Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zk0_vIjHB2T90bOx1g0zhxyfesA.roa
File: zk0_vIjHB2T90bOx1g0zhxyfesA.roa (raw, json)
Hash identifier: 0Ev8KuilBlMUxARZNTEHA9pOnjlkc1YQnxl5QJXBUy8=
Subject key identifier: CE:4D:3F:BC:88:C7:07:64:FD:D1:B3:B1:D6:0D:33:87:1C:9F:7A:C0
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0193441AD8AF1EA0EEA70560B3BED805F293
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zk0_vIjHB2T90bOx1g0zhxyfesA.roa
Signing time: Tue 19 Nov 2024 11:07:10 +0000
ROA not before: Tue 19 Nov 2024 11:07:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.204.0/23 maxlen: 23
37.114.208.0/21 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.225.0/24 maxlen: 24
37.114.228.0/22 maxlen: 24
37.114.232.0/21 maxlen: 24
37.114.240.0/22 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.246.0/23 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
37.221.0.0/18 maxlen: 24
37.221.0.0/20 maxlen: 20
37.235.16.0/20 maxlen: 24
37.235.19.0/24 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.164.0/22 maxlen: 24
46.34.168.0/21 maxlen: 24
46.34.178.0/23 maxlen: 24
46.34.180.0/22 maxlen: 24
46.34.184.0/22 maxlen: 24
46.34.188.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.200.0/22 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.218.0/23 maxlen: 24
79.132.220.0/23 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.248.0/23 maxlen: 23
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
81.91.144.0/22 maxlen: 24
81.91.148.0/23 maxlen: 24
81.91.150.0/23 maxlen: 24
81.91.152.0/21 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.36.0/22 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.46.0/23 maxlen: 24
86.109.53.0/24 maxlen: 24
86.109.56.0/22 maxlen: 24
86.109.58.0/23 maxlen: 24
86.109.62.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.80.0/22 maxlen: 24
109.230.82.0/24 maxlen: 24
109.230.88.0/21 maxlen: 24
109.230.88.0/23 maxlen: 24
109.230.90.0/24 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.40.240.0/22 maxlen: 24
185.45.188.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.82.164.0/23 maxlen: 24
185.85.68.0/22 maxlen: 24
185.104.228.0/24 maxlen: 24
185.133.152.0/22 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
185.208.150.0/23 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.113.0/24 maxlen: 24
188.75.114.0/23 maxlen: 24
188.75.116.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.128.0/23 maxlen: 24
188.121.128.0/24 maxlen: 24
188.121.129.0/24 maxlen: 24
188.121.136.0/21 maxlen: 24
188.121.144.0/20 maxlen: 24
188.121.144.0/22 maxlen: 24
188.121.146.0/24 maxlen: 24
188.121.148.0/23 maxlen: 24
188.121.152.0/22 maxlen: 24
188.121.156.0/24 maxlen: 24
188.121.157.0/24 maxlen: 24
188.121.158.0/23 maxlen: 24
188.136.148.0/24 maxlen: 24
188.136.174.0/24 maxlen: 24
188.136.176.0/21 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.186.0/23 maxlen: 24
188.136.188.0/23 maxlen: 24
188.136.195.0/24 maxlen: 24
188.136.197.0/24 maxlen: 24
188.136.198.0/23 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.202.0/23 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.212.0/22 maxlen: 24
188.136.216.0/22 maxlen: 24
188.136.218.0/23 maxlen: 24
188.136.220.0/23 maxlen: 24
188.136.222.0/23 maxlen: 24
213.195.16.0/22 maxlen: 24
213.207.192.0/20 maxlen: 24
213.207.193.0/24 maxlen: 24
213.207.194.0/24 maxlen: 24
213.207.201.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
2a0c:104::/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:1a:d8:af:1e:a0:ee:a7:05:60:b3:be:d8:05:f2:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Nov 19 11:07:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce4d3fbc88c70764fdd1b3b1d60d33871c9f7ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:86:df:ec:05:a8:dd:a5:be:2f:41:3f:57:
8f:e2:c9:f5:03:5d:10:ea:34:d5:16:1c:32:15:4a:
16:45:44:d5:26:eb:9a:63:c7:c3:21:7d:a5:51:50:
74:3f:2f:e8:5e:4e:6b:aa:2a:1e:10:bd:d4:73:84:
e7:ff:88:58:d8:ca:40:cb:20:aa:4c:f2:df:fb:a3:
d5:27:fb:df:bd:d5:25:7c:7f:90:43:73:8d:dd:f8:
f0:8b:cf:72:7d:3a:a5:5d:82:b1:c4:cc:8b:04:65:
86:13:8e:f0:62:87:8b:71:c4:1d:fb:22:b6:5f:c2:
f5:24:94:1b:6a:78:8a:a6:8e:db:fc:96:98:75:54:
98:10:ae:34:d9:60:a3:0d:63:0e:4c:85:61:bf:b9:
5a:3d:ee:cf:64:d7:74:0e:55:64:64:5a:07:ef:cc:
e5:3a:21:46:98:b9:5b:2a:48:89:ad:d7:2e:4e:48:
17:cf:79:fc:52:54:76:fd:48:93:5b:c7:ed:80:b4:
43:6e:10:15:97:a1:c8:8c:00:3c:f3:d8:22:83:b6:
52:4d:82:4f:a4:f8:74:58:d6:55:d0:28:63:c8:98:
19:48:87:7d:a6:ae:ab:d6:64:b7:b1:9f:b8:a5:53:
c1:62:c0:4b:83:a7:f0:b2:ab:7c:06:78:e6:6d:c8:
4d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4D:3F:BC:88:C7:07:64:FD:D1:B3:B1:D6:0D:33:87:1C:9F:7A:C0
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zk0_vIjHB2T90bOx1g0zhxyfesA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.164.0-46.34.175.255
46.34.178.0-46.34.191.255
78.158.182.0/23
79.132.200.0/22
79.132.213.0/24
79.132.217.0-79.132.221.255
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.36.0/22
86.109.41.0/24
86.109.46.0/23
86.109.53.0/24
86.109.56.0/22
86.109.62.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.40.240.0/22
185.45.188.0/22
185.70.60.0/22
185.82.164.0/23
185.85.68.0/22
185.104.228.0/24
185.133.152.0/22
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
185.208.150.0/23
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.113.0-188.75.117.255
188.75.122.0/23
188.121.128.0/19
188.136.148.0/24
188.136.174.0/24
188.136.176.0-188.136.184.255
188.136.186.0-188.136.189.255
188.136.195.0/24
188.136.197.0-188.136.199.255
188.136.201.0-188.136.203.255
188.136.208.0/24
188.136.212.0-188.136.223.255
213.195.16.0/22
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
92:08:28:fb:d6:e1:6b:c0:2f:ef:45:ca:cc:68:52:c4:19:70:
d1:cc:68:7d:d4:ec:5e:94:dd:11:68:72:f6:0b:4f:ab:c3:2d:
e2:d7:e4:69:c0:d2:b2:d2:a4:1a:2d:d0:48:90:4d:a0:67:c1:
21:0b:c7:89:87:66:98:45:29:fb:21:95:cb:9d:3b:29:44:ae:
45:30:79:b6:20:9f:3c:66:90:54:97:17:d2:7b:e8:b4:af:23:
dd:4d:7c:c8:ad:dc:c6:14:58:37:21:6a:24:44:4a:af:f3:8e:
66:96:7b:2e:e7:6c:d6:cb:c5:db:d5:29:82:e7:ae:ee:98:8d:
dc:75:b3:21:7e:9e:e0:15:1c:eb:e5:ef:57:70:07:06:ed:65:
9b:c8:1b:03:72:18:d0:d0:0d:0c:88:5f:cb:34:2e:4e:d7:74:
69:e7:9d:dd:5b:59:85:07:66:64:17:78:f4:21:09:39:1b:8d:
80:6c:0c:57:9b:8c:b4:97:2e:04:5f:42:cc:32:26:e8:d0:99:
2b:61:b7:39:f7:81:13:86:3a:b4:a4:40:fe:c1:91:fc:1f:b5:
81:f9:3f:07:a7:a4:bc:cb:ec:5b:2a:4a:64:9e:1c:b3:a2:97:
74:26:b3:ce:48:2f:7d:4d:b7:8b:be:ee:26:bc:12:cb:92:1d:
b0:20:54:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:51:05 2024 by rpki-client on console-ams.rpki-client.org