Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vIqnZfC5s2iI6PaVxl6uv12xL5k.roa
File: vIqnZfC5s2iI6PaVxl6uv12xL5k.roa (raw, json)
Hash identifier: 7J5irEi7ZGpdNMpaSQ9/zXl5rsRaU1fwP+PDt/yRwAA=
Subject key identifier: BC:8A:A7:65:F0:B9:B3:68:88:E8:F6:95:C6:5E:AE:BF:5D:B1:2F:99
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 01934D55D0EBDCBBF28ED5680DBD89C9675F
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vIqnZfC5s2iI6PaVxl6uv12xL5k.roa
Signing time: Thu 21 Nov 2024 06:08:09 +0000
ROA not before: Thu 21 Nov 2024 06:08:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48728
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.32.0/19 maxlen: 19
37.186.32.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.44.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
80.76.160.0/20 maxlen: 20
80.76.160.0/21 maxlen: 21
80.76.160.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.170.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.172.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.17.0.0/24 maxlen: 24
103.17.1.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.199.88.0/22 maxlen: 22
103.199.88.0/24 maxlen: 24
103.199.89.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.225.72.0/22 maxlen: 22
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
212.70.96.0/19 maxlen: 19
212.70.96.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
2a04:7f80::/48 maxlen: 48
2a04:7f80:0:a::/64 maxlen: 64
2a04:7f80:2::/48 maxlen: 48
2a04:7f80:3::/48 maxlen: 48
2a04:7f80:4::/48 maxlen: 48
2a04:7f80:5::/48 maxlen: 48
2a04:7f80:10::/48 maxlen: 48
2a04:7f80:11::/48 maxlen: 48
2a04:7f80:12::/48 maxlen: 48
2a04:7f80:13::/48 maxlen: 48
2a04:7f80:14::/48 maxlen: 48
2a04:7f80:15::/48 maxlen: 48
2a04:7f80:16::/48 maxlen: 48
2a04:7f80:17::/48 maxlen: 48
2a04:7f80:19::/48 maxlen: 48
2a04:7f80:1a::/48 maxlen: 48
2a04:7f80:1b::/48 maxlen: 48
2a04:7f80:1c::/48 maxlen: 48
2a04:7f80:1d::/48 maxlen: 48
2a04:7f80:1e::/48 maxlen: 48
2a04:7f80:1f::/48 maxlen: 48
2a04:7f80:20::/44 maxlen: 44
2a04:7f80:40::/45 maxlen: 45
2a04:7f80:48::/45 maxlen: 45
2a04:7f80:50::/48 maxlen: 48
2a04:7f80:51::/48 maxlen: 48
2a04:7f80:52::/48 maxlen: 48
2a04:7f80:53::/48 maxlen: 48
2a04:7f80:54::/48 maxlen: 48
2a04:7f80:55::/48 maxlen: 48
2a04:7f80:56::/48 maxlen: 48
2a04:7f80:57::/48 maxlen: 48
2a04:7f80:58::/48 maxlen: 48
2a04:7f80:5a::/48 maxlen: 48
2a04:7f80:5b::/48 maxlen: 48
2a04:7f80:5c::/48 maxlen: 48
2a04:7f80:5d::/48 maxlen: 48
2a04:7f80:5e::/48 maxlen: 48
2a04:7f80:5f::/48 maxlen: 48
2a04:7f80:90::/45 maxlen: 45
2a04:7f80:2000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4d:55:d0:eb:dc:bb:f2:8e:d5:68:0d:bd:89:c9:67:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Nov 21 06:08:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc8aa765f0b9b36888e8f695c65eaebf5db12f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d3:ec:49:c3:b5:69:3f:a5:a0:a4:d5:68:25:
97:b6:bc:e7:45:8c:46:8f:73:f7:4d:17:f0:85:6c:
ff:69:d7:a7:06:50:2d:a2:47:f9:a0:73:eb:ec:55:
88:6e:fb:89:56:bc:6b:a4:90:8c:ac:f2:66:72:44:
17:f3:b0:81:f8:e8:58:65:f9:c1:0f:65:00:1a:29:
5d:d1:96:1c:8a:b6:fb:e6:87:b3:11:96:2e:13:3b:
5f:4f:75:ea:a8:8d:62:bf:7a:df:37:32:0c:ab:0d:
4e:2c:d4:55:e7:2c:39:8f:6f:b0:80:29:50:9d:f6:
79:41:24:fa:e4:d7:da:24:21:a4:8b:ac:7b:7b:d1:
d0:f6:11:42:8a:ea:2c:11:0d:7e:14:2c:51:b2:9a:
83:50:4e:0d:9d:6f:3c:03:05:b9:22:d1:40:e9:81:
94:42:97:dd:4c:c0:94:a0:89:18:76:30:26:10:95:
c2:f1:cc:c7:6b:d9:b2:95:e0:8f:17:f7:66:ea:f7:
1d:43:88:8b:f6:81:e3:33:50:22:07:c4:c2:c6:87:
04:97:c3:cb:a5:f7:d4:10:5b:44:4c:15:f0:ba:8a:
9e:e6:7d:81:5b:e1:b5:07:59:88:7d:16:fb:83:18:
af:01:af:24:12:2d:ae:2f:4a:6b:0e:f9:7a:b4:02:
bd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8A:A7:65:F0:B9:B3:68:88:E8:F6:95:C6:5E:AE:BF:5D:B1:2F:99
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vIqnZfC5s2iI6PaVxl6uv12xL5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/23
103.199.88.0/22
103.225.72.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
d0:41:11:e9:c9:0f:99:34:c5:34:b7:41:d4:92:35:0e:72:a6:
1d:77:91:ab:04:47:a7:b0:70:c4:15:68:28:70:f8:46:cc:b7:
10:76:17:31:e4:65:95:4b:d0:2a:cf:cc:d3:0e:d9:fa:74:bc:
fd:50:46:ef:b2:7f:f9:66:88:cf:f7:c7:7b:93:f6:b5:15:c7:
5f:52:23:e5:66:c7:b5:0d:c9:0e:d2:0a:1d:02:72:e4:b6:3f:
af:e7:1e:c5:c6:e5:0d:6d:51:37:8e:0a:9b:b9:4c:d0:71:fa:
a2:7d:1a:56:18:dc:65:63:a8:38:48:44:a7:cd:e3:e4:52:11:
d6:10:13:02:0f:ff:f7:0c:d8:a2:17:1b:14:eb:99:fe:81:c8:
9a:9f:45:d6:32:8c:c4:cc:e4:80:64:c5:a5:6f:a6:bb:27:19:
82:3a:3d:12:e8:0a:60:55:d5:43:71:d0:42:2b:d5:d5:d7:93:
2f:ac:a1:50:a3:ba:95:34:4f:1e:d6:2b:ce:ea:88:63:bf:32:
72:c3:c6:f9:d8:07:f1:58:7e:5b:73:5f:bf:4f:61:5d:27:3a:
f0:d3:de:e6:96:d0:ff:f1:6e:97:4b:0b:b1:a4:20:eb:bb:fe:
57:42:37:3c:88:dd:48:ab:a6:4b:13:d6:10:50:87:ce:ef:95:
45:97:ff:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:21 2024 by rpki-client on console-fra.rpki-client.org