Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-PwHLUaTJ8Rwc_auuDDU9Gxjsco.roa
File: 1-PwHLUaTJ8Rwc_auuDDU9Gxjsco.roa (raw, json)
Hash identifier: 9eXESc1X4uA3s8aR4lZavbP6/vhQAGXWZ/8YFL34iMc=
Subject key identifier: F8:FC:07:2D:46:93:27:C4:70:73:F6:AE:B8:30:D4:F4:6C:63:B1:CA
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018CC56E0C7807DE075D25C1E39348707C0E
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-PwHLUaTJ8Rwc_auuDDU9Gxjsco.roa
Signing time: Mon 01 Jan 2024 14:29:32 +0000
ROA not before: Mon 01 Jan 2024 14:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27882
IP address blocks: 181.41.144.0/23 maxlen: 23
181.41.144.0/24 maxlen: 24
181.41.144.0/21 maxlen: 21
181.41.144.0/22 maxlen: 24
181.41.145.0/24 maxlen: 24
181.41.148.0/23 maxlen: 23
181.41.146.0/23 maxlen: 23
181.41.150.0/24 maxlen: 24
181.41.148.0/24 maxlen: 24
181.41.147.0/24 maxlen: 24
181.41.146.0/24 maxlen: 24
181.41.150.0/23 maxlen: 23
181.41.148.0/22 maxlen: 22
181.41.151.0/24 maxlen: 24
181.41.149.0/24 maxlen: 24
181.41.158.0/24 maxlen: 24
181.41.156.0/24 maxlen: 24
181.41.158.0/23 maxlen: 23
181.41.156.0/23 maxlen: 23
181.41.159.0/24 maxlen: 24
181.41.157.0/24 maxlen: 24
181.41.156.0/22 maxlen: 22
189.28.64.0/20 maxlen: 20
189.28.64.0/19 maxlen: 19
189.28.64.0/22 maxlen: 22
189.28.64.0/21 maxlen: 21
189.28.64.0/24 maxlen: 24
189.28.64.0/23 maxlen: 23
189.28.69.0/24 maxlen: 24
189.28.71.0/24 maxlen: 24
189.28.67.0/24 maxlen: 24
189.28.65.0/24 maxlen: 24
189.28.68.0/22 maxlen: 22
189.28.68.0/23 maxlen: 23
189.28.70.0/24 maxlen: 24
189.28.68.0/24 maxlen: 24
189.28.66.0/24 maxlen: 24
189.28.66.0/23 maxlen: 23
189.28.70.0/23 maxlen: 23
189.28.75.0/24 maxlen: 24
189.28.77.0/24 maxlen: 24
189.28.73.0/24 maxlen: 24
189.28.72.0/23 maxlen: 23
189.28.76.0/22 maxlen: 22
189.28.76.0/23 maxlen: 23
189.28.72.0/21 maxlen: 21
189.28.72.0/24 maxlen: 24
189.28.72.0/22 maxlen: 22
189.28.78.0/24 maxlen: 24
189.28.78.0/23 maxlen: 23
189.28.76.0/24 maxlen: 24
189.28.74.0/24 maxlen: 24
189.28.74.0/23 maxlen: 23
189.28.81.0/24 maxlen: 24
189.28.83.0/24 maxlen: 24
189.28.79.0/24 maxlen: 24
189.28.80.0/24 maxlen: 24
189.28.84.0/22 maxlen: 22
189.28.84.0/23 maxlen: 23
189.28.85.0/24 maxlen: 24
189.28.80.0/21 maxlen: 21
189.28.80.0/23 maxlen: 23
189.28.80.0/22 maxlen: 22
189.28.80.0/20 maxlen: 20
189.28.84.0/24 maxlen: 24
189.28.82.0/24 maxlen: 24
189.28.82.0/23 maxlen: 23
189.28.88.0/23 maxlen: 23
189.28.90.0/23 maxlen: 23
189.28.86.0/23 maxlen: 23
189.28.90.0/24 maxlen: 24
189.28.89.0/24 maxlen: 24
189.28.88.0/24 maxlen: 24
189.28.86.0/24 maxlen: 24
189.28.88.0/21 maxlen: 21
189.28.87.0/24 maxlen: 24
189.28.88.0/22 maxlen: 22
189.28.91.0/24 maxlen: 24
189.28.94.0/23 maxlen: 23
189.28.92.0/23 maxlen: 23
189.28.94.0/24 maxlen: 24
189.28.92.0/24 maxlen: 24
189.28.92.0/22 maxlen: 22
189.28.95.0/24 maxlen: 24
189.28.93.0/24 maxlen: 24
203.88.98.0/23 maxlen: 23
203.88.96.0/23 maxlen: 23
203.88.98.0/24 maxlen: 24
203.88.96.0/24 maxlen: 24
203.88.96.0/22 maxlen: 22
203.88.97.0/24 maxlen: 24
203.88.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:0c:78:07:de:07:5d:25:c1:e3:93:48:70:7c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8fc072d469327c47073f6aeb830d4f46c63b1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:12:1d:74:89:21:da:49:b4:92:f8:df:fa:50:
54:91:a4:e3:ed:63:58:e8:61:95:7b:49:58:f6:e6:
8c:eb:d8:31:85:a2:da:11:93:c1:f6:61:47:d0:b8:
97:4d:95:a3:08:f5:29:3f:97:46:61:43:59:85:c9:
9c:f0:2c:3e:c0:cd:2e:51:69:ec:31:0e:5f:07:f0:
06:e7:45:10:66:6d:68:c9:e1:bf:59:01:f0:61:a7:
3c:40:25:6c:28:f9:32:d3:b9:6a:a8:b2:1e:80:8d:
51:9b:4f:f3:84:94:24:01:38:4d:af:9e:b9:f5:3a:
e2:82:72:f6:69:4e:db:e1:06:cf:6e:97:36:dd:8c:
1e:c6:fa:4c:3c:e2:a2:c7:be:f5:1b:9f:4d:d5:3d:
55:a9:7c:69:89:be:9c:49:46:69:2d:5e:39:3e:14:
bd:b1:20:24:f6:57:6e:1b:c9:36:63:bd:63:80:65:
83:a4:b9:ef:93:90:e9:ba:31:4a:e3:3d:94:e1:9c:
fb:0a:b0:04:4f:94:62:77:cf:86:23:bc:4d:54:23:
71:77:f9:99:60:94:fd:b8:6b:0d:be:6f:89:23:b0:
37:32:25:8f:2f:91:8b:00:64:cd:aa:5e:59:05:4d:
c9:55:f7:83:22:5e:59:ba:04:bd:0d:33:50:3c:53:
71:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FC:07:2D:46:93:27:C4:70:73:F6:AE:B8:30:D4:F4:6C:63:B1:CA
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-PwHLUaTJ8Rwc_auuDDU9Gxjsco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.144.0/21
181.41.156.0/22
189.28.64.0/19
203.88.96.0/22
Signature Algorithm: sha256WithRSAEncryption
40:7d:d4:01:65:af:4a:8d:c3:63:ab:65:fd:f2:8b:58:25:38:
1c:a4:37:63:a7:de:15:f0:8f:e2:87:16:96:b4:83:49:d1:e0:
14:31:b8:8e:c8:fe:67:b6:b2:18:f2:9c:f4:60:61:ce:73:6d:
16:be:48:62:cb:a8:9c:9b:f3:93:90:26:8e:6d:e5:63:ca:8e:
7e:ba:e5:1d:eb:6a:71:45:5b:e5:0e:ce:e9:ee:6c:95:49:27:
4e:24:de:ca:5f:25:26:a6:b7:ff:a9:5e:f1:b0:01:c9:69:4d:
62:16:51:10:7f:46:40:07:ec:42:ce:9d:28:3b:e7:51:15:bf:
e3:ae:b2:d7:67:8d:23:8d:a7:b6:16:7b:a2:1d:55:a2:b5:e0:
79:99:31:f5:6d:67:57:69:a1:12:ba:ec:24:a4:c4:72:25:64:
b0:fc:28:58:21:75:e5:b5:5e:96:cd:b9:26:c8:f1:2b:b6:8c:
da:2c:8f:97:36:bd:0f:45:31:0e:10:80:12:b7:04:a5:a5:90:
8c:ef:88:d5:f2:27:16:c8:de:7f:43:61:0e:e5:2a:4a:b5:41:
9e:b9:39:58:0e:6c:c0:e2:d3:aa:df:e1:9c:38:7c:03:46:13:
66:89:b8:62:a3:e5:e6:a2:98:4b:1c:03:9f:ad:20:61:7c:17:
6f:35:ed:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:42:52 2024 by rpki-client on console-ams.rpki-client.org