Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/4mo5qgSLEKoDHQyQSZ7-QCSHy-A.roa
File: 4mo5qgSLEKoDHQyQSZ7-QCSHy-A.roa (raw, json)
Hash identifier: lf2DCKcnbj2itYhpdv4Z2udUDMd8xPlfuE197NNPSUc=
Subject key identifier: E2:6A:39:AA:04:8B:10:AA:03:1D:0C:90:49:9E:FE:40:24:87:CB:E0
Certificate issuer: /CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Certificate serial: 019291B63B6BB6B99162F35CBF90BEEB3767
Authority key identifier: 84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/4mo5qgSLEKoDHQyQSZ7-QCSHy-A.roa
Signing time: Tue 15 Oct 2024 19:44:51 +0000
ROA not before: Tue 15 Oct 2024 19:44:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207375
IP address blocks: 31.14.180.0/23 maxlen: 23
31.14.182.0/24 maxlen: 24
37.156.69.0/24 maxlen: 24
37.156.70.0/24 maxlen: 24
84.247.44.0/23 maxlen: 25
85.204.109.0/24 maxlen: 24
86.105.24.0/24 maxlen: 24
86.105.232.0/24 maxlen: 24
86.107.186.0/23 maxlen: 23
89.32.171.0/24 maxlen: 24
89.32.240.0/21 maxlen: 21
89.33.17.0/24 maxlen: 24
89.33.30.0/24 maxlen: 24
89.33.65.0/24 maxlen: 24
89.35.34.0/24 maxlen: 24
89.35.76.0/24 maxlen: 24
89.35.88.0/24 maxlen: 24
89.35.91.0/24 maxlen: 24
89.35.163.0/24 maxlen: 24
89.35.248.0/24 maxlen: 24
89.37.40.0/24 maxlen: 24
89.46.40.0/23 maxlen: 23
89.47.176.0/23 maxlen: 23
89.47.178.0/24 maxlen: 24
89.47.180.0/23 maxlen: 23
89.47.182.0/24 maxlen: 24
93.113.72.0/21 maxlen: 21
176.223.144.0/20 maxlen: 20
188.211.172.0/22 maxlen: 22
188.212.157.0/24 maxlen: 24
188.213.86.0/23 maxlen: 23
188.240.70.0/24 maxlen: 24
2a00:bba0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:91:b6:3b:6b:b6:b9:91:62:f3:5c:bf:90:be:eb:37:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Validity
Not Before: Oct 15 19:44:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e26a39aa048b10aa031d0c90499efe402487cbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:78:be:c6:4e:1a:66:1e:eb:0b:98:98:e7:72:
8c:c5:e6:65:1e:bf:74:58:bd:a2:0a:53:74:f7:2c:
11:96:c7:da:a2:99:49:d4:d7:73:6b:48:25:49:99:
bd:05:e3:76:43:47:c3:34:b1:46:1e:f9:9b:86:e6:
ad:6d:90:ee:a7:7c:d1:c6:63:e2:8d:f3:6f:d4:5e:
8e:c4:b4:91:6b:7c:18:47:1d:cb:4f:6a:d0:ba:b2:
81:d2:3b:70:d2:e6:40:d7:51:40:48:ed:cc:34:97:
b3:02:a3:a5:dd:38:f5:b1:4c:96:86:5a:c6:b2:61:
70:cd:48:9a:4d:41:4b:b7:c7:3d:09:01:f2:f7:bc:
d9:56:41:dd:47:be:5a:01:05:fd:8a:09:bf:ee:48:
5b:0e:1b:b1:92:04:d6:64:3f:65:af:67:76:32:b5:
b7:30:68:10:59:5e:f5:55:d6:73:d9:c4:9d:da:04:
85:d5:90:8f:e4:5e:63:b2:b0:b4:5b:db:a3:ae:4d:
a5:ca:99:56:f1:df:9f:1c:21:17:7a:ec:6e:0b:73:
e1:34:19:ed:26:f9:80:d5:ea:f4:56:e4:e0:98:0b:
79:b5:7e:6a:fc:3b:a9:bd:b3:29:ab:62:be:05:b3:
e2:fc:8c:ac:8e:f4:8c:59:92:12:61:f7:37:88:df:
53:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6A:39:AA:04:8B:10:AA:03:1D:0C:90:49:9E:FE:40:24:87:CB:E0
X509v3 Authority Key Identifier:
keyid:84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/4mo5qgSLEKoDHQyQSZ7-QCSHy-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.180.0-31.14.182.255
37.156.69.0-37.156.70.255
84.247.44.0/23
85.204.109.0/24
86.105.24.0/24
86.105.232.0/24
86.107.186.0/23
89.32.171.0/24
89.32.240.0/21
89.33.17.0/24
89.33.30.0/24
89.33.65.0/24
89.35.34.0/24
89.35.76.0/24
89.35.88.0/24
89.35.91.0/24
89.35.163.0/24
89.35.248.0/24
89.37.40.0/24
89.46.40.0/23
89.47.176.0-89.47.178.255
89.47.180.0-89.47.182.255
93.113.72.0/21
176.223.144.0/20
188.211.172.0/22
188.212.157.0/24
188.213.86.0/23
188.240.70.0/24
IPv6:
2a00:bba0::/32
Signature Algorithm: sha256WithRSAEncryption
61:1d:2e:ea:f9:2c:e6:9d:0b:c4:77:3d:e4:e2:f7:34:b3:47:
48:ee:02:19:e2:f3:d6:c1:7e:65:48:22:7b:41:eb:c5:54:d1:
18:04:01:45:a2:a1:9e:e5:4d:09:e5:f4:80:ce:c7:80:74:3e:
94:bc:e6:41:76:58:47:0c:92:f8:d8:14:3c:21:73:d1:f8:51:
6b:be:cb:cd:63:13:61:83:c2:63:d7:bf:64:51:a5:35:d6:41:
30:0c:7b:dc:1e:76:65:b6:ac:d3:1c:b4:a6:63:3b:f4:77:9f:
a2:1b:dd:e5:49:8e:1b:82:98:fe:ed:01:24:4a:2c:59:b3:27:
06:05:9a:f1:69:94:1e:ad:e6:6a:4b:e3:ce:ba:79:e2:d5:de:
94:50:9a:c2:34:1e:76:27:2d:be:3d:ce:c7:e4:cd:48:45:af:
50:96:04:2e:4f:bc:cf:e0:3b:12:92:b9:99:a3:8a:f5:21:f0:
cd:57:f1:17:6e:a6:06:53:b4:e0:10:78:25:82:2b:80:8c:78:
f0:36:b0:e8:76:9d:b5:51:b5:bf:36:31:be:23:7b:01:12:4f:
17:e1:ec:94:ad:a3:dc:71:3d:a7:c3:2c:30:ff:99:28:23:e4:
e8:f3:54:e5:76:01:a5:b2:21:16:78:37:ef:ee:ee:22:11:a4:
7d:32:f1:c9
-----BEGIN CERTIFICATE-----
MIIF0zCCBLugAwIBAgISAZKRtjtrtrmRYvNcv5C+6zdnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YmZjNDUxZmM0ZjI0MTFhZGRkMDBhOWZiYjE3MzQ2YWQ2
ZTg5OTYwHhcNMjQxMDE1MTk0NDUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjZhMzlhYTA0OGIxMGFhMDMxZDBjOTA0OTllZmU0MDI0ODdjYmUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3i+xk4aZh7rC5iY53KMxeZlHr90
WL2iClN09ywRlsfaoplJ1Ndza0glSZm9BeN2Q0fDNLFGHvmbhuatbZDup3zRxmPi
jfNv1F6OxLSRa3wYRx3LT2rQurKB0jtw0uZA11FASO3MNJezAqOl3Tj1sUyWhlrG
smFwzUiaTUFLt8c9CQHy97zZVkHdR75aAQX9igm/7khbDhuxkgTWZD9lr2d2MrW3
MGgQWV71VdZz2cSd2gSF1ZCP5F5jsrC0W9ujrk2lyplW8d+fHCEXeuxuC3PhNBnt
JvmA1er0VuTgmAt5tX5q/DupvbMpq2K+BbPi/IysjvSMWZISYfc3iN9T+QIDAQAB
o4IC3zCCAtswHQYDVR0OBBYEFOJqOaoEixCqAx0MkEme/kAkh8vgMB8GA1UdIwQY
MBaAFIS/xFH8TyQRrd0Aqfuxc0atbomWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExfRVVmeFBKQkd0M1FDcC03RnpScTF1aVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9iN2JlNjQtODZkNC00NDNiLTk2ODYt
ZjY2MzE3OTc3OTY4LzEvNG1vNXFnU0xFS29ESFF5UVNaNy1RQ1NIeS1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9iN2JlNjQtODZkNC00NDNiLTk2ODYtZjY2MzE3OTc3OTY4
LzEvaExfRVVmeFBKQkd0M1FDcC03RnpScTF1aVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH0BggrBgEFBQcBBwEB/wSB5DCB4TCBzwQCAAEwgcgwDAME
Ah8OtAMEAB8OtjAMAwQAJZxFAwQAJZxGAwQBVPcsAwQAVcxtAwQAVmkYAwQAVmno
AwQBVmu6AwQAWSCrAwQDWSDwAwQAWSERAwQAWSEeAwQAWSFBAwQAWSMiAwQAWSNM
AwQAWSNYAwQAWSNbAwQAWSOjAwQAWSP4AwQAWSUoAwQBWS4oMAwDBARZL7ADBABZ
L7IwDAMEAlkvtAMEAFkvtgMEA11xSAMEBLDfkAMEArzTrAMEALzUnQMEAbzVVgME
ALzwRjANBAIAAjAHAwUAKgC7oDANBgkqhkiG9w0BAQsFAAOCAQEAYR0u6vks5p0L
xHc95OL3NLNHSO4CGeLz1sF+ZUgie0HrxVTRGAQBRaKhnuVNCeX0gM7HgHQ+lLzm
QXZYRwyS+NgUPCFz0fhRa77LzWMTYYPCY9e/ZFGlNdZBMAx73B52Zbas0xy0pmM7
9Hefohvd5UmOG4KY/u0BJEosWbMnBgWa8WmUHq3makvjzrp54tXelFCawjQedict
vj3Ox+TNSEWvUJYELk+8z+A7EpK5maOK9SHwzVfxF26mBlO04BB4JYIrgIx48Daw
6HadtVG1vzYxviN7ARJPF+HslK2j3HE9p8MsMP+ZKCPk6PNU5XYBpbIhFng37+7u
IhGkfTLxyQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:52:18 2024 by rpki-client on console-ams.rpki-client.org