Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/prdhkuLNMJj1XAbV4hJ7mUCi7Qw.roa
File: prdhkuLNMJj1XAbV4hJ7mUCi7Qw.roa (raw, json)
Hash identifier: oahacznGoyma8DTbD+BBBz1F9ri9P/GutwaYvNZhnjQ=
Subject key identifier: A6:B7:61:92:E2:CD:30:98:F5:5C:06:D5:E2:12:7B:99:40:A2:ED:0C
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 019150573AE80B749084A84F67CB16ACCBF9
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/prdhkuLNMJj1XAbV4hJ7mUCi7Qw.roa
Signing time: Wed 14 Aug 2024 10:02:59 +0000
ROA not before: Wed 14 Aug 2024 10:02:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48359
IP address blocks: 45.155.192.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.48.0/24 maxlen: 24
185.47.49.0/24 maxlen: 24
185.47.50.0/23 maxlen: 23
185.47.50.0/24 maxlen: 24
185.47.51.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
185.82.64.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
185.125.20.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.137.61.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.124.0/24 maxlen: 24
185.142.125.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.192.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.194.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
195.230.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:57:3a:e8:0b:74:90:84:a8:4f:67:cb:16:ac:cb:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: Aug 14 10:02:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6b76192e2cd3098f55c06d5e2127b9940a2ed0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6e:cc:b3:35:37:22:63:3a:ab:e7:74:38:b9:
91:a4:df:c5:62:9d:5a:10:43:33:9d:a8:84:dc:e9:
e2:da:b6:ef:ce:23:31:22:e0:99:7f:3e:b7:44:5b:
6f:32:32:62:3c:f9:d4:6b:28:c4:a0:22:4e:0d:6c:
28:db:a6:61:08:64:e3:4e:7f:92:81:3d:e8:43:b2:
51:c4:e7:61:84:e8:53:c1:4b:7f:83:22:c4:25:d8:
0f:e0:a9:14:4c:22:79:b7:a6:70:25:9c:af:04:92:
6b:d8:5c:07:22:1a:33:97:d5:47:ca:01:8a:d0:dd:
de:31:e5:de:f2:2e:a0:56:6c:cc:85:57:14:84:c8:
51:8e:59:ec:c5:3f:22:07:f8:36:a3:96:9d:1a:ac:
bd:32:30:85:32:d2:f0:71:e6:dd:b7:78:17:8d:2f:
a7:d6:27:15:c1:a3:39:d7:cb:b9:a9:0e:23:54:4b:
98:36:02:00:dd:4c:c7:ff:83:86:52:27:00:47:bb:
e8:8b:a8:06:e1:7e:dd:1e:96:f4:f6:04:21:1b:f9:
48:89:08:b7:b7:7c:3f:06:68:57:5d:4b:3d:86:7c:
97:86:6f:96:ba:3c:2b:ed:e9:38:d0:12:cf:56:63:
e3:d6:1a:f0:1a:51:c0:bf:54:f3:34:a6:72:82:2f:
af:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B7:61:92:E2:CD:30:98:F5:5C:06:D5:E2:12:7B:99:40:A2:ED:0C
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/prdhkuLNMJj1XAbV4hJ7mUCi7Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.20.0/22
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
52:2f:93:be:84:16:36:c5:af:69:30:02:1a:2f:23:e6:81:9b:
c5:a1:97:bd:9c:af:1f:6f:12:d1:c8:d3:bb:b1:df:2a:07:f0:
66:3d:6c:c6:ba:1b:11:46:03:e5:1c:85:19:2a:a1:3a:be:f2:
05:42:f1:1e:44:f2:bc:e9:10:f5:25:34:42:ca:6d:8b:01:2d:
da:13:ec:5a:dd:2a:df:2f:40:37:df:01:bb:4e:17:54:db:1d:
56:b2:38:bf:bf:18:8f:01:15:6a:9c:a8:c1:a7:1a:5b:ed:5e:
61:e8:95:5d:c0:60:94:d7:c3:f3:3e:bb:b0:47:0a:39:d0:96:
85:85:d6:be:a2:83:f3:f7:4a:2d:69:a3:7d:70:a6:5e:9a:90:
a8:ec:fa:43:19:36:bc:34:48:ae:df:cd:16:29:f6:ce:73:6a:
34:c4:99:a1:48:07:d6:24:64:9d:1e:cd:7e:d8:88:e5:8f:39:
2f:e6:f2:f9:25:2c:08:c0:8c:a6:a0:e9:97:02:d0:9b:89:cd:
a1:9f:5b:10:83:a3:c0:a8:61:6c:d2:c0:94:fd:a7:38:27:aa:
19:c6:cd:24:1a:e3:54:f1:e5:74:3c:c2:d2:bb:14:89:55:e4:
a4:92:1e:f1:b1:3d:c0:4f:41:08:bb:18:89:83:07:72:13:e3:
fe:1b:5f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:42:26 2024 by rpki-client on console-fra.rpki-client.org