Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/ClBpqHBk3_kiZEqUFElQaUBmFWM.roa
File: ClBpqHBk3_kiZEqUFElQaUBmFWM.roa (raw, json)
Hash identifier: 5dGpDt19ysT4nFbvGjXB+f8lkmqa9pEP5UJDLKga284=
Subject key identifier: 0A:50:69:A8:70:64:DF:F9:22:64:4A:94:14:49:50:69:40:66:15:63
Certificate issuer: /CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Certificate serial: 018CC9BC70BCF5510CB447C504D536ABA1D8
Authority key identifier: D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/ClBpqHBk3_kiZEqUFElQaUBmFWM.roa
Signing time: Tue 02 Jan 2024 10:33:39 +0000
ROA not before: Tue 02 Jan 2024 10:33:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48582
IP address blocks: 217.147.178.0/23 maxlen: 23
217.147.176.0/23 maxlen: 23
217.147.178.0/24 maxlen: 24
217.147.177.0/24 maxlen: 24
217.147.179.0/24 maxlen: 24
217.147.176.0/24 maxlen: 24
217.147.182.0/23 maxlen: 23
217.147.182.0/24 maxlen: 24
217.147.183.0/24 maxlen: 24
193.118.192.0/24 maxlen: 24
193.118.196.0/24 maxlen: 24
193.118.195.0/24 maxlen: 24
193.118.198.0/24 maxlen: 24
193.118.194.0/24 maxlen: 24
193.118.193.0/24 maxlen: 24
193.118.199.0/24 maxlen: 24
193.118.201.0/24 maxlen: 24
193.118.206.0/24 maxlen: 24
193.118.203.0/24 maxlen: 24
193.118.202.0/24 maxlen: 24
193.118.205.0/24 maxlen: 24
193.118.204.0/24 maxlen: 24
193.118.200.0/24 maxlen: 24
193.118.204.0/23 maxlen: 23
193.118.200.0/22 maxlen: 22
193.118.210.0/24 maxlen: 24
193.118.209.0/24 maxlen: 24
193.118.212.0/24 maxlen: 24
193.118.211.0/24 maxlen: 24
193.118.208.0/24 maxlen: 24
193.118.207.0/24 maxlen: 24
193.118.213.0/24 maxlen: 24
193.118.217.0/24 maxlen: 24
193.118.216.0/24 maxlen: 24
193.118.219.0/24 maxlen: 24
193.118.218.0/24 maxlen: 24
193.118.215.0/24 maxlen: 24
193.118.214.0/24 maxlen: 24
193.118.216.0/22 maxlen: 22
193.118.214.0/23 maxlen: 23
209.213.49.0/24 maxlen: 24
209.213.48.0/24 maxlen: 24
209.213.50.0/24 maxlen: 24
193.118.220.0/24 maxlen: 24
209.213.51.0/24 maxlen: 24
209.213.48.0/22 maxlen: 22
209.213.48.0/20 maxlen: 20
209.213.55.0/24 maxlen: 24
209.213.56.0/24 maxlen: 24
209.213.57.0/24 maxlen: 24
209.213.52.0/24 maxlen: 24
209.213.54.0/24 maxlen: 24
209.213.53.0/24 maxlen: 24
209.213.56.0/22 maxlen: 22
209.213.52.0/22 maxlen: 22
209.213.58.0/24 maxlen: 24
209.213.60.0/22 maxlen: 22
209.213.63.0/24 maxlen: 24
209.213.62.0/24 maxlen: 24
209.213.59.0/24 maxlen: 24
209.213.61.0/24 maxlen: 24
209.213.60.0/24 maxlen: 24
193.118.138.0/23 maxlen: 23
193.118.134.0/23 maxlen: 23
193.118.137.0/24 maxlen: 24
193.118.136.0/24 maxlen: 24
193.118.139.0/24 maxlen: 24
193.118.138.0/24 maxlen: 24
193.118.133.0/24 maxlen: 24
193.118.135.0/24 maxlen: 24
193.118.134.0/24 maxlen: 24
193.118.144.0/22 maxlen: 22
193.118.140.0/24 maxlen: 24
193.118.142.0/24 maxlen: 24
193.118.141.0/24 maxlen: 24
193.118.144.0/24 maxlen: 24
193.118.143.0/24 maxlen: 24
193.118.145.0/24 maxlen: 24
193.118.151.0/24 maxlen: 24
193.118.150.0/23 maxlen: 23
193.118.152.0/23 maxlen: 23
193.118.150.0/24 maxlen: 24
193.118.152.0/24 maxlen: 24
193.118.147.0/24 maxlen: 24
193.118.149.0/24 maxlen: 24
193.118.148.0/24 maxlen: 24
193.118.146.0/24 maxlen: 24
193.118.154.0/24 maxlen: 24
193.118.153.0/24 maxlen: 24
193.118.156.0/24 maxlen: 24
193.118.155.0/24 maxlen: 24
193.118.158.0/24 maxlen: 24
193.118.157.0/24 maxlen: 24
193.118.159.0/24 maxlen: 24
193.118.128.0/23 maxlen: 23
193.118.132.0/23 maxlen: 23
193.118.128.0/24 maxlen: 24
193.118.130.0/24 maxlen: 24
193.118.129.0/24 maxlen: 24
193.118.132.0/24 maxlen: 24
193.118.131.0/24 maxlen: 24
138.43.4.0/24 maxlen: 24
138.43.0.0/24 maxlen: 24
138.43.8.0/24 maxlen: 24
138.43.7.0/24 maxlen: 24
138.43.10.0/24 maxlen: 24
138.43.9.0/24 maxlen: 24
138.43.6.0/24 maxlen: 24
138.43.5.0/24 maxlen: 24
138.43.11.0/24 maxlen: 24
138.43.15.0/24 maxlen: 24
138.43.14.0/24 maxlen: 24
138.43.13.0/24 maxlen: 24
138.43.12.0/24 maxlen: 24
138.43.31.0/24 maxlen: 24
138.43.29.0/24 maxlen: 24
138.43.28.0/24 maxlen: 24
138.43.30.0/24 maxlen: 24
138.43.26.0/24 maxlen: 24
138.43.28.0/22 maxlen: 22
185.170.161.0/24 maxlen: 24
185.170.163.0/24 maxlen: 24
185.170.162.0/24 maxlen: 24
63.142.4.0/24 maxlen: 24
63.142.1.0/24 maxlen: 24
63.142.3.0/24 maxlen: 24
63.142.2.0/24 maxlen: 24
63.142.0.0/24 maxlen: 24
63.142.6.0/23 maxlen: 23
63.142.5.0/24 maxlen: 24
63.142.6.0/24 maxlen: 24
63.142.11.0/24 maxlen: 24
63.142.8.0/24 maxlen: 24
63.142.7.0/24 maxlen: 24
63.142.10.0/24 maxlen: 24
63.142.9.0/24 maxlen: 24
63.142.14.0/23 maxlen: 23
63.142.15.0/24 maxlen: 24
63.142.14.0/24 maxlen: 24
63.142.12.0/24 maxlen: 24
63.142.13.0/24 maxlen: 24
2a0b:2900:11c0::/42 maxlen: 42
2a0b:2900:3240::/42 maxlen: 42
2a0b:2900:3140::/42 maxlen: 42
2a0b:2900:1140::/42 maxlen: 42
2a0b:2900:2140::/42 maxlen: 42
2a0b:2900:6140::/42 maxlen: 42
2a0b:2900:12c0::/42 maxlen: 42
2a0b:2900:21c0::/42 maxlen: 42
2a0b:2900:32c0::/42 maxlen: 42
2a0b:2900:61c0::/42 maxlen: 42
2a0b:2900:31c0::/42 maxlen: 42
2a0b:2900:216c::/48 maxlen: 48
2a0b:2900:1f00::/40 maxlen: 40
2a0b:2900:7f::/48 maxlen: 48
2a0b:2900:6180::/42 maxlen: 42
2a0b:2900:2100::/42 maxlen: 42
2a0b:2900:1100::/42 maxlen: 42
2a0b:2900:3180::/42 maxlen: 42
2a0b:2900:3200::/42 maxlen: 42
2a0b:2900:6100::/42 maxlen: 42
2a0b:2900:3100::/42 maxlen: 42
2a0b:2900:3280::/42 maxlen: 42
2a0b:2900:1180::/42 maxlen: 42
2a0b:2900:2180::/42 maxlen: 42
2a0b:2900:5234::/47 maxlen: 47
2a0b:2900:52b4::/47 maxlen: 47
2a0b:2900:1100::/41 maxlen: 41
2a0b:2900:2100::/41 maxlen: 41
2a0b:2900:3200::/41 maxlen: 41
2a0b:2900:4100::/41 maxlen: 41
2a0b:2900:2200::/41 maxlen: 42
2a0b:2900:3180::/41 maxlen: 41
2a0b:2900:4280::/41 maxlen: 41
2a0b:2900:6200::/41 maxlen: 41
2a0b:2900:5280::/41 maxlen: 41
2a0b:2900:4180::/41 maxlen: 41
2a0b:2900:3100::/41 maxlen: 41
2a0b:2900:4200::/41 maxlen: 41
2a0b:2900:6280::/41 maxlen: 41
2a0b:2900:2380::/41 maxlen: 42
2a0b:2900:1280::/41 maxlen: 42
2a0b:2900:5200::/41 maxlen: 41
2a0b:2900:1000::/41 maxlen: 42
2a0b:2900:2280::/41 maxlen: 42
2a0b:2900:1180::/41 maxlen: 41
2a0b:2900:2300::/41 maxlen: 42
2a0b:2900:3280::/41 maxlen: 41
2a0b:2900:2180::/41 maxlen: 41
2a0b:2900:1080::/41 maxlen: 42
2a0b:2900:1200::/41 maxlen: 42
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:70:bc:f5:51:0c:b4:47:c5:04:d5:36:ab:a1:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Validity
Not Before: Jan 2 10:33:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a5069a87064dff922644a941449506940661563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ad:2e:42:1c:5f:b4:3f:2d:8f:38:1c:26:e8:
ec:6b:97:b3:2d:bf:7f:77:38:9e:70:59:79:39:bb:
0c:92:59:16:b6:53:ae:7c:e7:4b:10:e7:fc:96:e1:
bd:e8:dd:ba:bd:c5:d3:eb:21:78:ea:42:42:bf:47:
14:17:29:35:33:60:b7:7f:c5:4d:65:16:f5:b1:fe:
6e:03:66:a4:ae:51:4b:47:3d:3d:ea:3d:71:90:06:
a4:a6:84:0d:b8:f8:b5:eb:21:6e:a0:34:07:a1:3b:
74:55:6d:c5:33:80:f6:bf:45:5b:e4:b8:14:58:70:
8d:3b:c2:93:86:a9:ba:5b:42:7b:be:72:0e:4d:b7:
74:f2:71:84:f4:af:93:42:01:10:a5:d7:ba:41:6f:
75:ff:26:3e:8f:0d:c5:dd:99:45:09:c2:30:64:8e:
e0:62:7c:ad:5f:f3:97:58:cd:6b:94:14:91:49:d5:
90:92:13:9c:f4:68:94:46:94:38:5d:1c:4b:3f:db:
5e:06:29:c5:1e:05:bb:3a:37:bf:9c:b1:9f:45:fb:
ec:5c:b8:97:d7:a2:b7:1d:b3:6a:3d:b9:14:ad:44:
c8:ee:92:07:74:f6:50:a7:f2:59:66:d3:0c:8c:f3:
39:33:21:ec:7e:82:21:39:14:80:dd:ef:d5:f0:68:
c6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:50:69:A8:70:64:DF:F9:22:64:4A:94:14:49:50:69:40:66:15:63
X509v3 Authority Key Identifier:
keyid:D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/ClBpqHBk3_kiZEqUFElQaUBmFWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
63.142.0.0/20
138.43.0.0/24
138.43.4.0-138.43.15.255
138.43.26.0/24
138.43.28.0/22
185.170.161.0-185.170.163.255
193.118.128.0/19
193.118.192.0-193.118.196.255
193.118.198.0-193.118.220.255
209.213.48.0/20
217.147.176.0/22
217.147.182.0/23
IPv6:
2a0b:2900:7f::/48
2a0b:2900:1000::-2a0b:2900:12ff:ffff:ffff:ffff:ffff:ffff
2a0b:2900:1f00::/40
2a0b:2900:2100::-2a0b:2900:23ff:ffff:ffff:ffff:ffff:ffff
2a0b:2900:3100::-2a0b:2900:32ff:ffff:ffff:ffff:ffff:ffff
2a0b:2900:4100::-2a0b:2900:42ff:ffff:ffff:ffff:ffff:ffff
2a0b:2900:5200::/40
2a0b:2900:6100::-2a0b:2900:62ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
74:b5:e5:9f:74:64:98:ef:3f:25:61:9d:f9:34:fb:8f:b5:26:
2e:ef:4d:6e:b5:d9:3f:06:85:05:01:46:cd:2d:93:62:d1:15:
c0:10:82:be:7f:49:b5:06:82:60:f7:f5:da:c0:53:ef:f8:25:
d4:85:de:03:9c:2a:ae:97:1a:14:0e:c6:46:32:5c:83:03:fb:
a6:db:87:66:6b:71:09:52:8e:92:4e:c0:a5:2f:e0:44:56:42:
83:91:57:91:b0:50:25:06:d5:f0:26:2d:50:da:87:1c:14:9b:
96:2b:58:eb:80:06:54:f6:b0:62:73:30:66:cb:d1:b2:71:57:
03:3a:36:68:48:bc:3f:94:54:04:a7:18:08:d9:10:6a:92:a1:
70:bf:8c:03:28:0f:fc:4f:69:27:b7:1f:7f:3e:db:5d:f7:ed:
e7:ed:cd:47:f2:ce:49:a2:77:38:2a:57:1a:f0:bf:1c:0f:02:
a7:fc:d9:ec:97:17:78:2b:18:e0:0b:8e:df:f1:bc:8b:55:c3:
52:f7:3f:22:cb:13:7d:97:3c:d7:d3:d7:21:5b:d6:40:84:a2:
b2:54:10:45:c1:5d:da:22:3d:ff:0b:33:6e:d7:95:7b:5b:8a:
4d:fc:cc:4c:18:75:2d:3d:c4:4f:60:8f:31:d8:e8:ad:42:b1:
34:bc:25:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 15:14:25 2024 by rpki-client on console-fra.rpki-client.org