0/17
80.188.0.0/16
81.90.160.0/20
83.69.32.0/19
83.208.0.0/16
85.70.0.0/15
85.160.0.0/15
85.193.0.0/18
88.83.160.0/19
88.100.0.0/14
90.176.32.0-90.183.255.255
92.243.192.0/19
109.80.0.0/15
160.218.0.0/16
185.61.228.0/22
194.228.0.0/16
217.117.208.0/20
217.194.160.0/20
IPv6:
2001:41d8::/32
2a00:1028::/29
Signature Algorithm: sha256WithRSAEncryption
39:fb:59:d4:ec:c1:fe:0a:ab:e1:67:65:a6:44:94:c4:96:d2:
cf:d0:67:27:5e:d0:17:e9:c8:04:bb:f1:e8:e2:d5:64:50:ce:
e1:73:98:04:bb:3a:d4:c9:67:d8:5b:64:18:f2:61:a0:42:cb:
2b:c1:9a:2c:91:76:11:d9:03:eb:a5:37:e7:d0:4d:23:52:2f:
83:05:c6:87:1e:de:e3:96:4c:8e:0e:c5:95:5f:00:18:d8:83:
78:ee:fd:b5:fa:b2:ea:e6:33:d8:e9:be:34:30:eb:c1:28:f4:
2f:e8:21:83:fc:31:ce:95:ae:15:9e:1c:50:ba:c4:5b:f7:08:
e6:45:ab:ac:df:43:a9:d6:f4:5e:f5:f0:24:d4:67:84:a9:3f:
21:5c:24:a3:83:8c:7c:35:9b:45:30:3e:ea:f7:6f:cd:e5:f2:
a0:8c:81:ea:b9:6c:9e:83:a7:45:2f:d5:9d:2e:19:14:94:b1:
da:1f:8e:78:8b:f0:38:e2:72:ad:79:a9:91:27:d2:60:8a:0a:
2d:e5:d5:31:e8:73:43:22:af:6a:30:81:fa:cc:3e:c6:e9:be:
dd:d6:08:84:f6:a6:0f:57:0b:74:39:8d:b9:b6:65:81:e7:7e:
7d:8c:21:81:07:6f:95:b5:ef:d0:02:77:5b:4f:80:f2:69:16:
f8:7f:c1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 05:58:38 2024 by rpki-client on console-fra.rpki-client.org