Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/wbJtVZ3PUKmo9rVAMdOVWYXZ6KY.roa
File: wbJtVZ3PUKmo9rVAMdOVWYXZ6KY.roa (raw, json)
Hash identifier: +8bc81PseuOrkXsCxG2xCPOdY8TVC6KDwU1wrXVoxWk=
Subject key identifier: C1:B2:6D:55:9D:CF:50:A9:A8:F6:B5:40:31:D3:95:59:85:D9:E8:A6
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01913224985E8524F0038F111F474B65E4B5
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/wbJtVZ3PUKmo9rVAMdOVWYXZ6KY.roa
Signing time: Thu 08 Aug 2024 13:19:04 +0000
ROA not before: Thu 08 Aug 2024 13:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
144.208.254.0/24 maxlen: 24
144.208.255.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:5c::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:6c::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:24:98:5e:85:24:f0:03:8f:11:1f:47:4b:65:e4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Aug 8 13:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1b26d559dcf50a9a8f6b54031d3955985d9e8a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:c4:0b:14:c8:d9:85:79:be:a0:ab:45:0c:
f1:7b:ed:a1:8e:0d:5c:6b:ef:db:11:f5:76:7d:5a:
ad:1d:76:b9:24:9c:24:12:86:88:ae:92:4e:d6:7a:
70:f2:58:26:3c:e4:e0:96:ca:af:b9:bc:d7:ce:55:
5b:74:1d:ca:df:23:90:8c:9c:f8:a5:9b:7b:5a:d5:
1b:25:b4:f4:ce:7b:ba:92:95:46:a0:80:c2:a2:1e:
a0:c3:fc:a5:65:e8:95:a4:64:61:8c:75:95:f6:60:
24:e5:18:fd:ab:23:09:09:28:89:61:24:84:31:5d:
fe:df:a3:40:d7:3d:77:db:4e:ad:57:cf:ad:1f:85:
b9:a5:69:1f:3f:19:b2:bb:a5:b8:2f:b6:1f:99:f2:
07:bc:a2:f9:16:cc:ec:87:00:84:5e:7b:93:7c:c2:
75:40:04:5b:da:2f:9d:7c:69:a0:0e:95:40:f6:9e:
ae:db:64:1e:37:23:c6:0e:a2:ee:d0:b7:ed:3c:ad:
15:c8:d3:cf:3b:6e:ed:43:f1:2d:e3:c6:11:d4:de:
bd:e4:bc:cc:4e:dc:19:2a:98:27:29:83:af:4b:d3:
75:93:e4:51:e2:cd:02:7e:a2:3d:95:c1:39:54:f0:
32:49:68:dc:1a:25:09:58:07:38:e3:34:af:ea:3b:
06:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B2:6D:55:9D:CF:50:A9:A8:F6:B5:40:31:D3:95:59:85:D9:E8:A6
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/wbJtVZ3PUKmo9rVAMdOVWYXZ6KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
00:f5:81:8a:f3:f5:ac:73:90:ef:52:d6:b3:5d:56:66:ae:f4:
db:ad:93:e8:8e:10:ca:46:f5:72:cf:40:4a:17:ee:f5:f5:4f:
38:5d:dd:aa:8a:63:9b:b6:00:8f:b8:38:5b:d0:5a:7b:10:bb:
b5:1d:fd:67:ae:f6:98:e2:45:06:24:74:69:2f:03:80:d1:c1:
1b:81:9c:12:13:20:6b:97:61:a4:b6:b3:1e:2c:53:ee:79:e1:
00:74:ab:d2:cc:10:6c:08:48:66:ca:d6:b9:26:52:4f:66:ed:
bc:cf:35:f0:65:a8:85:c7:b5:ff:ac:f7:1f:0b:8a:02:45:2c:
a5:40:6b:92:e7:70:8b:53:47:3c:c0:b0:d2:af:2c:f7:36:80:
e4:88:bd:c8:56:59:b0:63:4b:71:d5:2a:99:bd:e4:ef:00:ca:
01:c9:b0:db:b1:dc:3a:ae:e8:eb:bf:f1:15:8f:37:cb:3a:95:
80:cf:ec:d9:c8:66:84:e7:03:ef:6e:70:2f:4b:cd:c5:38:e5:
51:a3:5f:36:d6:ac:b0:25:d4:ab:04:fe:a6:22:42:4d:96:35:
2b:f3:e3:50:8f:de:3d:5c:40:47:94:9e:af:b9:34:10:8b:33:
36:cc:46:23:cd:8d:dd:f2:7d:f5:c3:2e:76:ad:09:bf:d5:9c:
a6:1c:79:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:53:32 2024 by rpki-client on console-ams.rpki-client.org