Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/qehO0PFxMgyOQyg9CgDYC4n27X0.roa
File: qehO0PFxMgyOQyg9CgDYC4n27X0.roa (raw, json)
Hash identifier: Ax17bZiIH/jKyTYQ1vCPTOREv00WzcZlsRfA15FXjNc=
Subject key identifier: A9:E8:4E:D0:F1:71:32:0C:8E:43:28:3D:0A:00:D8:0B:89:F6:ED:7D
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018D5EBA710B95503123BBBF8786AF760217
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/qehO0PFxMgyOQyg9CgDYC4n27X0.roa
Signing time: Wed 31 Jan 2024 08:54:53 +0000
ROA not before: Wed 31 Jan 2024 08:54:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 31.11.48.0/24 maxlen: 24
31.11.49.0/24 maxlen: 24
31.11.50.0/24 maxlen: 24
31.11.51.0/24 maxlen: 24
31.11.52.0/24 maxlen: 24
31.11.53.0/24 maxlen: 24
31.11.54.0/24 maxlen: 24
31.11.55.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.172.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.14.208.0/24 maxlen: 24
103.14.209.0/24 maxlen: 24
103.14.210.0/24 maxlen: 24
103.14.211.0/24 maxlen: 24
103.17.0.0/24 maxlen: 24
103.17.1.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.199.88.0/24 maxlen: 24
103.199.89.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
185.247.88.0/24 maxlen: 24
185.247.89.0/24 maxlen: 24
185.247.90.0/24 maxlen: 24
185.247.91.0/24 maxlen: 24
212.70.96.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80:2::/48 maxlen: 48
2a04:7f80:3::/48 maxlen: 48
2a04:7f80:4::/48 maxlen: 48
2a04:7f80:5::/48 maxlen: 48
2a04:7f80:10::/48 maxlen: 48
2a04:7f80:11::/48 maxlen: 48
2a04:7f80:12::/48 maxlen: 48
2a04:7f80:13::/48 maxlen: 48
2a04:7f80:14::/48 maxlen: 48
2a04:7f80:15::/48 maxlen: 48
2a04:7f80:16::/48 maxlen: 48
2a04:7f80:17::/48 maxlen: 48
2a04:7f80:19::/48 maxlen: 48
2a04:7f80:1a::/48 maxlen: 48
2a04:7f80:1b::/48 maxlen: 48
2a04:7f80:1c::/48 maxlen: 48
2a04:7f80:1d::/48 maxlen: 48
2a04:7f80:1e::/48 maxlen: 48
2a04:7f80:1f::/48 maxlen: 48
2a04:7f80:50::/48 maxlen: 48
2a04:7f80:51::/48 maxlen: 48
2a04:7f80:52::/48 maxlen: 48
2a04:7f80:53::/48 maxlen: 48
2a04:7f80:54::/48 maxlen: 48
2a04:7f80:55::/48 maxlen: 48
2a04:7f80:56::/48 maxlen: 48
2a04:7f80:57::/48 maxlen: 48
2a04:7f80:58::/48 maxlen: 48
2a04:7f80:59::/48 maxlen: 48
2a04:7f80:5a::/48 maxlen: 48
2a04:7f80:5b::/48 maxlen: 48
2a04:7f80:5c::/48 maxlen: 48
2a04:7f80:5d::/48 maxlen: 48
2a04:7f80:5e::/48 maxlen: 48
2a04:7f80:5f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:ba:71:0b:95:50:31:23:bb:bf:87:86:af:76:02:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 31 08:54:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9e84ed0f171320c8e43283d0a00d80b89f6ed7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7e:fd:4d:37:85:40:4d:7b:a7:3a:bd:c5:27:
b2:09:8e:2c:44:51:73:c7:af:27:5e:63:d5:07:9f:
d1:c6:4e:cd:41:ee:8a:b4:ea:4f:c3:e3:c5:07:53:
79:b2:a5:53:7f:ff:c0:fe:d7:7f:4c:25:cb:74:a1:
58:d2:a9:4a:d2:4a:09:54:af:da:c8:9e:6a:f2:8e:
35:94:be:ef:51:76:07:c5:6f:b2:86:a8:6b:a5:cf:
01:14:db:3a:1e:12:60:af:f7:92:36:69:df:35:61:
ab:3e:6b:cb:9c:0f:8f:62:47:66:3e:92:74:c5:18:
f6:7b:84:87:aa:31:2e:02:f6:80:b8:b3:33:0e:22:
9d:ef:d0:00:01:ab:50:0b:e6:d7:19:1b:dd:2d:b0:
83:4a:80:7c:e8:3b:a8:b3:90:74:9b:01:1e:c8:05:
83:49:9d:f9:23:c2:0d:67:30:1b:6c:7f:1a:98:d5:
2b:87:ec:1a:e3:d1:b4:17:20:a6:19:3f:65:f9:bd:
df:1e:4f:2a:3b:44:07:f6:5b:88:c5:35:1b:a8:f6:
7e:49:da:b9:8a:6a:8a:30:77:bf:19:8b:04:68:de:
08:17:30:b5:b3:ae:78:a2:ad:b9:7d:9f:ad:40:e6:
97:76:9b:ba:36:25:16:94:33:d8:53:76:5f:53:3e:
1d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E8:4E:D0:F1:71:32:0C:8E:43:28:3D:0A:00:D8:0B:89:F6:ED:7D
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/qehO0PFxMgyOQyg9CgDYC4n27X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.14.208.0/22
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
185.247.88.0/22
212.70.96.0/21
212.70.105.0-212.70.127.255
IPv6:
2a04:7f80:2::-2a04:7f80:5:ffff:ffff:ffff:ffff:ffff
2a04:7f80:10::/45
2a04:7f80:19::-2a04:7f80:1f:ffff:ffff:ffff:ffff:ffff
2a04:7f80:50::/44
Signature Algorithm: sha256WithRSAEncryption
8a:2b:88:af:21:58:c0:fb:e6:0d:f6:43:b1:c4:4e:09:75:dc:
f9:4b:8d:62:15:d4:3f:df:6b:70:1f:27:83:ba:e2:36:81:4d:
22:3c:83:96:d7:04:46:c7:0e:ab:10:fd:4e:9e:fb:4c:d1:b6:
0b:cb:85:10:c1:14:79:42:f4:39:a1:a3:3c:1c:ba:24:5f:df:
93:54:81:2c:2a:3d:31:1b:e7:66:b4:68:ba:56:cb:5d:e1:be:
35:46:6d:b8:f3:bf:b8:3c:e0:c2:f3:5d:63:c0:c3:fb:e1:14:
66:e9:16:c8:70:eb:2c:c2:71:ca:f3:53:f7:cc:3b:bb:ad:cb:
a5:0b:ff:f4:8c:21:5c:c5:fa:df:36:94:73:bf:ff:e2:03:a4:
33:1c:c9:13:57:80:9b:18:e2:85:47:0f:37:d2:40:3e:7a:27:
a4:75:c4:78:c0:14:61:ff:38:27:3f:f6:84:f7:8a:bd:7d:da:
39:31:57:23:95:3e:68:bb:a3:40:ef:76:a6:26:2a:05:52:d7:
3d:16:7a:64:ae:10:72:2a:b5:2a:09:21:85:de:de:2a:b4:34:
b9:9c:4f:b1:e1:6e:7b:e2:98:b2:60:3f:b8:73:8a:3b:11:51:
64:9c:8a:31:3e:ba:23:b3:fe:96:fb:ec:a7:d3:ff:e5:a4:b1:
63:41:4d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:36:00 2024 by rpki-client on console-ams.rpki-client.org