Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_FvLfv-WuJWhxJUGUoacrI-iEm4.roa
File: _FvLfv-WuJWhxJUGUoacrI-iEm4.roa (raw, json)
Hash identifier: M/kzYuek84Ag26+/HA/fGcow+wSBNAQTpMsUzr+m77c=
Subject key identifier: FC:5B:CB:7E:FF:96:B8:95:A1:C4:95:06:52:86:9C:AC:8F:A2:12:6E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FD92B5BE7B8F8FF2D8394F01D7E9F8BB8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_FvLfv-WuJWhxJUGUoacrI-iEm4.roa
Signing time: Sun 02 Jun 2024 13:37:28 +0000
ROA not before: Sun 02 Jun 2024 13:37:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 31.42.183.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
94.177.122.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
139.28.96.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
193.33.94.0/23 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
2a04:ccc0:ffff::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a04:ccc6::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b80::/32 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 04:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d9:2b:5b:e7:b8:f8:ff:2d:83:94:f0:1d:7e:9f:8b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 2 13:37:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc5bcb7eff96b895a1c4950652869cac8fa2126e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9f:0b:91:43:5a:bf:ce:5e:3c:5a:44:99:79:
60:48:0b:69:f1:c4:f1:87:8f:d7:46:cb:a2:54:e0:
94:70:e6:30:05:d5:8f:72:f0:5a:b6:df:af:71:b2:
42:36:be:26:04:b0:76:45:70:01:d6:48:5b:bf:4b:
7e:6f:06:6a:25:36:b4:00:d8:ff:5d:7c:fd:49:07:
d3:a3:36:7c:17:33:cd:38:82:c2:f5:23:22:f0:52:
62:69:91:f4:42:8d:b1:d2:10:fa:05:5e:07:79:0c:
4f:be:b8:39:2d:65:ea:a4:fb:e8:37:ba:da:9c:f9:
af:0e:19:75:dd:ea:06:d7:08:79:5c:4a:1d:80:fc:
a9:81:f2:5a:44:1b:be:d6:b1:2c:f9:37:22:1d:c2:
21:a1:80:8f:06:69:03:6f:ce:39:ff:f6:06:27:0b:
95:78:96:f2:08:41:dd:02:a5:58:8e:1c:5f:a8:d1:
46:de:22:d7:f0:fb:56:ed:e4:bf:6d:65:f8:4f:62:
24:00:d6:5d:a5:76:b6:f0:ce:95:4b:36:f0:39:99:
9e:9b:5b:be:0e:5d:7e:8d:ed:f6:61:1f:1b:95:7b:
fc:e9:bc:41:38:d7:1e:7d:2e:ab:56:b3:a2:b3:99:
b5:d5:cf:01:2c:a8:1e:4a:50:ed:4f:c3:d4:9f:01:
2d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5B:CB:7E:FF:96:B8:95:A1:C4:95:06:52:86:9C:AC:8F:A2:12:6E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_FvLfv-WuJWhxJUGUoacrI-iEm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
77.81.50.0/23
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.33.94.0/23
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
87:04:83:8c:c5:ca:29:45:4c:cd:f4:68:45:b4:d5:91:c2:e8:
35:5c:d7:0f:35:32:cf:f3:70:79:43:a6:11:4f:61:4f:e7:54:
91:be:cb:20:4b:00:85:5a:ad:85:41:76:cb:c2:aa:61:de:b6:
d3:ce:8d:1a:a3:89:87:a7:2b:87:06:1c:5d:05:d2:4b:40:0d:
6e:19:31:3f:4f:60:dd:b3:06:46:db:1f:88:24:8e:1b:7e:56:
ff:c8:87:d0:27:4b:fd:40:8a:2a:9e:ad:29:1c:d8:38:be:38:
d3:0f:d1:1d:d6:ba:06:8c:ed:a3:71:d3:96:fc:9b:55:bf:36:
3a:62:fb:83:ed:8b:59:d3:e3:1b:65:b9:1f:e5:83:9e:2b:04:
d2:fa:17:54:99:92:a7:3c:46:61:58:63:76:69:bd:d9:44:b3:
f2:ff:59:56:2d:0d:84:83:20:09:6d:8e:38:00:ce:16:05:1a:
f6:22:c2:be:dc:c4:2d:24:08:80:5c:28:47:d3:9a:16:be:89:
23:de:a3:0c:78:30:56:6c:42:e9:14:d2:03:46:0c:bb:e6:48:
f0:85:66:37:76:d8:62:d5:8b:32:b4:54:1c:94:16:b5:c1:44:
1c:9b:20:b4:76:8c:d5:2a:32:2b:75:40:b3:a1:c8:77:c3:19:
69:fd:21:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 11:37:48 2024 by rpki-client on console-ams.rpki-client.org