Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/y5SgbqM_k5mDKBUNc9Hi7ZGVw6k.roa
File: y5SgbqM_k5mDKBUNc9Hi7ZGVw6k.roa (raw, json)
Hash identifier: WfPiB+27d91dfFwLni4vGWo5JPBQ9IVUdO1ET0oTJz4=
Subject key identifier: CB:94:A0:6E:A3:3F:93:99:83:28:15:0D:73:D1:E2:ED:91:95:C3:A9
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 01932AC8E7FE23CF26CD7EAAF05D82DE7C15
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/y5SgbqM_k5mDKBUNc9Hi7ZGVw6k.roa
Signing time: Thu 14 Nov 2024 13:07:09 +0000
ROA not before: Thu 14 Nov 2024 13:07:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 2.57.88.0/23 maxlen: 24
2.57.90.0/24 maxlen: 24
2.57.91.0/24 maxlen: 24
31.170.160.0/22 maxlen: 24
31.170.164.0/23 maxlen: 24
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 24
31.220.16.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.20.0/23 maxlen: 24
31.220.20.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.22.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.48.0/20 maxlen: 24
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.108.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
45.13.132.0/23 maxlen: 24
45.13.134.0/23 maxlen: 24
45.13.252.0/23 maxlen: 24
45.13.254.0/23 maxlen: 24
45.87.80.0/22 maxlen: 24
45.93.136.0/22 maxlen: 24
93.188.160.0/21 maxlen: 24
141.136.33.0/24 maxlen: 24
141.136.34.0/24 maxlen: 24
141.136.35.0/24 maxlen: 24
141.136.36.0/24 maxlen: 24
141.136.39.0/24 maxlen: 24
141.136.41.0/24 maxlen: 24
141.136.42.0/24 maxlen: 24
141.136.43.0/24 maxlen: 24
141.136.44.0/24 maxlen: 24
141.136.45.0/24 maxlen: 24
141.136.46.0/24 maxlen: 24
141.136.47.0/24 maxlen: 24
153.92.0.0/24 maxlen: 24
153.92.1.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.3.0/24 maxlen: 24
153.92.4.0/23 maxlen: 24
153.92.6.0/23 maxlen: 24
153.92.6.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.8.0/21 maxlen: 24
153.92.8.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
153.92.208.0/22 maxlen: 24
153.92.212.0/22 maxlen: 24
153.92.216.0/21 maxlen: 24
156.67.64.0/20 maxlen: 24
156.67.208.0/20 maxlen: 24
185.28.20.0/24 maxlen: 24
185.28.21.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
194.11.154.0/23 maxlen: 24
194.11.214.0/23 maxlen: 24
195.110.58.0/23 maxlen: 24
212.1.208.0/21 maxlen: 24
212.1.208.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.211.0/24 maxlen: 24
212.1.212.0/22 maxlen: 24
212.1.212.0/24 maxlen: 24
212.1.215.0/24 maxlen: 24
2a02:4780::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:2b::/48 maxlen: 48
2a02:4780:2c::/48 maxlen: 48
2a02:4780:2d::/48 maxlen: 48
2a02:4780:2e::/48 maxlen: 48
2a02:4780:2f::/48 maxlen: 48
2a02:4780:30::/48 maxlen: 48
2a02:4780:31::/48 maxlen: 48
2a02:4780:32::/48 maxlen: 48
2a02:4780:33::/48 maxlen: 48
2a02:4780:34::/48 maxlen: 48
2a02:4780:35::/48 maxlen: 48
2a02:4780:36::/48 maxlen: 48
2a02:4780:37::/48 maxlen: 48
2a02:4780:38::/48 maxlen: 48
2a02:4780:39::/48 maxlen: 48
2a02:4780:3a::/48 maxlen: 48
2a02:4780:3b::/48 maxlen: 48
2a02:4780:3c::/48 maxlen: 48
2a02:4780:3d::/48 maxlen: 48
2a02:4780:3e::/48 maxlen: 48
2a02:4780:3f::/48 maxlen: 48
2a02:4780:40::/48 maxlen: 48
2a02:4780:41::/48 maxlen: 48
2a02:4780:42::/48 maxlen: 48
2a02:4780:43::/48 maxlen: 48
2a02:4780:44::/48 maxlen: 48
2a02:4780:45::/48 maxlen: 48
2a02:4780:46::/48 maxlen: 48
2a02:4780:47::/48 maxlen: 48
2a02:4780:48::/48 maxlen: 48
2a02:4780:49::/48 maxlen: 48
2a02:4780:4a::/48 maxlen: 48
2a02:4780:4b::/48 maxlen: 48
2a02:4780:4c::/48 maxlen: 48
2a02:4780:4d::/48 maxlen: 48
2a02:4780:4e::/48 maxlen: 48
2a02:4780:4f::/48 maxlen: 48
2a02:4780:50::/48 maxlen: 48
2a02:4780:51::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
2a02:4780:dead::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 01:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2a:c8:e7:fe:23:cf:26:cd:7e:aa:f0:5d:82:de:7c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Nov 14 13:07:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb94a06ea33f93998328150d73d1e2ed9195c3a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:34:f2:fb:83:e8:89:a1:4b:f4:bf:17:49:7f:
5e:7a:c8:a1:45:72:4b:49:41:16:bd:0b:c2:d2:db:
1b:b1:33:e2:37:b6:71:32:7b:3b:1b:93:4c:a9:bb:
c2:86:a6:ab:50:00:75:26:e2:fd:51:33:30:8d:23:
af:42:45:6e:75:e7:d1:70:4c:17:d4:79:9d:c0:14:
5f:fe:85:15:72:4d:d4:47:a6:58:3f:23:85:6b:8a:
08:00:03:c6:4e:95:1a:9a:9c:93:3c:6c:8b:77:a9:
b6:b7:e0:3e:b4:64:d6:9d:26:59:bb:a9:8c:b7:e7:
86:05:ab:a0:50:de:67:51:ca:b1:50:8c:aa:10:2f:
94:aa:c6:02:fc:b3:ba:f5:d9:74:19:69:57:da:02:
24:f6:8e:82:22:33:63:7f:9d:5a:31:ad:cc:4b:74:
77:a4:53:44:b7:15:ed:2f:71:c2:18:4a:2f:f7:12:
5e:d7:0b:34:09:bd:b8:7c:69:e5:6e:36:60:a4:b6:
ef:5d:50:49:3b:a6:d5:9f:65:3f:29:ec:1b:bb:40:
a6:16:de:9a:3f:4a:b9:b3:69:2f:a9:05:26:04:28:
a3:76:6e:1b:37:cf:17:27:57:fc:87:7a:31:01:e3:
e4:c6:4a:f4:77:2c:66:28:0b:f1:74:db:0d:5f:18:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:94:A0:6E:A3:3F:93:99:83:28:15:0D:73:D1:E2:ED:91:95:C3:A9
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/y5SgbqM_k5mDKBUNc9Hi7ZGVw6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
141.136.33.0-141.136.36.255
141.136.39.0/24
141.136.41.0-141.136.47.255
153.92.0.0/20
153.92.208.0/20
156.67.64.0/20
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:51:ffff:ffff:ffff:ffff:ffff
2a02:4780:84::/47
2a02:4780:dead::/48
Signature Algorithm: sha256WithRSAEncryption
26:f7:16:07:99:86:cb:bf:82:f8:54:0f:ec:82:ff:96:58:9b:
ed:bc:7c:1d:8b:62:10:9b:d3:81:98:88:47:65:85:fc:ee:39:
6b:fb:0f:f8:b8:57:c6:0e:d1:b6:9d:7a:36:b1:d0:d9:7c:df:
9b:0f:c5:a6:92:c9:16:23:4a:e9:53:36:9d:75:c7:b0:e3:0c:
01:d9:66:6b:fb:42:05:6f:c5:ff:44:a6:72:a1:8d:8a:ed:de:
0f:bc:e4:3f:6f:e7:6c:4a:88:97:9f:2e:56:24:24:0e:ea:c6:
cc:9b:cb:55:4a:14:b0:2d:50:ef:d4:44:20:31:85:8b:da:4c:
e3:d2:4d:cc:49:2e:2a:57:9d:5d:cc:d2:51:a7:f0:fa:a5:57:
1d:d5:1c:93:18:25:58:ca:b5:80:d0:9d:c4:8b:12:4e:ca:ec:
97:76:c0:58:82:e4:bc:cf:4f:f1:7d:ca:cb:50:d2:b0:79:cb:
41:26:91:83:4c:a0:7c:f0:6d:9d:a0:af:86:fe:66:40:73:9b:
be:8e:4b:37:0e:05:90:28:8c:60:98:d2:15:bb:79:c9:09:c1:
77:99:fb:c3:26:e4:bd:b2:f0:51:bd:32:37:05:50:92:54:0a:
fd:78:70:71:e8:47:07:13:da:b1:10:7a:c4:8e:99:88:19:ee:
b5:6e:b0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:50:30 2024 by rpki-client on console-ams.rpki-client.org