Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/GdDoydsiseWesyFp8nfXLAwY-Ss.roa
File: GdDoydsiseWesyFp8nfXLAwY-Ss.roa (raw, json)
Hash identifier: ZX3EqP0ya1H5H5fx2BO7+jv6fp5rUfEUzpZL5ygfDiA=
Subject key identifier: 19:D0:E8:C9:DB:22:B1:E5:9E:B3:21:69:F2:77:D7:2C:0C:18:F9:2B
Certificate issuer: /CN=2347aaab2206c08128f543730064a145a3effa14
Certificate serial: 019425221B14CEE284598BE04DACAE6E7CA7
Authority key identifier: 23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/GdDoydsiseWesyFp8nfXLAwY-Ss.roa
Signing time: Thu 02 Jan 2025 03:49:39 +0000
ROA not before: Thu 02 Jan 2025 03:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2119
IP address blocks: 46.194.0.0/15 maxlen: 15
62.13.0.0/17 maxlen: 17
62.65.64.0/18 maxlen: 18
62.119.0.0/16 maxlen: 16
62.127.0.0/16 maxlen: 16
78.82.0.0/16 maxlen: 16
79.102.0.0/16 maxlen: 16
80.68.96.0/20 maxlen: 20
81.26.224.0/19 maxlen: 19
82.182.0.0/15 maxlen: 15
83.226.0.0/15 maxlen: 15
84.216.0.0/14 maxlen: 14
85.224.0.0/13 maxlen: 13
92.32.0.0/14 maxlen: 14
94.234.0.0/16 maxlen: 16
178.28.0.0/14 maxlen: 14
195.43.192.0/18 maxlen: 18
195.54.96.0/19 maxlen: 19
195.58.96.0/19 maxlen: 19
195.66.32.0/19 maxlen: 19
212.73.0.0/19 maxlen: 19
212.73.160.0/19 maxlen: 19
212.75.64.0/19 maxlen: 19
212.105.0.0/17 maxlen: 17
213.112.0.0/14 maxlen: 14
213.150.128.0/19 maxlen: 19
213.163.128.0/19 maxlen: 19
213.204.128.0/18 maxlen: 18
213.214.192.0/18 maxlen: 18
213.238.192.0/18 maxlen: 18
213.242.128.0/18 maxlen: 18
217.174.64.0/19 maxlen: 19
2a02:1400::/26 maxlen: 26
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:1b:14:ce:e2:84:59:8b:e0:4d:ac:ae:6e:7c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2347aaab2206c08128f543730064a145a3effa14
Validity
Not Before: Jan 2 03:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19d0e8c9db22b1e59eb32169f277d72c0c18f92b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:45:27:fa:e9:b4:e3:99:63:64:20:cf:20:22:
7e:68:8d:1d:09:9d:65:14:a1:1e:c6:88:6a:39:f5:
c4:03:3d:e8:16:1e:71:11:9a:94:c6:2a:31:1d:c1:
01:61:03:43:0b:6d:4f:f7:dc:7b:3b:65:f3:a9:66:
bc:72:70:97:97:24:d5:6a:e4:0c:78:87:98:ae:8c:
32:98:e5:56:c4:2d:7f:79:0c:a1:97:cf:8a:fa:a2:
d8:97:c3:16:90:fd:a0:fd:82:fc:cf:f0:9e:d4:78:
30:bf:30:b4:87:d8:dd:8a:c8:42:bc:d9:96:f6:35:
b1:d5:3b:c1:cb:03:77:8a:ff:a1:f0:05:30:65:c4:
c9:3b:72:d6:25:46:84:e9:80:53:b3:02:d3:35:eb:
02:c5:21:44:d7:a4:1e:95:31:d6:c1:6d:03:20:30:
31:59:fb:bf:23:4b:28:58:a9:d8:06:a5:f2:94:66:
7e:5e:14:9e:9f:b9:77:40:94:e0:7e:15:43:3e:cf:
95:7f:dc:96:8d:3c:0f:0e:91:20:8a:af:18:8f:c9:
76:7b:69:e2:c1:a6:c6:9f:3d:dc:3c:8a:7e:3e:45:
8c:f7:ad:a9:de:2a:15:b2:af:24:fb:2a:16:85:7a:
65:5d:18:2e:bb:c2:67:51:a1:c7:55:5b:b7:d1:ec:
71:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D0:E8:C9:DB:22:B1:E5:9E:B3:21:69:F2:77:D7:2C:0C:18:F9:2B
X509v3 Authority Key Identifier:
keyid:23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/GdDoydsiseWesyFp8nfXLAwY-Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.194.0.0/15
62.13.0.0/17
62.65.64.0/18
62.119.0.0/16
62.127.0.0/16
78.82.0.0/16
79.102.0.0/16
80.68.96.0/20
81.26.224.0/19
82.182.0.0/15
83.226.0.0/15
84.216.0.0/14
85.224.0.0/13
92.32.0.0/14
94.234.0.0/16
178.28.0.0/14
195.43.192.0/18
195.54.96.0/19
195.58.96.0/19
195.66.32.0/19
212.73.0.0/19
212.73.160.0/19
212.75.64.0/19
212.105.0.0/17
213.112.0.0/14
213.150.128.0/19
213.163.128.0/19
213.204.128.0/18
213.214.192.0/18
213.238.192.0/18
213.242.128.0/18
217.174.64.0/19
IPv6:
2a02:1400::/26
Signature Algorithm: sha256WithRSAEncryption
93:6c:a5:65:33:4d:81:52:4f:9a:32:af:11:93:0f:13:56:20:
fe:a4:1e:d9:be:e4:23:28:a1:06:0d:2b:d7:2b:94:35:68:92:
39:82:82:e3:7d:17:c7:e0:44:67:c6:7f:99:64:ab:ca:34:62:
00:06:f4:49:02:16:55:d1:5c:a3:cb:88:14:51:be:39:39:32:
a1:6c:3a:d9:ba:17:31:dd:0d:88:48:16:0a:46:11:d6:94:aa:
6b:07:e3:29:3b:27:8f:ce:72:c7:1a:9c:26:20:f9:10:ec:af:
60:a7:b9:e6:5a:3a:c2:2c:81:d7:3f:c8:b2:ea:5c:5a:02:f5:
99:00:96:8b:4f:d3:f9:b9:80:63:0d:21:b1:c8:ba:73:2b:c9:
1c:f5:c3:84:53:43:ea:6f:9d:15:e2:8f:7b:d8:c2:50:ae:ec:
f5:8d:64:89:a4:3e:d2:56:69:18:63:1b:48:23:98:9e:9f:6e:
3d:b3:68:98:15:fc:bb:ff:89:f1:e9:e4:87:71:9a:2b:b7:7a:
7e:4a:79:24:dd:84:e0:98:70:95:77:c1:c7:b2:f0:d0:b9:b5:
7d:47:77:61:09:1e:bc:4f:ab:f3:7e:db:87:5d:c0:93:85:6d:
c3:ea:57:7a:29:61:80:2a:f6:a3:e8:6e:b2:c4:52:75:55:79:
82:28:5c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:32:38 2025 by rpki-client