Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s3rqu02pG1ZaqAjooZ-BTIGU4Y8.roa
File: s3rqu02pG1ZaqAjooZ-BTIGU4Y8.roa (raw, json)
Hash identifier: 1v6HyWfyZ9fchdpyrwFGp83shPj5r1FcPwc8TK1S1nc=
Subject key identifier: B3:7A:EA:BB:4D:A9:1B:56:5A:A8:08:E8:A1:9F:81:4C:81:94:E1:8F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01924D0CF9ED14CEF2A72E9FFB7A131471E6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s3rqu02pG1ZaqAjooZ-BTIGU4Y8.roa
Signing time: Wed 02 Oct 2024 11:45:48 +0000
ROA not before: Wed 02 Oct 2024 11:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29648
IP address blocks: 31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.119.0/24 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.160.0/24 maxlen: 24
77.233.161.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
78.109.123.0/24 maxlen: 24
78.109.124.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
86.109.193.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
86.109.208.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
86.109.220.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.98.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
178.178.160.0/24 maxlen: 24
188.94.168.0/24 maxlen: 24
188.94.169.0/24 maxlen: 24
188.94.170.0/24 maxlen: 24
188.94.171.0/24 maxlen: 24
188.94.172.0/24 maxlen: 24
188.94.173.0/24 maxlen: 24
188.94.174.0/24 maxlen: 24
188.94.175.0/24 maxlen: 24
188.170.96.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.98.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
188.170.108.0/24 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.125.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
217.115.80.0/20 maxlen: 20
217.115.80.0/24 maxlen: 24
217.115.81.0/24 maxlen: 24
217.115.91.0/24 maxlen: 24
217.115.94.0/24 maxlen: 24
2a03:d000:9004::/46 maxlen: 46
2a03:d005::/40 maxlen: 40
2a03:d005:100::/40 maxlen: 40
2a03:d005:200::/40 maxlen: 40
2a03:d005:300::/40 maxlen: 40
2a03:d005:400::/40 maxlen: 40
2a03:d005:500::/40 maxlen: 40
2a03:d005:600::/40 maxlen: 40
2a03:d005:700::/40 maxlen: 40
2a03:d005:800::/40 maxlen: 40
2a03:d005:900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4d:0c:f9:ed:14:ce:f2:a7:2e:9f:fb:7a:13:14:71:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 2 11:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b37aeabb4da91b565aa808e8a19f814c8194e18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:e1:72:9c:3d:aa:f1:3e:b7:07:4b:0b:2f:
89:90:09:56:c6:b2:68:86:b3:dd:a3:bd:66:a5:08:
2a:0b:9c:9d:0c:6b:ec:f9:62:be:82:20:a2:79:65:
52:b4:5f:04:d4:54:95:f6:6f:c6:bc:35:a2:ee:71:
18:43:83:10:99:4d:de:0a:2c:97:b6:07:d9:26:44:
85:01:1d:a5:9b:3e:d9:d0:0f:fc:ec:cb:21:db:83:
7b:be:72:e1:7f:5f:42:be:9e:ea:1d:27:6f:d4:7c:
7f:76:48:aa:04:9d:f9:98:96:7c:7c:b8:9a:72:8a:
64:92:b1:dc:fd:0c:e1:25:0e:fb:c3:1e:d0:48:85:
d0:09:e4:36:04:ab:ce:f8:a8:24:3a:7d:72:f0:de:
ba:2b:f9:0c:54:00:89:39:28:c5:ce:74:59:e6:0a:
c5:9b:c1:b5:fd:96:04:6c:3b:5f:67:ca:ea:7c:c3:
de:b8:a1:24:ab:3e:9f:b9:5b:a7:7c:fb:4c:6c:17:
0f:82:03:80:47:12:9f:39:1f:8c:04:c5:06:79:25:
d4:e0:72:71:b7:f6:73:db:8e:78:e2:8c:bd:11:37:
4d:d3:93:e2:51:6a:bf:5a:23:f0:e9:17:cc:07:70:
92:45:5d:09:1b:a4:5e:7f:32:46:9c:89:7f:08:a8:
83:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7A:EA:BB:4D:A9:1B:56:5A:A8:08:E8:A1:9F:81:4C:81:94:E1:8F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s3rqu02pG1ZaqAjooZ-BTIGU4Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
78.109.123.0-78.109.124.255
83.169.217.0-83.169.223.255
86.109.192.0/19
178.176.96.0/21
178.176.114.0-178.176.127.255
178.178.160.0/24
188.94.168.0/21
188.170.96.0/19
195.149.111.0/24
217.115.80.0/20
IPv6:
2a03:d000:9004::/46
2a03:d005::-2a03:d005:9ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
66:6d:20:2a:9f:41:1a:8e:32:0a:f0:82:00:84:b8:83:bf:47:
25:f4:25:61:09:2e:ac:08:3b:c7:a5:22:3b:39:4d:30:2c:90:
98:b6:a1:dd:8a:0c:fe:08:9e:97:6a:3b:f1:be:9e:68:5e:e0:
47:70:16:11:cf:e4:84:2b:6f:e9:bf:36:bc:e9:c2:13:15:3d:
c9:45:9b:84:19:d5:74:53:0a:92:cd:d3:35:8d:39:9c:af:ad:
91:a6:23:81:51:d3:3f:cd:20:54:61:b8:9f:b7:0a:21:1e:5a:
e9:83:8a:d5:80:e5:49:ac:48:9a:06:aa:c7:98:3c:4c:f5:35:
04:be:f0:b4:e3:48:95:41:58:83:9e:36:77:d6:74:ad:ba:bb:
9a:9d:30:db:48:b5:cd:f0:34:87:2e:24:53:6a:89:ff:97:b2:
30:2a:c9:85:55:af:21:7f:27:ff:b8:01:de:86:6a:9b:23:d0:
1e:a8:7d:93:87:cb:eb:3e:12:dc:31:e9:d2:69:bc:a6:31:56:
49:a0:ca:63:f3:4d:eb:46:68:23:28:49:89:48:c3:6f:27:6c:
78:2a:34:65:8f:a1:fb:32:9d:fb:8a:4f:15:1e:13:95:75:de:
ec:58:b1:3d:a2:e8:76:22:c5:30:77:99:ca:b3:7e:5b:db:99:
18:d6:88:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:38:15 2024 by rpki-client on console-fra.rpki-client.org