Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3d-VEdvB_SUgJaoCHXECt-d6DJc.roa
File: 3d-VEdvB_SUgJaoCHXECt-d6DJc.roa (raw, json)
Hash identifier: Mkdy1qis7wGJgtrf3AJKa+/2dqdVndetkjrMPgTOHBA=
Subject key identifier: DD:DF:95:11:DB:C1:FD:25:20:25:AA:02:1D:71:02:B7:E7:7A:0C:97
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018F14948564F880B1263BA2D0A506A48941
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3d-VEdvB_SUgJaoCHXECt-d6DJc.roa
Signing time: Thu 25 Apr 2024 09:27:08 +0000
ROA not before: Thu 25 Apr 2024 09:27:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2119
IP address blocks: 192.36.37.0/24 maxlen: 24
192.71.5.0/24 maxlen: 24
192.71.40.0/24 maxlen: 24
192.71.97.0/24 maxlen: 24
192.71.158.0/24 maxlen: 24
192.121.101.0/24 maxlen: 24
192.121.172.0/24 maxlen: 24
192.121.192.0/24 maxlen: 24
192.165.65.0/24 maxlen: 24
192.165.86.0/24 maxlen: 24
192.176.161.0/24 maxlen: 24
193.180.61.0/24 maxlen: 24
193.181.0.0/24 maxlen: 24
193.181.187.0/24 maxlen: 24
193.183.3.0/24 maxlen: 24
193.183.68.0/23 maxlen: 23
193.183.79.0/24 maxlen: 24
193.183.92.0/24 maxlen: 24
193.183.93.0/24 maxlen: 24
193.183.104.0/24 maxlen: 24
193.183.118.0/24 maxlen: 24
193.234.68.0/23 maxlen: 23
193.234.220.0/23 maxlen: 23
193.234.237.0/24 maxlen: 24
194.14.129.0/24 maxlen: 24
194.14.212.0/24 maxlen: 24
194.68.56.0/23 maxlen: 23
194.68.99.0/24 maxlen: 24
194.68.126.0/24 maxlen: 24
194.71.27.0/24 maxlen: 24
194.71.83.0/24 maxlen: 24
194.71.140.0/23 maxlen: 23
194.71.248.0/21 maxlen: 21
194.103.50.0/24 maxlen: 24
194.132.108.0/23 maxlen: 23
194.132.174.0/24 maxlen: 24
194.132.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 23:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:94:85:64:f8:80:b1:26:3b:a2:d0:a5:06:a4:89:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Apr 25 09:27:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dddf9511dbc1fd252025aa021d7102b7e77a0c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:36:07:04:23:ce:54:fe:84:92:05:c8:9d:21:
99:5e:47:1a:ba:9e:a4:0e:0c:1d:30:f9:de:bf:37:
69:3d:be:fc:18:18:b2:11:af:54:4d:ad:0a:8a:ec:
7e:f3:0a:c0:4b:78:14:ed:ec:ab:2c:0f:0d:ff:8c:
51:80:ac:5e:9d:7b:26:73:9b:5b:36:26:76:95:68:
dc:e6:a1:bb:70:a0:f4:b8:b3:96:e1:18:2f:a2:fc:
67:c7:5c:89:91:a4:da:e7:71:d2:66:86:16:5e:0a:
ba:83:df:f7:ca:e4:12:ff:e6:3c:78:d9:fa:f0:4f:
b6:88:8a:7a:ee:4f:f7:39:d7:7e:36:01:6e:88:90:
b7:47:f1:21:db:aa:c2:a4:34:0c:e6:ed:af:eb:8b:
9f:92:5b:92:e1:62:c7:39:e8:25:70:d8:4c:d1:9f:
99:eb:e6:96:95:47:c5:b0:56:12:c8:3f:59:0b:99:
1e:e2:e3:67:94:29:6f:2f:8c:4f:af:53:50:41:40:
d7:28:7c:f9:70:6a:ec:49:6a:7e:2b:11:e9:28:fb:
97:34:0a:96:2c:c0:87:49:1e:e6:bc:f7:5c:78:6a:
38:9d:b2:93:2a:0a:6c:0e:2e:99:49:2d:ad:7e:76:
dd:3d:77:08:1a:8c:5f:e1:32:fa:06:13:58:01:f4:
0d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DF:95:11:DB:C1:FD:25:20:25:AA:02:1D:71:02:B7:E7:7A:0C:97
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3d-VEdvB_SUgJaoCHXECt-d6DJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.37.0/24
192.71.5.0/24
192.71.40.0/24
192.71.97.0/24
192.71.158.0/24
192.121.101.0/24
192.121.172.0/24
192.121.192.0/24
192.165.65.0/24
192.165.86.0/24
192.176.161.0/24
193.180.61.0/24
193.181.0.0/24
193.181.187.0/24
193.183.3.0/24
193.183.68.0/23
193.183.79.0/24
193.183.92.0/23
193.183.104.0/24
193.183.118.0/24
193.234.68.0/23
193.234.220.0/23
193.234.237.0/24
194.14.129.0/24
194.14.212.0/24
194.68.56.0/23
194.68.99.0/24
194.68.126.0/24
194.71.27.0/24
194.71.83.0/24
194.71.140.0/23
194.71.248.0/21
194.103.50.0/24
194.132.108.0/23
194.132.174.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:e6:4a:50:6a:70:45:eb:5a:10:4f:1f:e1:ee:09:b8:cb:14:
06:da:b5:01:75:7a:37:41:31:57:1f:2a:9f:38:87:fb:9e:15:
d9:57:e7:4f:6e:0a:18:ff:ea:ff:f3:a9:26:34:07:4e:94:9e:
70:7c:2c:e0:33:e4:8f:54:68:92:df:fa:96:4a:39:17:82:78:
ac:30:10:33:19:ab:7c:a1:2a:1b:cb:9f:cd:db:6e:7f:ca:58:
9d:9f:18:54:54:4b:6f:d5:76:04:1e:3f:12:42:24:32:bf:82:
f2:66:d1:46:47:a5:3c:6e:ea:2c:15:9e:2d:36:79:26:30:51:
4b:cc:29:5b:7c:bf:bf:7b:f3:fc:16:be:ef:1f:c1:a5:72:10:
4f:7a:4a:f1:47:3e:e8:4f:77:5a:89:07:e5:88:9a:a6:87:eb:
78:f7:46:78:bf:59:9d:af:6c:7b:b6:7c:6c:d8:73:3c:4e:bc:
79:28:f3:09:fc:19:70:93:10:7b:85:bd:77:fd:5a:ac:52:ab:
bc:66:7e:df:6d:cb:d0:d0:7c:ce:a1:a1:6e:b1:77:73:63:e3:
ac:af:8a:20:6a:18:0f:55:fc:f0:2d:2f:45:07:79:36:cd:36:
08:05:c4:57:f6:50:c4:74:ed:7e:ba:2a:30:39:7b:53:6d:1b:
0a:fe:99:82
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgISAY8UlIVk+ICxJjui0KUGpIlBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjQwNDI1MDkyNzA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGRmOTUxMWRiYzFmZDI1MjAyNWFhMDIxZDcxMDJiN2U3N2EwYzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjYHBCPOVP6EkgXInSGZXkcaup6k
DgwdMPnevzdpPb78GBiyEa9UTa0Kiux+8wrAS3gU7eyrLA8N/4xRgKxenXsmc5tb
NiZ2lWjc5qG7cKD0uLOW4Rgvovxnx1yJkaTa53HSZoYWXgq6g9/3yuQS/+Y8eNn6
8E+2iIp67k/3Odd+NgFuiJC3R/Eh26rCpDQM5u2v64ufkluS4WLHOeglcNhM0Z+Z
6+aWlUfFsFYSyD9ZC5ke4uNnlClvL4xPr1NQQUDXKHz5cGrsSWp+KxHpKPuXNAqW
LMCHSR7mvPdceGo4nbKTKgpsDi6ZSS2tfnbdPXcIGoxf4TL6BhNYAfQNOQIDAQAB
o4IC2jCCAtYwHQYDVR0OBBYEFN3flRHbwf0lICWqAh1xArfnegyXMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvM2QtVkVkdkJfU1VnSmFvQ0hYRUN0LWQ2REpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHvBggrBgEFBQcBBwEB/wSB3zCB3DCB2QQCAAEwgdIDBADA
JCUDBADARwUDBADARygDBADAR2EDBADAR54DBADAeWUDBADAeawDBADAecADBADA
pUEDBADApVYDBADAsKEDBADBtD0DBADBtQADBADBtbsDBADBtwMDBAHBt0QDBADB
t08DBAHBt1wDBADBt2gDBADBt3YDBAHB6kQDBAHB6twDBADB6u0DBADCDoEDBADC
DtQDBAHCRDgDBADCRGMDBADCRH4DBADCRxsDBADCR1MDBAHCR4wDBAPCR/gDBADC
ZzIDBAHChGwDBAHChK4wDQYJKoZIhvcNAQELBQADggEBAEzmSlBqcEXrWhBPH+Hu
CbjLFAbatQF1ejdBMVcfKp84h/ueFdlX509uChj/6v/zqSY0B06UnnB8LOAz5I9U
aJLf+pZKOReCeKwwEDMZq3yhKhvLn83bbn/KWJ2fGFRUS2/VdgQePxJCJDK/gvJm
0UZHpTxu6iwVni02eSYwUUvMKVt8v7978/wWvu8fwaVyEE96SvFHPuhPd1qJB+WI
mqaH63j3Rni/WZ2vbHu2fGzYczxOvHko8wn8GXCTEHuFvXf9WqxSq7xmft9ty9DQ
fM6hoW6xd3Nj46yviiBqGA9V/PAtL0UHeTbNNggFxFf2UMR07X66KjA5e1NtGwr+
mYI=
-----END CERTIFICATE-----
Generated at Fri Apr 26 09:43:32 2024 by rpki-client on console-ams.rpki-client.org