Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/HTVYrtzQD7bYfKhpTaBpGhdO8M8.roa
File: HTVYrtzQD7bYfKhpTaBpGhdO8M8.roa (raw, json)
Hash identifier: VJbiZ+cUCKB6/B52oNnlP30w0A5gMkiF6XyPJwVIAsM=
Subject key identifier: 1D:35:58:AE:DC:D0:0F:B6:D8:7C:A8:69:4D:A0:69:1A:17:4E:F0:CF
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 018F04571B86AE4AF1A7D6B4F186AF27F873
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/HTVYrtzQD7bYfKhpTaBpGhdO8M8.roa
Signing time: Mon 22 Apr 2024 05:46:08 +0000
ROA not before: Mon 22 Apr 2024 05:46:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 2.57.88.0/23 maxlen: 23
2.57.90.0/24 maxlen: 24
2.57.91.0/24 maxlen: 24
31.170.160.0/22 maxlen: 22
31.170.164.0/23 maxlen: 23
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 23
31.220.16.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.20.0/23 maxlen: 23
31.220.20.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.22.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.48.0/20 maxlen: 20
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.108.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
45.13.132.0/23 maxlen: 23
45.13.134.0/23 maxlen: 23
45.13.252.0/23 maxlen: 23
45.13.254.0/23 maxlen: 23
45.87.80.0/22 maxlen: 22
45.93.136.0/22 maxlen: 22
93.188.160.0/21 maxlen: 21
153.92.1.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.3.0/24 maxlen: 24
153.92.4.0/23 maxlen: 23
153.92.6.0/23 maxlen: 23
153.92.6.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.8.0/21 maxlen: 21
153.92.8.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
156.67.208.0/20 maxlen: 20
185.28.20.0/24 maxlen: 24
185.28.21.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
194.11.154.0/23 maxlen: 23
194.11.214.0/23 maxlen: 23
195.110.58.0/23 maxlen: 23
212.1.208.0/21 maxlen: 21
212.1.208.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.211.0/24 maxlen: 24
212.1.212.0/22 maxlen: 22
212.1.212.0/24 maxlen: 24
212.1.215.0/24 maxlen: 24
2a02:4780::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:2b::/48 maxlen: 48
2a02:4780:2c::/48 maxlen: 48
2a02:4780:2d::/48 maxlen: 48
2a02:4780:2e::/48 maxlen: 48
2a02:4780:2f::/48 maxlen: 48
2a02:4780:30::/48 maxlen: 48
2a02:4780:31::/48 maxlen: 48
2a02:4780:32::/48 maxlen: 48
2a02:4780:33::/48 maxlen: 48
2a02:4780:34::/48 maxlen: 48
2a02:4780:35::/48 maxlen: 48
2a02:4780:36::/48 maxlen: 48
2a02:4780:37::/48 maxlen: 48
2a02:4780:38::/48 maxlen: 48
2a02:4780:39::/48 maxlen: 48
2a02:4780:3a::/48 maxlen: 48
2a02:4780:3b::/48 maxlen: 48
2a02:4780:3c::/48 maxlen: 48
2a02:4780:3d::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:04:57:1b:86:ae:4a:f1:a7:d6:b4:f1:86:af:27:f8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Apr 22 05:46:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d3558aedcd00fb6d87ca8694da0691a174ef0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:e1:3d:b2:69:98:ac:03:cb:da:66:7d:f2:
b8:d1:54:7d:77:02:71:a8:5d:a0:4e:4a:b8:ee:bb:
c0:ed:c9:1c:07:ae:e2:b1:fd:22:b2:3e:2a:f2:72:
6c:cb:73:ec:53:22:7d:f6:45:25:ca:e5:b2:44:8d:
24:1d:f7:4e:05:ce:29:36:5a:70:6d:40:89:2c:0a:
31:66:cc:51:07:43:e9:f9:7a:97:36:6e:25:e1:48:
0d:88:13:27:c1:fd:ac:9f:d3:7c:40:ec:74:2f:86:
52:31:6b:0e:88:b3:b5:6a:48:fa:fa:b0:71:b7:5a:
89:81:d7:01:16:c8:fe:00:40:6a:9c:b8:50:f7:8c:
d6:8f:a0:31:3e:78:d2:5c:91:7e:4b:ed:c9:32:af:
10:4a:a5:32:df:b5:31:5b:9d:10:24:33:ce:bd:ff:
7e:99:80:65:69:5c:d7:ca:bb:7b:0c:9e:3d:ce:5d:
7c:14:d5:a0:28:84:2c:1a:1b:b7:e2:a9:9e:f7:cc:
63:b3:cb:02:96:d0:63:79:74:92:37:33:22:3f:e1:
f4:bf:d8:61:e1:6b:7f:ff:3b:9d:00:99:ca:78:f8:
33:8a:98:0e:6c:3f:b8:ea:5d:f4:29:14:4f:54:dc:
0d:7f:09:ba:3e:57:44:fd:43:69:eb:87:98:97:cf:
25:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:35:58:AE:DC:D0:0F:B6:D8:7C:A8:69:4D:A0:69:1A:17:4E:F0:CF
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/HTVYrtzQD7bYfKhpTaBpGhdO8M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
153.92.1.0-153.92.15.255
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:3d:ffff:ffff:ffff:ffff:ffff
2a02:4780:84::/47
Signature Algorithm: sha256WithRSAEncryption
19:2b:c3:be:3f:cc:93:99:1f:43:64:f4:78:f9:1b:55:f7:94:
5b:df:15:28:1f:83:a3:dd:a0:6a:5e:6e:0f:14:30:fd:8c:9b:
d9:c7:7a:2e:a2:e0:e8:4e:85:ec:dc:8e:2f:fc:b0:7b:53:cf:
ce:f3:c8:6f:01:c6:a9:1a:d2:19:e2:22:9c:21:a3:26:94:90:
d4:95:f7:9a:52:38:7c:ec:53:cb:c7:c2:db:54:27:36:98:22:
b7:24:fb:2e:ea:42:9c:8d:50:83:68:96:ff:24:a5:b5:f9:96:
2a:95:75:33:09:02:0a:8b:48:58:d9:a4:0f:12:6d:18:0b:66:
90:6a:47:18:f2:c7:ec:e9:0f:33:b8:aa:ba:34:64:4e:99:1c:
33:0d:57:71:4f:14:a0:49:4e:60:14:7c:19:cb:0b:06:48:df:
74:1e:fd:36:8d:c6:af:a3:2c:15:0c:51:8e:83:71:be:8a:b5:
77:05:be:45:4d:35:75:fe:93:23:2e:78:30:3e:8b:59:57:8c:
c3:0c:e5:27:45:1d:2d:87:8e:88:8a:0b:01:4a:90:12:ce:56:
ab:31:d0:e7:ea:dd:e4:66:a0:8c:e4:35:1c:d5:a8:4b:a4:dd:
ce:97:97:52:1f:39:ed:60:b8:71:27:14:e2:a9:e2:a4:9a:7d:
cf:07:7f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 05:19:19 2024 by rpki-client on console-fra.rpki-client.org