Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sAWOwOqxGpPZ9_DzzIguX1oSVkY.roa
File: sAWOwOqxGpPZ9_DzzIguX1oSVkY.roa (raw, json)
Hash identifier: FmeSBpkinpchf7xxBfo6C8E3ZRkyaGeAGyJO/HvUi2U=
Subject key identifier: B0:05:8E:C0:EA:B1:1A:93:D9:F7:F0:F3:CC:88:2E:5F:5A:12:56:46
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 018E373503EAF86AD226453CD8588A65D7A4
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sAWOwOqxGpPZ9_DzzIguX1oSVkY.roa
Signing time: Wed 13 Mar 2024 09:46:45 +0000
ROA not before: Wed 13 Mar 2024 09:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60781
IP address blocks: 5.79.64.0/18 maxlen: 18
37.48.64.0/18 maxlen: 18
62.212.64.0/19 maxlen: 19
81.17.47.0/24 maxlen: 24
81.17.49.0/24 maxlen: 24
81.17.50.0/24 maxlen: 24
81.17.51.0/24 maxlen: 24
81.17.52.0/24 maxlen: 24
81.17.53.0/24 maxlen: 24
81.17.54.0/24 maxlen: 24
81.17.55.0/24 maxlen: 24
81.171.0.0/19 maxlen: 19
82.192.64.0/19 maxlen: 19
83.149.64.0/18 maxlen: 18
85.17.0.0/16 maxlen: 16
89.149.192.0/18 maxlen: 18
89.149.192.0/20 maxlen: 20
94.75.192.0/18 maxlen: 18
95.168.160.0/20 maxlen: 20
95.211.0.0/16 maxlen: 16
173.234.68.0/22 maxlen: 22
178.162.128.0/18 maxlen: 18
178.162.162.0/23 maxlen: 23
178.162.164.0/22 maxlen: 22
178.162.168.0/22 maxlen: 22
178.162.176.0/20 maxlen: 20
185.17.184.0/22 maxlen: 22
212.7.192.0/20 maxlen: 20
212.7.208.0/22 maxlen: 22
212.32.224.0/19 maxlen: 19
213.227.128.0/19 maxlen: 19
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/36 maxlen: 36
2001:1af8:8000::/40 maxlen: 40
2001:1af8:8100::/44 maxlen: 44
2001:1af8:8110::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:35:03:ea:f8:6a:d2:26:45:3c:d8:58:8a:65:d7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Mar 13 09:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0058ec0eab11a93d9f7f0f3cc882e5f5a125646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d0:75:2d:c0:07:6d:4a:a3:f9:91:e0:ec:85:
82:61:7b:e5:c6:f9:13:9e:7d:76:7f:fc:0e:75:cf:
37:04:75:dd:ee:2e:26:31:da:9e:3b:62:d7:e2:21:
4b:2c:1f:4c:b2:78:af:a7:e1:9b:04:0a:7b:36:81:
cd:46:74:10:0e:ae:2a:77:e2:8b:0d:0f:9c:c9:7b:
04:20:b5:e3:73:72:4d:9f:8f:23:e4:fe:45:15:6b:
bd:7f:f4:56:5e:7a:a1:f9:25:f3:e3:29:39:cc:9d:
7f:77:9a:d1:fe:f5:d7:9a:da:40:6e:09:1b:0e:c6:
1b:dd:f0:4a:af:0e:98:c2:77:84:48:4b:f6:7c:95:
3d:90:d4:13:40:c2:61:58:ed:cc:f3:15:d8:0b:f7:
2e:eb:a1:30:0b:a0:66:ac:d1:56:3e:66:59:26:a6:
18:6c:5a:38:f6:6e:b3:56:2c:22:b2:de:34:9b:ef:
07:cf:e3:11:6c:9d:ad:ac:b1:e7:64:3e:ab:35:c8:
8d:8f:ed:1f:0d:ee:1a:83:46:ca:17:20:76:14:6c:
c6:fd:21:f4:bc:bd:df:8c:d5:e8:15:fe:fc:e5:72:
6b:6c:4a:47:94:f0:57:7b:d4:c1:dc:83:d6:86:48:
54:db:58:39:2f:c6:5d:f0:1b:30:cc:c5:65:e9:6f:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:05:8E:C0:EA:B1:1A:93:D9:F7:F0:F3:CC:88:2E:5F:5A:12:56:46
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sAWOwOqxGpPZ9_DzzIguX1oSVkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.79.64.0/18
37.48.64.0/18
62.212.64.0/19
81.17.47.0/24
81.17.49.0-81.17.55.255
81.171.0.0/19
82.192.64.0/19
83.149.64.0/18
85.17.0.0/16
89.149.192.0/18
94.75.192.0/18
95.168.160.0/20
95.211.0.0/16
173.234.68.0/22
178.162.128.0/18
185.17.184.0/22
212.7.192.0-212.7.211.255
212.32.224.0/19
213.227.128.0/19
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
91:fa:5c:e1:39:d0:ad:23:03:91:79:12:d6:cd:48:21:7b:37:
fa:e0:7b:1b:c3:61:ed:ed:d9:ee:76:c6:7a:6a:b1:5c:dd:69:
58:91:c9:36:17:3d:87:9e:b7:bd:af:af:0c:22:9f:96:d8:f3:
55:05:ca:44:17:bc:cb:35:1d:f9:e9:ff:8c:9b:5b:a3:db:b7:
0e:f3:a9:da:2f:7e:b2:bf:64:b0:bd:8a:01:c2:2b:35:6c:42:
88:b7:97:c3:7f:93:34:d0:ce:e0:ab:38:da:4c:f4:cc:8e:de:
b1:3c:a0:d2:6d:c2:e4:bc:34:91:4e:b3:9b:ea:e5:f9:c4:9c:
80:55:56:38:64:01:a7:c3:c5:fb:24:57:c0:96:03:64:da:f3:
ef:85:70:26:44:81:78:b8:de:5e:dd:e3:53:00:5d:7a:bb:e8:
9a:fa:e7:3a:9a:f9:3d:fd:15:2d:80:6e:de:0d:77:47:36:fb:
7d:af:5a:71:06:aa:d6:81:f0:14:53:12:af:6e:b0:95:8b:fb:
5d:5d:7e:c6:c1:a0:e9:f8:f5:57:e7:17:4b:5f:10:cc:8f:c6:
8b:31:1e:05:db:53:56:5d:7a:3c:bd:65:9d:81:c0:37:d2:0d:
f9:2f:e5:3c:fa:dd:a3:c7:5b:c7:d8:6a:09:82:15:fe:46:2f:
9d:19:42:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 16:46:36 2024 by rpki-client on console-fra.rpki-client.org