Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/u3-8mjdJ3n3zCNjL956iHZaSqFY.roa
File: u3-8mjdJ3n3zCNjL956iHZaSqFY.roa (raw, json)
Hash identifier: UopOsiMv83UNJzKkzKel/DaKRP1PypphhqpmsP8Cbqs=
Subject key identifier: BB:7F:BC:9A:37:49:DE:7D:F3:08:D8:CB:F7:9E:A2:1D:96:92:A8:56
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 0190E54296433DC0D0528ACAB53480BC7D4A
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/u3-8mjdJ3n3zCNjL956iHZaSqFY.roa
Signing time: Wed 24 Jul 2024 15:01:04 +0000
ROA not before: Wed 24 Jul 2024 15:01:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12654
IP address blocks: 84.205.64.0/24 maxlen: 24
84.205.65.0/24 maxlen: 24
84.205.66.0/24 maxlen: 24
84.205.67.0/24 maxlen: 24
84.205.69.0/24 maxlen: 24
84.205.70.0/24 maxlen: 24
84.205.75.0/24 maxlen: 24
84.205.76.0/24 maxlen: 24
84.205.80.0/24 maxlen: 24
84.205.81.0/24 maxlen: 24
84.205.82.0/24 maxlen: 24
84.205.85.0/24 maxlen: 24
84.205.86.0/24 maxlen: 24
84.205.88.0/24 maxlen: 24
84.205.91.0/24 maxlen: 24
84.205.92.0/24 maxlen: 24
93.175.144.0/24 maxlen: 24
93.175.146.0/24 maxlen: 24
93.175.152.0/24 maxlen: 24
93.175.153.0/24 maxlen: 24
93.175.154.0/25 maxlen: 25
93.175.154.128/28 maxlen: 28
2001:7fb:ee00::/48 maxlen: 48
2001:7fb:ee01::/48 maxlen: 48
2001:7fb:ee02::/48 maxlen: 48
2001:7fb:ee03::/48 maxlen: 48
2001:7fb:ee04::/48 maxlen: 48
2001:7fb:ee05::/48 maxlen: 48
2001:7fb:ef00::/48 maxlen: 48
2001:7fb:ef01::/48 maxlen: 48
2001:7fb:ef02::/48 maxlen: 48
2001:7fb:ef03::/48 maxlen: 48
2001:7fb:ef04::/48 maxlen: 48
2001:7fb:ef05::/48 maxlen: 48
2001:7fb:fb01:100::/56 maxlen: 56
2001:7fb:fb01:200::/64 maxlen: 64
2001:7fb:fd02::/48 maxlen: 48
2001:7fb:fd05::/48 maxlen: 48
2001:7fb:fe00::/48 maxlen: 48
2001:7fb:fe01::/48 maxlen: 48
2001:7fb:fe03::/48 maxlen: 48
2001:7fb:fe04::/48 maxlen: 48
2001:7fb:fe05::/48 maxlen: 48
2001:7fb:fe06::/48 maxlen: 48
2001:7fb:fe07::/48 maxlen: 48
2001:7fb:fe0a::/48 maxlen: 48
2001:7fb:fe0b::/48 maxlen: 48
2001:7fb:fe0c::/48 maxlen: 48
2001:7fb:fe0d::/48 maxlen: 48
2001:7fb:fe0e::/48 maxlen: 48
2001:7fb:fe0f::/48 maxlen: 48
2001:7fb:fe10::/48 maxlen: 48
2001:7fb:fe12::/48 maxlen: 48
2001:7fb:fe13::/48 maxlen: 48
2001:7fb:fe14::/48 maxlen: 48
2001:7fb:fe15::/48 maxlen: 48
2001:7fb:fe16::/48 maxlen: 48
2001:7fb:fe17::/48 maxlen: 48
2001:7fb:fe18::/48 maxlen: 48
2001:7fb:fe19::/48 maxlen: 48
2001:7fb:fe20::/48 maxlen: 48
2001:7fb:ff00::/48 maxlen: 48
2001:7fb:ff01::/48 maxlen: 48
2001:7fb:ff02::/48 maxlen: 48
2001:7fb:ff04::/48 maxlen: 48
2001:7fb:ff05::/48 maxlen: 48
2001:7fb:ff06::/48 maxlen: 48
2001:7fb:ff07::/48 maxlen: 48
2001:7fb:ff0a::/48 maxlen: 48
2001:7fb:ff0b::/48 maxlen: 48
2001:7fb:ff0c::/48 maxlen: 48
2001:7fb:ff0d::/48 maxlen: 48
2001:7fb:ff0e::/48 maxlen: 48
2001:7fb:ff0f::/48 maxlen: 48
2001:7fb:ff10::/48 maxlen: 48
2001:7fb:ff12::/48 maxlen: 48
2001:7fb:ff13::/48 maxlen: 48
2001:7fb:ff14::/48 maxlen: 48
2001:7fb:ff15::/48 maxlen: 48
2001:7fb:ff16::/48 maxlen: 48
2001:7fb:ff17::/48 maxlen: 48
2001:7fb:ff18::/48 maxlen: 48
2001:7fb:ff19::/48 maxlen: 48
2001:7fb:ff20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e5:42:96:43:3d:c0:d0:52:8a:ca:b5:34:80:bc:7d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jul 24 15:01:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb7fbc9a3749de7df308d8cbf79ea21d9692a856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:2d:a4:0d:c8:49:5d:4e:a4:09:fb:a0:61:
3b:88:1b:e4:26:9b:35:6b:51:84:90:f2:41:8a:89:
f4:a5:cf:42:0c:d6:9b:e9:c5:26:ea:fe:00:ed:da:
c5:28:67:38:89:b8:e0:62:8f:d8:f6:72:9f:36:70:
31:a1:67:ba:ad:a3:ad:75:5d:d9:12:0d:dd:13:1b:
27:87:f0:9d:e1:85:2a:e7:84:f8:7a:4f:3b:84:f5:
41:a6:c3:df:e6:40:7c:db:69:b1:2a:a3:e6:f1:0a:
f2:5a:41:c5:fe:99:4b:87:58:bf:70:19:c1:0f:fe:
58:d2:03:c0:b0:3a:99:48:a9:e5:66:19:90:36:d5:
59:59:6b:ae:4b:42:c5:23:1b:47:1c:13:38:6f:0d:
79:7b:eb:ce:75:51:73:f7:46:fc:f2:37:0b:20:74:
b8:89:d3:7b:d9:54:c3:1c:cb:e8:71:16:d5:10:92:
a5:8c:f5:a6:d2:6f:cc:c7:05:62:04:ba:42:b9:8b:
e4:f1:4c:7c:f6:4e:33:0b:94:c3:fa:ed:bd:77:7a:
e1:69:62:a8:50:50:57:bb:8d:ff:15:e2:d4:8e:af:
42:3f:23:72:d5:e1:f3:d1:5f:1f:66:26:64:64:a9:
24:7a:1b:7e:a4:d3:73:f2:64:25:f7:55:e2:d1:49:
e5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7F:BC:9A:37:49:DE:7D:F3:08:D8:CB:F7:9E:A2:1D:96:92:A8:56
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/u3-8mjdJ3n3zCNjL956iHZaSqFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.64.0/22
84.205.69.0-84.205.70.255
84.205.75.0-84.205.76.255
84.205.80.0-84.205.82.255
84.205.85.0-84.205.86.255
84.205.88.0/24
84.205.91.0-84.205.92.255
93.175.144.0/24
93.175.146.0/24
93.175.152.0-93.175.154.143
IPv6:
2001:7fb:ee00::-2001:7fb:ee05:ffff:ffff:ffff:ffff:ffff
2001:7fb:ef00::-2001:7fb:ef05:ffff:ffff:ffff:ffff:ffff
2001:7fb:fb01:100::-2001:7fb:fb01:200:ffff:ffff:ffff:ffff
2001:7fb:fd02::/48
2001:7fb:fd05::/48
2001:7fb:fe00::/47
2001:7fb:fe03::-2001:7fb:fe07:ffff:ffff:ffff:ffff:ffff
2001:7fb:fe0a::-2001:7fb:fe10:ffff:ffff:ffff:ffff:ffff
2001:7fb:fe12::-2001:7fb:fe19:ffff:ffff:ffff:ffff:ffff
2001:7fb:fe20::/48
2001:7fb:ff00::-2001:7fb:ff02:ffff:ffff:ffff:ffff:ffff
2001:7fb:ff04::/46
2001:7fb:ff0a::-2001:7fb:ff10:ffff:ffff:ffff:ffff:ffff
2001:7fb:ff12::-2001:7fb:ff19:ffff:ffff:ffff:ffff:ffff
2001:7fb:ff20::/48
Signature Algorithm: sha256WithRSAEncryption
6c:93:30:3e:90:7d:fb:3d:fa:c0:ba:f0:97:a4:51:31:ba:e9:
d3:1f:95:f6:b8:a6:23:ca:84:d5:dd:4f:0f:2e:94:22:04:85:
fc:4c:ef:8c:90:87:47:98:db:4a:17:32:b8:b2:d8:56:8d:d6:
2e:2a:c2:39:5e:c5:a7:cb:f6:db:67:04:5a:3f:c2:db:39:4d:
ef:64:39:13:f7:3f:8e:82:1f:6e:14:b8:d0:92:6d:69:e4:d9:
88:a9:c1:55:b6:0e:1d:58:07:2b:6b:31:82:a7:ab:91:71:07:
32:7b:c4:e2:cb:d0:5d:fc:39:dd:ea:94:60:16:a4:15:32:14:
8c:df:14:7c:6c:be:1d:b3:c8:e6:0f:88:99:b2:f7:23:a6:e9:
e2:7a:55:7f:ea:d2:b8:e5:85:ab:67:8c:13:1c:ca:61:7e:5d:
ed:4d:96:9d:b3:3a:fd:5b:fa:54:12:9e:6c:87:d5:c8:20:d3:
bc:b5:07:96:a8:5b:52:92:58:7c:a6:c2:2e:4b:07:ba:f3:64:
fd:f1:2d:48:fd:f2:be:ab:5b:59:1f:8b:5e:1c:01:57:64:50:
13:0f:e8:36:37:f3:0c:73:cb:3c:54:3a:0e:4a:a2:65:92:a9:
d5:5e:9c:c3:05:81:dd:c4:78:8c:77:84:5e:19:db:d1:9a:45:
c2:cb:ec:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:32:33 2024 by rpki-client on console-fra.rpki-client.org