Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/DIlbG8i0EsMaVsigtl8HOxmAG4Q.roa
File: DIlbG8i0EsMaVsigtl8HOxmAG4Q.roa (raw, json)
Hash identifier: Zhi6wy5vgOky9f4RkpOF3WtUNFqVZ1Rg2hUvYIe70+I=
Subject key identifier: 0C:89:5B:1B:C8:B4:12:C3:1A:56:C8:A0:B6:5F:07:3B:19:80:1B:84
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 0192ECD9AD3069C364B6591BCD746F1319AE
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/DIlbG8i0EsMaVsigtl8HOxmAG4Q.roa
Signing time: Sat 02 Nov 2024 12:29:01 +0000
ROA not before: Sat 02 Nov 2024 12:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49453
IP address blocks: 37.123.208.0/24 maxlen: 24
37.123.210.0/24 maxlen: 24
45.133.250.0/24 maxlen: 24
109.202.97.0/24 maxlen: 24
109.202.98.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.226.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.177.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.189.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
185.23.212.0/22 maxlen: 22
185.23.214.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.50.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.182.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.189.0/24 maxlen: 24
2a00:1678:127::/48 maxlen: 48
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:5524::/48 maxlen: 48
2a00:1678:5afe::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
2a00:1678:efa5::/48 maxlen: 48
2a00:1678:fa11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ec:d9:ad:30:69:c3:64:b6:59:1b:cd:74:6f:13:19:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Nov 2 12:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c895b1bc8b412c31a56c8a0b65f073b19801b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c3:38:09:e1:99:7a:49:17:de:fe:e2:0d:74:
70:94:55:32:d3:0c:86:9f:f2:a4:3c:43:c5:b3:31:
e4:9d:ab:18:ac:2c:91:7e:fe:62:04:3d:b3:6a:a0:
32:fb:de:75:b8:d6:45:67:86:af:5b:ee:86:32:9d:
ed:10:b3:ef:48:60:85:3a:ab:1f:8f:67:7e:b7:84:
d1:3e:68:2b:58:3c:67:05:f8:c4:84:a0:3e:8b:b3:
85:f7:e5:56:1a:19:e2:af:b1:45:19:9b:4b:9d:ba:
3b:ca:e3:62:fa:30:7f:41:87:16:4c:74:d3:32:cf:
90:8b:f6:d7:5d:e3:69:82:06:b3:09:6a:31:2b:37:
a1:0d:9d:14:35:a3:f2:fb:15:de:4d:c4:2c:34:e8:
08:bd:ed:26:ef:cb:dc:47:07:40:df:07:88:1a:01:
49:4b:90:78:78:7d:5d:c5:41:0c:52:3f:c9:0e:53:
c5:cd:ab:eb:9d:4c:6f:cb:f4:de:24:ae:31:1d:1f:
e0:8e:bf:49:a1:66:64:dd:04:b8:9d:35:79:e7:32:
4e:7a:ed:6c:ed:67:b9:f6:e6:4f:35:5d:3f:38:60:
b3:d9:3d:49:da:1f:14:92:73:9c:44:59:e9:c2:ba:
80:80:03:0e:1c:e0:23:c1:60:16:d1:53:57:69:f0:
cf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:89:5B:1B:C8:B4:12:C3:1A:56:C8:A0:B6:5F:07:3B:19:80:1B:84
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/DIlbG8i0EsMaVsigtl8HOxmAG4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.208.0/24
37.123.210.0/24
45.133.250.0/24
109.202.97.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/21
134.19.176.0/20
185.23.212.0/22
188.95.49.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0-213.152.191.255
IPv6:
2a00:1678:127::/48
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:5524::/48
2a00:1678:5afe::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
2a00:1678:efa5::/48
2a00:1678:fa11::/48
Signature Algorithm: sha256WithRSAEncryption
5a:66:dc:f3:4c:81:d1:72:cb:0b:c0:d6:d8:03:aa:d3:fe:71:
b9:cd:fe:d4:8c:fb:d3:7d:dd:c1:92:b8:43:2a:87:90:3a:31:
7e:25:59:6b:71:24:79:29:66:4d:04:54:b0:80:0b:3b:c5:ae:
93:f0:58:4e:9c:ea:5c:ca:fe:cd:e6:1c:92:38:d2:b2:b4:0c:
3c:7d:04:89:23:1b:6d:e0:7b:6c:2b:9a:f1:23:11:e2:48:da:
2a:78:cc:c4:b6:61:be:7a:c5:17:01:79:be:44:25:68:55:9f:
03:61:9a:da:48:cf:24:cf:0c:c6:c9:c7:08:9b:f2:5c:80:0b:
22:44:99:9b:d0:33:22:b2:2f:ed:9d:27:55:55:b6:0c:58:ef:
4d:d9:c1:91:df:32:c3:d2:82:d7:dc:17:83:3a:f7:48:a5:75:
1e:aa:0f:74:06:91:79:b5:56:d1:bf:71:9f:0e:c1:32:bc:b9:
e4:98:76:7a:ac:13:de:80:3b:f7:97:ce:de:10:1d:aa:5a:33:
b1:6c:34:f8:14:27:21:e4:28:83:e6:ba:0d:b3:5b:84:05:7d:
bb:f2:80:b7:20:13:c4:51:91:ae:3d:49:85:7d:e3:1e:e3:b8:
95:3a:63:f8:41:c1:35:6a:96:d4:fb:69:90:36:74:0d:16:60:
08:70:e5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:58:00 2024 by rpki-client on console-fra.rpki-client.org