Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/mvfpWeAmRgCtLARowc0sqJ_Bins.roa
File: mvfpWeAmRgCtLARowc0sqJ_Bins.roa (raw, json)
Hash identifier: PVO+UO8JrqkomVwKhsQt/XSAwmM69Eq1NZ5zNf1Gh/w=
Subject key identifier: 9A:F7:E9:59:E0:26:46:00:AD:2C:04:68:C1:CD:2C:A8:9F:C1:8A:7B
Certificate issuer: /CN=ee4381ce03baa625019980f378fe41bb2b6621b9
Certificate serial: 018CC56E7A42CE887B3E781C61FD84F94663
Authority key identifier: EE:43:81:CE:03:BA:A6:25:01:99:80:F3:78:FE:41:BB:2B:66:21:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7kOBzgO6piUBmYDzeP5BuytmIbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/mvfpWeAmRgCtLARowc0sqJ_Bins.roa
Signing time: Mon 01 Jan 2024 14:30:00 +0000
ROA not before: Mon 01 Jan 2024 14:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15924
IP address blocks: 31.177.191.0/24 maxlen: 24
149.0.76.0/24 maxlen: 24
46.221.0.0/18 maxlen: 18
46.221.4.0/24 maxlen: 24
46.221.2.0/24 maxlen: 24
46.221.7.0/24 maxlen: 24
46.221.6.0/24 maxlen: 24
46.221.9.0/24 maxlen: 24
46.221.12.0/24 maxlen: 24
46.221.16.0/24 maxlen: 24
46.221.15.0/24 maxlen: 24
46.221.14.0/24 maxlen: 24
46.221.24.0/24 maxlen: 24
46.221.19.0/24 maxlen: 24
46.221.18.0/24 maxlen: 24
46.221.28.0/24 maxlen: 24
46.221.27.0/24 maxlen: 24
46.221.31.0/24 maxlen: 24
46.221.26.0/24 maxlen: 24
46.221.30.0/24 maxlen: 24
46.221.25.0/24 maxlen: 24
46.221.29.0/24 maxlen: 24
46.221.36.0/24 maxlen: 24
46.221.32.0/24 maxlen: 24
46.221.35.0/24 maxlen: 24
46.221.34.0/24 maxlen: 24
46.221.38.0/24 maxlen: 24
46.221.37.0/24 maxlen: 24
46.221.33.0/24 maxlen: 24
46.221.40.0/24 maxlen: 24
46.221.39.0/24 maxlen: 24
46.221.48.0/24 maxlen: 24
46.221.51.0/24 maxlen: 24
46.221.47.0/24 maxlen: 24
46.221.49.0/24 maxlen: 24
46.221.45.0/24 maxlen: 24
46.221.56.0/24 maxlen: 24
46.221.57.0/24 maxlen: 24
46.221.60.0/24 maxlen: 24
46.221.59.0/24 maxlen: 24
46.221.63.0/24 maxlen: 24
46.221.62.0/24 maxlen: 24
46.221.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/7kOBzgO6piUBmYDzeP5BuytmIbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/7kOBzgO6piUBmYDzeP5BuytmIbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7kOBzgO6piUBmYDzeP5BuytmIbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:7a:42:ce:88:7b:3e:78:1c:61:fd:84:f9:46:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee4381ce03baa625019980f378fe41bb2b6621b9
Validity
Not Before: Jan 1 14:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9af7e959e0264600ad2c0468c1cd2ca89fc18a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6b:bc:69:d4:c7:38:b7:cd:17:ae:77:62:e3:
12:0a:15:91:e4:fe:df:31:6e:55:87:6e:69:00:ba:
1e:ea:2f:8a:71:73:46:51:57:d4:fb:00:96:19:81:
31:c3:87:bb:ba:7d:74:4a:62:ec:ef:39:20:80:db:
f7:4a:46:3e:e6:dc:94:17:dc:65:90:91:72:40:fa:
31:4c:7b:fc:f0:b4:22:8a:3f:61:2c:23:16:28:c7:
de:3d:66:aa:4e:33:f8:14:5c:52:2a:9e:d5:2d:f0:
f3:62:5e:fc:9f:33:ee:1c:5d:63:5f:a2:d6:ea:2b:
d8:d9:42:bb:dd:40:c8:a8:75:48:bc:db:de:19:f2:
9f:c4:c4:b6:4e:31:34:be:95:fd:21:14:d9:ce:5a:
8b:5c:98:13:e2:a5:53:2f:55:f3:53:0d:a4:63:b3:
80:0a:54:36:15:97:2a:92:0a:73:a8:c7:3f:65:d6:
a4:3f:56:84:7f:e2:42:67:08:1c:ea:d4:40:e5:4a:
ff:8c:ae:5d:94:f3:ea:ec:0c:5a:f8:78:f8:96:e4:
b0:8d:9a:7b:42:05:2b:93:31:a1:eb:4a:56:95:99:
c5:46:99:8a:82:1d:bf:3c:d3:c3:ff:1e:05:0b:e9:
6f:5d:c9:89:2f:a5:62:8e:6d:63:f7:87:8c:72:71:
91:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F7:E9:59:E0:26:46:00:AD:2C:04:68:C1:CD:2C:A8:9F:C1:8A:7B
X509v3 Authority Key Identifier:
keyid:EE:43:81:CE:03:BA:A6:25:01:99:80:F3:78:FE:41:BB:2B:66:21:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7kOBzgO6piUBmYDzeP5BuytmIbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/mvfpWeAmRgCtLARowc0sqJ_Bins.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/7kOBzgO6piUBmYDzeP5BuytmIbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.191.0/24
46.221.0.0/18
149.0.76.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:9e:b7:ce:48:b9:66:ec:2f:11:08:f9:2c:eb:b4:58:5b:1c:
a1:01:f5:ae:3d:c5:88:31:bc:09:68:32:ab:a5:2f:b3:83:a6:
64:ba:ca:37:fa:64:86:6f:63:3e:4c:ed:92:86:17:2a:1b:10:
40:3f:01:a0:99:34:37:df:c4:69:7e:ae:c8:b9:e5:22:7b:de:
d9:45:3e:90:04:fb:60:dd:03:c5:be:ba:8b:cc:9e:11:75:3a:
79:f5:ba:28:90:30:19:6b:0f:54:83:dc:ab:a0:9a:56:b7:86:
22:08:5f:aa:71:7a:1b:64:03:7d:d5:bf:f5:bd:8b:92:f7:0d:
7c:fd:a5:18:65:9a:b1:dd:f9:a2:1b:19:46:c9:85:e9:ae:1f:
ad:65:5f:26:25:3b:90:f4:c5:5e:9e:a3:0b:5c:54:18:30:8b:
ea:58:17:ff:76:51:0b:16:02:60:8f:be:74:14:b2:a7:9c:3e:
4c:b4:a4:32:59:49:10:98:a9:2d:00:05:26:d3:d2:94:ef:2f:
8d:7a:16:ed:9a:33:21:53:63:a4:2a:44:6e:eb:16:d4:fd:67:
56:44:4a:61:9c:fe:17:eb:9d:28:8c:b1:9d:de:30:40:d7:97:
e5:80:72:7d:e0:90:3a:74:a7:da:61:6f:b0:b8:cc:d0:23:4b:
b1:21:7b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:02:24 2024 by rpki-client on console-ams.rpki-client.org