Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HbKiS-iIuZuGZWhoqpFqbL5b7vs.roa
File: HbKiS-iIuZuGZWhoqpFqbL5b7vs.roa (raw, json)
Hash identifier: Gaxhxg8zNqzzNJBThOWukE3ooW4BZV1Mihsd29f27rU=
Subject key identifier: 1D:B2:A2:4B:E8:88:B9:9B:86:65:68:68:AA:91:6A:6C:BE:5B:EE:FB
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0193539195B4E4DD9DFF57F95E57F35D2DE5
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HbKiS-iIuZuGZWhoqpFqbL5b7vs.roa
Signing time: Fri 22 Nov 2024 11:11:10 +0000
ROA not before: Fri 22 Nov 2024 11:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13335
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.75.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.82.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.87.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.107.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.112.0/23 maxlen: 23
141.101.114.0/23 maxlen: 23
141.101.120.0/22 maxlen: 22
188.114.96.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.98.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c0:1c25::/48 maxlen: 48
2a06:98c0:1c26::/48 maxlen: 48
2a06:98c0:1c27::/48 maxlen: 48
2a06:98c0:1c28::/48 maxlen: 48
2a06:98c0:1c29::/48 maxlen: 48
2a06:98c0:1c2a::/48 maxlen: 48
2a06:98c0:1c2b::/48 maxlen: 48
2a06:98c0:1c2c::/48 maxlen: 48
2a06:98c0:1c2d::/48 maxlen: 48
2a06:98c0:1c2e::/48 maxlen: 48
2a06:98c0:1c2f::/48 maxlen: 48
2a06:98c0:1c30::/48 maxlen: 48
2a06:98c0:1c31::/48 maxlen: 48
2a06:98c0:1c32::/48 maxlen: 48
2a06:98c0:1c33::/48 maxlen: 48
2a06:98c0:1c34::/48 maxlen: 48
2a06:98c0:1c35::/48 maxlen: 48
2a06:98c0:1c36::/48 maxlen: 48
2a06:98c0:1c37::/48 maxlen: 48
2a06:98c0:1c38::/48 maxlen: 48
2a06:98c0:1c39::/48 maxlen: 48
2a06:98c0:1c3a::/48 maxlen: 48
2a06:98c0:1c3b::/48 maxlen: 48
2a06:98c0:1c3c::/48 maxlen: 48
2a06:98c0:1c3d::/48 maxlen: 48
2a06:98c0:1c3e::/48 maxlen: 48
2a06:98c0:1c3f::/48 maxlen: 48
2a06:98c0:1c40::/48 maxlen: 48
2a06:98c0:1c41::/48 maxlen: 48
2a06:98c0:1c42::/48 maxlen: 48
2a06:98c0:1c43::/48 maxlen: 48
2a06:98c0:1c44::/48 maxlen: 48
2a06:98c0:1c45::/48 maxlen: 48
2a06:98c0:1c46::/48 maxlen: 48
2a06:98c0:1c47::/48 maxlen: 48
2a06:98c0:1c48::/48 maxlen: 48
2a06:98c0:1c49::/48 maxlen: 48
2a06:98c0:1c4b::/48 maxlen: 48
2a06:98c0:1c4c::/48 maxlen: 48
2a06:98c0:1c4d::/48 maxlen: 48
2a06:98c0:3619::/48 maxlen: 48
2a06:98c0:361a::/48 maxlen: 48
2a06:98c1:40::/48 maxlen: 48
2a06:98c1:41::/48 maxlen: 48
2a06:98c1:42::/48 maxlen: 48
2a06:98c1:43::/48 maxlen: 48
2a06:98c1:48::/48 maxlen: 48
2a06:98c1:49::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft
rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:91:95:b4:e4:dd:9d:ff:57:f9:5e:57:f3:5d:2d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Nov 22 11:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1db2a24be888b99b86656868aa916a6cbe5beefb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3c:49:28:f4:d7:87:8f:e7:20:50:c0:f8:58:
d5:3f:b8:e7:6d:b8:3f:94:c0:3b:de:b8:cc:70:1b:
19:71:8b:50:3c:1e:a2:77:88:a4:86:cd:1f:d8:1d:
da:5a:75:3d:e7:a9:1b:1f:ed:bf:b1:be:43:42:e4:
d1:aa:27:c3:e7:cc:3a:21:fd:20:a2:f9:50:a3:6c:
6e:9d:8d:4b:b9:c2:63:c7:cb:11:9d:c0:1d:01:af:
fe:32:fb:d3:35:04:b0:4a:e6:5f:39:f3:5b:f8:a6:
49:f2:02:6d:d4:0f:f5:04:86:f4:4d:48:b3:f3:95:
cb:57:98:86:3e:f0:7c:ba:0a:fa:57:9f:58:e6:9b:
d0:ae:53:75:e7:fa:b7:c6:05:b4:09:6f:b9:01:7c:
e1:bb:db:f3:97:79:c8:f7:57:0b:00:b2:28:7b:c7:
65:57:04:a4:f4:8b:72:ec:30:d2:fd:85:0e:e0:cb:
aa:3f:4a:61:d1:d6:77:f9:ba:4d:77:d4:3b:c5:5e:
27:79:e5:af:45:4e:57:25:fe:07:91:ce:4c:b8:65:
2f:82:07:45:b8:fe:fb:ff:af:ff:a3:df:42:77:18:
fe:d2:5d:c0:dd:26:d6:5d:49:ce:f0:a9:2a:23:68:
5f:92:f8:50:f7:80:80:4c:58:9b:35:87:af:64:37:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B2:A2:4B:E8:88:B9:9B:86:65:68:68:AA:91:6A:6C:BE:5B:EE:FB
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HbKiS-iIuZuGZWhoqpFqbL5b7vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c01::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::-2a06:98c0:1c49:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c4b::-2a06:98c0:1c4d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3619::-2a06:98c0:361a:ffff:ffff:ffff:ffff:ffff
2a06:98c1:40::/46
2a06:98c1:48::/47
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
03:35:1c:15:43:57:b8:73:b0:ca:4f:3a:61:bc:42:8c:79:68:
26:2d:37:ba:28:96:d6:ea:5f:ca:0a:c9:ff:8a:f3:05:60:61:
9d:f5:93:21:77:49:f2:34:0b:20:83:c0:ee:e1:e1:71:f2:fd:
b7:91:b2:c6:74:56:a8:62:a8:1b:36:89:e4:95:f8:76:d6:f5:
3f:0e:eb:d0:99:16:c4:5d:ac:89:0a:12:4a:15:2e:79:44:00:
0e:dd:f9:b4:a8:5c:0c:cf:8c:0f:4d:8d:97:7a:67:17:55:bb:
3c:94:2b:50:ac:66:34:ae:5a:42:84:bf:15:26:93:29:9f:68:
3b:79:13:8f:1c:f2:19:53:31:dd:37:5f:17:cf:e9:4f:ca:9f:
b8:98:b0:ba:f9:ee:2c:7f:dd:1d:2c:48:0f:3c:86:e1:ba:e0:
8f:15:8c:d1:56:a1:bd:28:bf:ab:a3:12:e9:65:fa:6e:77:78:
a4:87:6b:6a:0a:a2:6f:fd:b2:9e:24:36:94:50:17:75:e1:22:
ed:0e:df:f2:99:a6:4f:34:e9:d6:94:6d:f9:04:fe:7a:ab:60:
2a:2b:28:16:f0:3f:08:95:79:89:0e:ef:e4:1b:b4:29:c0:11:
ee:3c:04:a8:02:6f:f8:9c:d7:29:a3:8f:07:da:30:de:3b:0b:
4f:3f:ad:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:32:52 2024 by rpki-client on console-ams.rpki-client.org