Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa
File: dAKLB8hwun_8JAXJXOS4VW0tKTI.roa (raw, json)
Hash identifier: u8p52s/WoNVvhra+UbLuIaSGoA3fx77pipkQADDde1I=
Subject key identifier: 74:02:8B:07:C8:70:BA:7F:FC:24:05:C9:5C:E4:B8:55:6D:2D:29:32
Certificate issuer: /CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Certificate serial: 018FD88A37365D62DD3E63727BE47005EC6E
Authority key identifier: 8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa
Signing time: Sun 02 Jun 2024 10:41:27 +0000
ROA not before: Sun 02 Jun 2024 10:41:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50463
IP address blocks: 5.22.128.0/21 maxlen: 21
5.22.130.0/23 maxlen: 23
5.22.132.0/24 maxlen: 24
5.22.134.0/24 maxlen: 24
5.144.48.0/20 maxlen: 20
5.144.48.0/24 maxlen: 24
5.144.55.0/24 maxlen: 24
5.144.57.0/24 maxlen: 24
5.144.61.0/24 maxlen: 24
5.144.63.0/24 maxlen: 24
37.19.112.0/20 maxlen: 20
37.19.112.0/24 maxlen: 24
37.19.113.0/24 maxlen: 24
37.19.114.0/24 maxlen: 24
37.19.115.0/24 maxlen: 24
37.19.116.0/24 maxlen: 24
37.19.125.0/24 maxlen: 24
109.226.0.0/18 maxlen: 18
109.226.0.0/24 maxlen: 24
109.226.2.0/24 maxlen: 24
109.226.3.0/24 maxlen: 24
109.226.4.0/24 maxlen: 24
109.226.5.0/24 maxlen: 24
109.226.6.0/24 maxlen: 24
109.226.7.0/24 maxlen: 24
109.226.13.0/24 maxlen: 24
109.226.14.0/24 maxlen: 24
109.226.15.0/24 maxlen: 24
109.226.16.0/22 maxlen: 22
109.226.17.0/24 maxlen: 24
109.226.21.0/24 maxlen: 24
109.226.22.0/24 maxlen: 24
109.226.23.0/24 maxlen: 24
109.226.24.0/24 maxlen: 24
109.226.25.0/24 maxlen: 24
109.226.26.0/24 maxlen: 24
109.226.28.0/24 maxlen: 24
109.226.29.0/24 maxlen: 24
109.226.31.0/24 maxlen: 24
109.226.32.0/24 maxlen: 24
109.226.33.0/24 maxlen: 24
109.226.34.0/24 maxlen: 24
109.226.35.0/24 maxlen: 24
109.226.36.0/24 maxlen: 24
109.226.37.0/24 maxlen: 24
109.226.38.0/24 maxlen: 24
109.226.44.0/24 maxlen: 24
109.226.45.0/24 maxlen: 24
109.226.47.0/24 maxlen: 24
109.226.48.0/24 maxlen: 24
109.226.49.0/24 maxlen: 24
109.226.50.0/24 maxlen: 24
109.226.51.0/24 maxlen: 24
109.226.52.0/24 maxlen: 24
109.226.53.0/24 maxlen: 24
109.226.55.0/24 maxlen: 24
109.226.56.0/24 maxlen: 24
109.226.57.0/24 maxlen: 24
109.226.59.0/24 maxlen: 24
109.226.60.0/24 maxlen: 24
109.226.61.0/24 maxlen: 24
141.226.192.0/19 maxlen: 19
141.226.192.0/24 maxlen: 24
141.226.193.0/24 maxlen: 24
141.226.194.0/24 maxlen: 24
141.226.195.0/24 maxlen: 24
141.226.196.0/24 maxlen: 24
141.226.198.0/24 maxlen: 24
141.226.203.0/24 maxlen: 24
141.226.204.0/24 maxlen: 24
141.226.205.0/24 maxlen: 24
141.226.206.0/24 maxlen: 24
141.226.212.0/24 maxlen: 24
141.226.223.0/24 maxlen: 24
185.3.144.0/22 maxlen: 22
185.3.145.0/24 maxlen: 24
2a00:c280::/29 maxlen: 29
2a00:c280:100::/48 maxlen: 48
2a00:c281:1::/48 maxlen: 48
2a00:c281:2::/48 maxlen: 48
2a00:c281:3::/48 maxlen: 48
2a00:c281:4::/48 maxlen: 48
2a00:c281:a::/48 maxlen: 48
2a00:c281:b::/48 maxlen: 48
2a00:c281:c::/48 maxlen: 48
2a00:c281:d::/48 maxlen: 48
2a00:c281:100::/40 maxlen: 40
2a00:c281:200::/40 maxlen: 40
2a00:c281:300::/40 maxlen: 40
2a00:c281:400::/40 maxlen: 40
2a00:c281:a00::/40 maxlen: 40
2a00:c281:b00::/40 maxlen: 40
2a00:c281:c00::/40 maxlen: 40
2a00:c281:d00::/40 maxlen: 40
2a00:c281:1001::/48 maxlen: 48
2a00:c281:1002::/48 maxlen: 48
2a00:c281:1003::/48 maxlen: 48
2a00:c281:1004::/48 maxlen: 48
2a00:c281:100a::/48 maxlen: 48
2a00:c281:100b::/48 maxlen: 48
2a00:c281:100c::/48 maxlen: 48
2a00:c281:100d::/48 maxlen: 48
2a00:c281:1011::/48 maxlen: 48
2a00:c281:1012::/48 maxlen: 48
2a00:c281:1013::/48 maxlen: 48
2a00:c281:1014::/48 maxlen: 48
2a00:c281:101a::/48 maxlen: 48
2a00:c281:101b::/48 maxlen: 48
2a00:c281:101c::/48 maxlen: 48
2a00:c281:101d::/48 maxlen: 48
2a00:c281:1100::/40 maxlen: 40
2a00:c281:1200::/40 maxlen: 40
2a00:c281:1300::/40 maxlen: 40
2a00:c281:1400::/40 maxlen: 40
2a00:c281:1500::/40 maxlen: 40
2a00:c281:1600::/40 maxlen: 40
2a00:c281:1700::/40 maxlen: 40
2a00:c281:1800::/40 maxlen: 40
2a00:c281:1a00::/40 maxlen: 40
2a00:c281:1b00::/40 maxlen: 40
2a00:c281:1c00::/40 maxlen: 40
2a00:c281:1d00::/40 maxlen: 40
2a00:c281:2001::/48 maxlen: 48
2a00:c281:2002::/48 maxlen: 48
2a00:c281:2003::/48 maxlen: 48
2a00:c281:2004::/48 maxlen: 48
2a00:c281:200a::/48 maxlen: 48
2a00:c281:200b::/48 maxlen: 48
2a00:c281:200c::/48 maxlen: 48
2a00:c281:200d::/48 maxlen: 48
2a00:c281:2100::/40 maxlen: 40
2a00:c281:2200::/40 maxlen: 40
2a00:c281:2300::/40 maxlen: 40
2a00:c281:2400::/40 maxlen: 40
2a00:c281:2a00::/40 maxlen: 40
2a00:c281:2b00::/40 maxlen: 40
2a00:c281:2c00::/40 maxlen: 40
2a00:c281:2d00::/40 maxlen: 40
2a00:c281:3001::/48 maxlen: 48
2a00:c281:3002::/48 maxlen: 48
2a00:c281:3003::/48 maxlen: 48
2a00:c281:3004::/48 maxlen: 48
2a00:c281:300a::/48 maxlen: 48
2a00:c281:300b::/48 maxlen: 48
2a00:c281:300c::/48 maxlen: 48
2a00:c281:300d::/48 maxlen: 48
2a00:c281:3100::/40 maxlen: 40
2a00:c281:3200::/40 maxlen: 40
2a00:c281:3300::/40 maxlen: 40
2a00:c281:3400::/40 maxlen: 40
2a00:c281:3a00::/40 maxlen: 40
2a00:c281:3b00::/40 maxlen: 40
2a00:c281:3c00::/40 maxlen: 40
2a00:c281:3d00::/40 maxlen: 40
2a00:c281:4000::/48 maxlen: 48
2a00:c281:4001::/48 maxlen: 48
2a00:c281:4100::/40 maxlen: 40
2a00:c281:4200::/40 maxlen: 40
2a00:c281:4300::/40 maxlen: 40
2a00:c281:4400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 17:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d8:8a:37:36:5d:62:dd:3e:63:72:7b:e4:70:05:ec:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Validity
Not Before: Jun 2 10:41:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74028b07c870ba7ffc2405c95ce4b8556d2d2932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cf:67:b6:fb:b5:9b:5b:90:e1:19:39:43:66:
59:80:60:fd:e2:93:3c:f4:00:e1:ea:88:45:39:df:
34:92:42:98:8e:41:83:13:a4:55:e3:49:97:5f:b6:
34:79:42:69:9f:1f:f2:08:c1:55:8d:c0:3e:05:00:
02:37:16:ea:2e:3d:02:da:78:3c:f7:e0:d5:6d:a7:
b9:95:a6:5a:02:f9:c5:2f:01:cd:5d:b8:04:0d:de:
64:c2:e8:a1:97:32:ae:5b:66:f9:49:f0:03:3c:a9:
e0:63:6f:f1:1a:f2:59:4c:c6:20:8e:84:58:85:82:
d4:ac:05:33:2d:ee:86:4f:ef:fb:0b:28:b8:67:11:
35:d5:86:f6:dd:15:74:5f:f9:c8:c5:d8:3a:15:ff:
28:67:fe:c0:1e:26:10:7c:80:bb:a5:02:c3:59:dc:
ff:9d:43:81:5a:07:7d:31:d7:bd:a2:fb:11:c3:2a:
8e:28:5c:7e:5e:39:35:e7:7c:d7:f6:66:f0:a6:03:
0e:af:6e:bf:89:e1:33:f4:aa:ae:b2:eb:9d:c2:6f:
99:52:40:ea:24:57:95:af:a0:e8:7b:a6:86:33:e7:
ff:63:c1:e7:44:65:83:97:52:a6:ec:9f:7f:0b:15:
2e:f3:e2:0e:41:eb:31:3e:80:0e:36:fb:b3:23:9a:
0b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:02:8B:07:C8:70:BA:7F:FC:24:05:C9:5C:E4:B8:55:6D:2D:29:32
X509v3 Authority Key Identifier:
keyid:8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.128.0/21
5.144.48.0/20
37.19.112.0/20
109.226.0.0/18
141.226.192.0/19
185.3.144.0/22
IPv6:
2a00:c280::/29
Signature Algorithm: sha256WithRSAEncryption
00:19:2d:74:d7:a9:6b:76:b6:f2:b8:ca:ba:51:3a:fa:4e:4e:
fe:74:fc:04:24:e9:68:06:90:a0:75:b3:0a:b5:cb:51:1e:84:
2b:4a:ca:d6:75:5c:20:3c:61:74:8f:8c:96:f1:ca:f5:26:1c:
7f:c2:06:13:64:fc:b5:5e:b0:4a:39:9e:08:cf:c1:d2:97:95:
d4:91:55:36:7e:93:70:76:c3:9d:5b:92:c9:f6:f0:00:01:3e:
49:aa:9c:4e:74:b8:14:25:f4:a1:78:a4:de:d6:93:57:11:ac:
3a:0f:92:e7:9e:39:bd:a6:53:d3:b6:50:92:68:71:0a:be:f9:
72:83:d8:a0:45:a0:ea:0c:f1:d6:f4:50:fd:d3:fb:d2:29:e2:
22:f4:19:0d:82:a9:6a:25:e8:55:f2:b4:c9:94:fd:3d:83:77:
4a:3b:78:fa:22:d1:5e:71:47:74:0d:5b:af:d7:29:c9:0a:25:
e5:d2:01:ef:d9:04:09:f9:5f:23:3a:6d:5a:57:08:ba:e7:d3:
60:16:21:b5:3d:69:52:02:d0:f9:66:33:9d:c3:5e:cd:8c:2f:
73:bb:92:8f:8c:7d:35:75:6c:16:d9:ba:3c:46:82:36:1f:20:
2a:ae:4d:b2:17:28:28:20:ad:5c:a5:6c:6d:d7:58:28:b1:60:
84:60:62:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 00:01:52 2024 by rpki-client on console-ams.rpki-client.org