Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ISEW9gX5gB5sgcoQmMQ8zqyIInM.roa
File: ISEW9gX5gB5sgcoQmMQ8zqyIInM.roa (raw, json)
Hash identifier: uE6NVyJESWhCo7kxdyrTHo4+8y8sh3iOE2XsqMziJ+k=
Subject key identifier: 21:21:16:F6:05:F9:80:1E:6C:81:CA:10:98:C4:3C:CE:AC:88:22:73
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018CCA29D0364196B4CC39B79414D5777153
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ISEW9gX5gB5sgcoQmMQ8zqyIInM.roa
Signing time: Tue 02 Jan 2024 12:33:07 +0000
ROA not before: Tue 02 Jan 2024 12:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26548
IP address blocks: 217.145.227.0/24 maxlen: 24
45.66.208.0/24 maxlen: 24
185.61.217.0/24 maxlen: 24
185.61.218.0/24 maxlen: 24
185.61.219.0/24 maxlen: 24
185.61.222.0/24 maxlen: 24
185.61.223.0/24 maxlen: 24
185.61.221.0/24 maxlen: 24
147.78.182.0/24 maxlen: 24
147.78.183.0/24 maxlen: 24
147.78.180.0/24 maxlen: 24
147.78.181.0/24 maxlen: 24
217.145.224.0/24 maxlen: 24
217.145.226.0/24 maxlen: 24
194.104.11.0/24 maxlen: 24
45.132.184.0/24 maxlen: 24
185.68.185.0/24 maxlen: 24
5.181.170.0/24 maxlen: 24
213.108.2.0/24 maxlen: 24
45.148.124.0/24 maxlen: 24
45.138.100.0/24 maxlen: 24
77.220.193.0/24 maxlen: 24
77.220.194.0/24 maxlen: 24
185.88.100.0/24 maxlen: 24
45.10.166.0/24 maxlen: 24
93.177.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:d0:36:41:96:b4:cc:39:b7:94:14:d5:77:71:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 12:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=212116f605f9801e6c81ca1098c43cceac882273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5a:2b:af:d4:8f:1e:9d:e0:86:38:f2:9e:19:
bf:2c:b7:93:44:c9:13:5f:84:2b:b9:08:69:eb:ed:
2b:e0:5d:08:0b:60:a7:fa:fa:e0:4a:dd:3f:e0:c5:
5d:68:91:85:12:a9:11:9e:1d:2d:5a:0e:03:98:2e:
0d:51:1c:e5:b8:f6:d4:85:d2:ae:09:85:9d:87:23:
bd:b4:c8:ba:44:70:59:d6:2d:66:ff:1d:40:96:5a:
ed:e1:f5:c2:1b:32:66:b7:ea:6b:31:ed:2f:68:39:
0d:f0:36:e0:73:99:4e:2e:71:47:a7:15:19:66:c0:
f8:1e:2d:3d:79:67:fc:01:92:af:51:b0:a9:72:d3:
24:b8:f8:92:2f:f7:9e:36:a4:28:b0:d3:5c:f2:e9:
9a:e5:23:d4:3c:8a:bb:7a:8a:0e:fc:79:2c:bb:55:
fc:98:61:a4:e9:73:f4:ac:34:20:59:ed:59:5d:85:
05:79:45:1c:4d:bd:46:3c:bf:47:78:1d:82:b5:04:
30:8d:87:b3:bd:b7:5f:d9:bd:e7:57:eb:ba:1b:e4:
24:a0:2a:b1:16:18:70:91:61:af:87:78:25:e9:26:
e1:49:ab:da:d7:45:bb:a8:f6:f8:55:35:6f:b9:d9:
d3:8e:64:a0:9e:bb:c1:fe:eb:40:03:a9:5c:01:7f:
6f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:21:16:F6:05:F9:80:1E:6C:81:CA:10:98:C4:3C:CE:AC:88:22:73
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ISEW9gX5gB5sgcoQmMQ8zqyIInM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.170.0/24
45.10.166.0/24
45.66.208.0/24
45.132.184.0/24
45.138.100.0/24
45.148.124.0/24
77.220.193.0-77.220.194.255
93.177.118.0/23
147.78.180.0/22
185.61.217.0-185.61.219.255
185.61.221.0-185.61.223.255
185.68.185.0/24
185.88.100.0/24
194.104.11.0/24
213.108.2.0/24
217.145.224.0/24
217.145.226.0/23
Signature Algorithm: sha256WithRSAEncryption
18:64:53:25:3c:c6:e3:bc:c6:78:4f:d1:75:c8:48:fc:ce:1b:
cb:4e:57:db:f7:7f:6b:48:4a:f4:91:7f:99:c3:d5:45:fd:23:
5e:cb:ad:71:b7:c7:1a:77:bb:98:fd:88:ba:49:93:f4:67:a3:
d9:98:25:14:a3:7b:85:fc:48:3f:25:77:09:53:4c:dd:35:86:
b2:cd:d9:87:c2:66:1b:04:4d:e4:ec:46:4a:68:ff:95:25:5c:
da:69:b4:d0:a6:fc:a4:83:ee:d6:4d:20:cd:97:c4:4d:0c:fb:
e8:4c:39:4d:ce:9a:d1:f9:e6:5f:6d:b7:cf:2c:15:01:24:3b:
e4:b6:9d:11:b8:1f:ba:fb:52:14:9c:2d:c3:d8:12:63:20:db:
16:c0:a2:1f:cb:2e:e4:a7:97:95:62:c9:6e:86:03:ce:e0:30:
5c:f3:bf:a9:73:55:0a:27:a4:d9:4f:1b:07:3c:e0:27:4b:55:
6d:23:58:68:7c:98:f5:46:e3:1d:3c:7d:53:43:c4:46:b1:9c:
a1:c9:d9:ca:aa:c7:e4:a0:79:4a:fd:ca:a4:b3:bb:4b:88:e0:
c0:52:af:ad:e6:1d:3e:f0:64:3d:25:8a:c6:61:bb:01:a0:ab:
d5:b0:10:0a:31:9f:02:90:cf:d0:c8:11:79:d0:2a:21:ed:40:
68:e7:74:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 06:05:44 2024 by rpki-client on console-ams.rpki-client.org