Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/A3UM48NjmMrneJm4H_-sTGyH0PE.roa
File: A3UM48NjmMrneJm4H_-sTGyH0PE.roa (raw, json)
Hash identifier: 1QL6xpA0ncmJHc+TofaP+3TjCyM5U/6ePdQa1MaT/DU=
Subject key identifier: 03:75:0C:E3:C3:63:98:CA:E7:78:99:B8:1F:FF:AC:4C:6C:87:D0:F1
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 01930C3A8323987EC309D94DE410040B4FFC
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/A3UM48NjmMrneJm4H_-sTGyH0PE.roa
Signing time: Fri 08 Nov 2024 14:43:01 +0000
ROA not before: Fri 08 Nov 2024 14:43:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/23 maxlen: 23
5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
37.10.1.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.24.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5041::/32 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5041:2::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:4::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:200c::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:4eff::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:7001::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea20::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:3::/48 maxlen: 48
2a01:5042:7::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:2003::/48 maxlen: 48
2a01:5042:2007::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:3::/48 maxlen: 48
2a01:5043:7::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5043:2003::/48 maxlen: 48
2a01:5043:2007::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:3a:83:23:98:7e:c3:09:d9:4d:e4:10:04:0b:4f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Nov 8 14:43:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03750ce3c36398cae77899b81fffac4c6c87d0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4d:50:e5:0a:ea:3e:ba:d7:2e:c7:ff:40:0e:
bd:75:68:ce:95:cf:83:88:9e:f6:0b:44:02:a2:b2:
c8:7b:d6:14:2f:81:f0:45:74:b8:23:9b:96:96:ac:
78:16:09:9e:28:58:d3:9d:0a:f7:7e:90:c7:e1:a4:
80:4f:44:7a:b9:35:a1:46:10:74:c0:b6:3e:f9:a1:
2b:df:be:04:3b:7e:47:ed:a0:0e:a2:5c:27:8e:fe:
fd:c6:c3:c3:51:81:ad:c5:9b:2c:2b:f8:41:10:ad:
fa:3f:bf:a5:0e:90:69:88:ca:b1:51:e8:3c:95:ae:
ee:1d:0f:ff:55:e4:62:21:43:f2:35:c6:46:34:25:
6a:bc:b4:64:06:0b:0a:f0:1c:e3:bc:ce:c3:15:7f:
0a:24:70:71:7e:43:58:92:4c:1f:7e:85:00:67:32:
22:64:14:47:97:4f:ee:3e:00:55:20:1d:4d:da:e2:
13:34:da:2d:0e:6d:79:0d:9a:6c:8f:20:b4:27:8b:
46:be:75:06:37:48:4c:13:b3:e1:b1:82:a3:41:dd:
50:21:ef:08:57:54:fb:8f:9e:90:3b:f0:00:65:c3:
8c:6b:cd:ca:7a:ba:c4:0f:3e:ce:17:bc:49:f9:9a:
3e:2e:f9:92:c8:c2:8b:1e:21:a4:3b:7b:7d:57:79:
54:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:75:0C:E3:C3:63:98:CA:E7:78:99:B8:1F:FF:AC:4C:6C:87:D0:F1
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/A3UM48NjmMrneJm4H_-sTGyH0PE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.24.0/21
37.10.40.0-37.10.46.255
91.195.236.0/24
IPv6:
2a01:5041::/32
2a01:5042:1::/48
2a01:5042:3::/48
2a01:5042:7::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2001::/48
2a01:5042:2003::/48
2a01:5042:2007::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:3::/48
2a01:5043:7::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2003::/48
2a01:5043:2007::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
8d:f1:c4:f1:6d:2b:25:03:20:b5:56:fb:0d:15:e3:8d:ce:e7:
e4:97:9b:c7:43:e5:69:fd:eb:68:2d:83:80:90:50:5a:2a:c4:
5a:9d:19:81:9b:94:f3:2b:52:1f:ca:3f:40:fc:32:e6:42:6c:
d9:de:bc:21:14:4c:5f:51:20:a5:a2:da:68:f6:0c:f8:8c:83:
45:4f:6e:94:68:b1:b4:dc:11:55:42:b0:f2:ad:3a:e1:b5:43:
c8:28:35:c6:40:c6:9c:12:27:45:1c:25:5b:93:2a:b0:cc:d8:
e5:57:73:5d:c2:70:4d:18:a6:b9:f0:1b:e4:2e:27:e0:4b:3d:
3b:26:29:72:37:e2:ef:34:09:50:0d:b3:35:44:af:2d:4e:61:
ab:8c:6a:d3:f6:ca:db:03:ef:1a:c3:9c:e4:48:b7:2e:e5:8e:
85:9b:24:ba:da:cf:61:fc:46:bf:87:dc:aa:56:fb:7d:bf:4a:
c5:ef:c4:2c:8f:4f:e2:61:33:e8:fe:3f:d5:9c:10:75:ca:06:
b4:81:d1:51:cc:8b:9f:74:10:54:d3:27:5e:4e:97:42:5f:f2:
bd:47:c2:fc:7d:f9:cf:b3:96:38:98:89:e6:d5:d9:64:a5:5c:
84:62:54:d3:d8:18:b6:45:93:57:23:7f:70:e9:fd:f0:a4:e1:
0f:ba:eb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:13:48 2024 by rpki-client on console-ams.rpki-client.org