Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UXLKTpMnIMVutyI8fM6zatcI4Bs.roa
File: UXLKTpMnIMVutyI8fM6zatcI4Bs.roa (raw, json)
Hash identifier: sHEJKdNRz2YbtodQK765vAWpQrbsIwheumSPuXP3/Q4=
Subject key identifier: 51:72:CA:4E:93:27:20:C5:6E:B7:22:3C:7C:CE:B3:6A:D7:08:E0:1B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FAA237AB0F7D63F15E35FD1146A1F1207
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UXLKTpMnIMVutyI8fM6zatcI4Bs.roa
Signing time: Fri 24 May 2024 10:26:42 +0000
ROA not before: Fri 24 May 2024 10:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
5.57.210.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
31.222.244.0/24 maxlen: 24
31.222.245.0/24 maxlen: 24
31.222.246.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.1.0/24 maxlen: 24
62.3.2.0/24 maxlen: 24
62.3.3.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
62.68.85.0/24 maxlen: 24
62.106.69.0/24 maxlen: 24
62.204.34.0/24 maxlen: 24
62.204.38.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
80.73.244.0/24 maxlen: 24
80.91.211.0/24 maxlen: 24
80.91.212.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
84.246.110.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.213.85.0/24 maxlen: 24
91.242.226.0/24 maxlen: 24
91.242.237.0/24 maxlen: 24
91.242.239.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
93.190.121.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.10.0/24 maxlen: 24
146.19.15.0/24 maxlen: 24
146.19.25.0/24 maxlen: 24
146.19.31.0/24 maxlen: 24
146.19.47.0/24 maxlen: 24
146.19.61.0/24 maxlen: 24
146.19.64.0/24 maxlen: 24
146.19.65.0/24 maxlen: 24
146.19.68.0/24 maxlen: 24
146.19.72.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
146.19.107.0/24 maxlen: 24
146.19.109.0/24 maxlen: 24
146.19.126.0/24 maxlen: 24
146.19.136.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.116.24.0/24 maxlen: 24
176.116.25.0/24 maxlen: 24
176.116.28.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
178.212.136.0/24 maxlen: 24
178.212.138.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.140.174.0/24 maxlen: 24
185.187.16.0/24 maxlen: 24
185.187.19.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.17.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.163.20.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.26.136.0/24 maxlen: 24
194.26.233.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.143.0/24 maxlen: 24
194.104.227.0/24 maxlen: 24
194.104.229.0/24 maxlen: 24
194.104.237.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.64.111.0/24 maxlen: 24
195.96.149.0/24 maxlen: 24
195.191.99.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
212.52.30.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
213.109.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:23:7a:b0:f7:d6:3f:15:e3:5f:d1:14:6a:1f:12:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 24 10:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5172ca4e932720c56eb7223c7cceb36ad708e01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:79:14:79:f0:30:ab:97:05:f0:99:b9:aa:
4f:27:8d:f6:15:ae:2c:f7:81:25:e3:bd:06:8a:2b:
32:31:d2:01:8e:a4:62:0c:37:09:05:7c:2a:84:db:
ea:14:61:a3:f6:af:78:5a:e3:d9:fe:56:0a:34:09:
50:5e:a7:b6:f1:03:c0:7c:06:e4:2b:04:4c:d9:b3:
ea:a3:e8:a0:06:86:0d:df:f1:7b:88:d9:ef:9d:af:
b9:44:05:9e:5f:a1:14:03:8d:70:9f:7a:6c:b4:c5:
42:45:6e:25:68:4b:3a:d7:92:ae:7e:aa:c1:52:31:
fe:f6:80:27:88:f2:8e:10:5a:02:d6:ab:4b:f2:aa:
7f:1f:14:83:c8:ed:36:97:4b:a2:66:ce:62:44:ff:
cc:04:30:0d:47:25:cb:78:22:11:c8:a3:4f:9b:97:
68:c9:15:c5:71:41:a0:b4:90:8f:6b:4a:ea:34:4c:
6b:75:e2:5f:a8:24:d1:ab:02:85:a9:68:b2:36:86:
f4:0f:10:99:8e:41:68:9f:c9:3a:42:af:95:12:67:
63:99:13:e6:d6:a5:b8:ca:c8:2c:07:1f:33:db:53:
09:d9:47:d1:03:8a:1b:1a:3a:4e:41:a0:ba:38:08:
6d:4b:aa:51:aa:55:e1:6a:37:3c:df:bd:78:c9:5d:
ab:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:72:CA:4E:93:27:20:C5:6E:B7:22:3C:7C:CE:B3:6A:D7:08:E0:1B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/UXLKTpMnIMVutyI8fM6zatcI4Bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
5.57.210.0/24
31.216.60.0/24
31.222.237.0/24
31.222.244.0-31.222.246.255
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.1.0-62.3.4.255
62.3.23.0/24
62.68.85.0/24
62.106.69.0/24
62.204.34.0/24
62.204.38.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
80.73.244.0/24
80.91.211.0-80.91.212.255
84.246.81.0/24
84.246.110.0/24
89.107.12.0/24
89.248.68.0/24
91.213.85.0/24
91.242.226.0/24
91.242.237.0/24
91.242.239.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
93.157.111.0/24
93.190.120.0/23
94.103.179.0/24
94.103.190.0/24
94.124.75.0/24
94.124.77.0/24
94.143.224.0/24
146.19.10.0/24
146.19.15.0/24
146.19.25.0/24
146.19.31.0/24
146.19.47.0/24
146.19.61.0/24
146.19.64.0/23
146.19.68.0/24
146.19.72.0/24
146.19.76.0/24
146.19.96.0/24
146.19.107.0/24
146.19.109.0/24
146.19.126.0/24
146.19.136.0/24
176.100.47.0/24
176.116.8.0/24
176.116.12.0/24
176.116.24.0/23
176.116.28.0/24
176.222.58.0/24
178.212.136.0/24
178.212.138.0/24
185.81.71.0/24
185.140.174.0/24
185.187.16.0/24
185.187.19.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0-193.163.18.255
193.163.20.0/24
193.201.127.0/24
194.26.136.0/24
194.26.233.0/24
194.104.142.0/23
194.104.227.0/24
194.104.229.0/24
194.104.237.0-194.104.238.255
195.64.111.0/24
195.96.149.0/24
195.191.99.0/24
195.225.99.0/24
212.52.27.0/24
212.52.30.0/23
213.109.196.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:8a:d2:e8:9b:3a:d9:64:45:e5:af:26:ea:45:4c:c7:10:b7:
95:f1:17:6c:f5:b4:56:20:ef:84:5b:ae:5a:db:65:11:e4:d7:
75:b8:ab:ac:d5:3b:d7:77:1a:31:2b:b4:3d:56:97:87:6f:29:
2b:2d:14:98:a5:ac:13:4c:14:39:c5:16:d3:e8:0e:e4:90:95:
4a:c4:26:62:1f:e1:9b:df:3d:c4:28:0a:cf:23:f2:b6:dd:b4:
55:09:81:0b:a6:4e:23:86:94:bd:54:4e:a7:a3:d3:73:9e:9c:
c8:c3:52:69:90:5d:d5:b1:9e:9c:6d:5c:12:0e:ce:63:01:de:
6f:04:d3:50:57:c3:f7:f3:8e:27:1b:2b:ac:7a:23:ff:b1:1f:
35:f2:52:64:6b:3f:16:4b:c5:22:80:18:ea:d3:a4:b0:38:10:
70:97:9b:78:80:a6:32:4e:56:1a:55:3c:d5:99:48:9b:33:5a:
1a:ae:2f:b8:2e:59:01:9d:d6:e9:c1:ea:44:53:01:f7:16:c8:
8a:1a:3d:9c:ae:0d:dc:fc:98:7c:ae:5c:52:4d:dd:ed:fd:c8:
9f:77:16:42:26:a6:44:0a:89:c0:0d:67:3a:34:50:b0:22:34:
68:f3:02:91:86:43:1b:45:91:20:0d:21:b1:f8:14:98:33:9e:
f3:33:46:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:51 2024 by rpki-client on console-ams.rpki-client.org