Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V_EtyHwPOWPa4lcqAKMyyZ66A3g.roa
File: V_EtyHwPOWPa4lcqAKMyyZ66A3g.roa (raw, json)
Hash identifier: uuArw7FqMFjAq9tlehz21irUzJmWruf9irykbw4QVQY=
Subject key identifier: 57:F1:2D:C8:7C:0F:39:63:DA:E2:57:2A:00:A3:32:C9:9E:BA:03:78
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018DA126F7A8675FEDCD728E08C1F4F73B7B
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V_EtyHwPOWPa4lcqAKMyyZ66A3g.roa
Signing time: Tue 13 Feb 2024 06:28:21 +0000
ROA not before: Tue 13 Feb 2024 06:28:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49100
IP address blocks: 5.202.0.0/16 maxlen: 24
5.202.76.0/24 maxlen: 24
5.202.82.0/24 maxlen: 24
5.202.100.0/24 maxlen: 24
5.202.110.0/24 maxlen: 24
5.202.166.0/23 maxlen: 23
77.237.160.0/19 maxlen: 19
85.9.64.0/18 maxlen: 18
85.9.68.0/24 maxlen: 24
85.9.76.0/24 maxlen: 24
91.209.242.0/24 maxlen: 24
95.215.160.0/22 maxlen: 22
109.125.160.0/19 maxlen: 19
109.125.176.0/22 maxlen: 22
109.125.182.0/23 maxlen: 23
109.125.184.0/22 maxlen: 22
109.125.189.0/24 maxlen: 24
109.125.190.0/24 maxlen: 24
109.125.191.0/24 maxlen: 24
109.232.5.0/24 maxlen: 24
109.232.6.0/24 maxlen: 24
109.232.7.0/24 maxlen: 24
185.72.24.0/22 maxlen: 22
185.72.27.0/24 maxlen: 24
185.83.88.0/24 maxlen: 24
185.83.89.0/24 maxlen: 24
185.83.90.0/23 maxlen: 23
185.103.128.0/22 maxlen: 22
185.125.244.0/22 maxlen: 22
185.125.248.0/21 maxlen: 21
185.125.255.0/24 maxlen: 24
185.126.0.0/20 maxlen: 20
185.126.16.0/22 maxlen: 22
185.126.16.0/23 maxlen: 23
185.126.40.0/22 maxlen: 22
185.131.28.0/22 maxlen: 22
185.131.30.0/23 maxlen: 23
185.155.8.0/21 maxlen: 21
185.169.20.0/22 maxlen: 22
185.169.36.0/22 maxlen: 22
185.169.37.0/24 maxlen: 24
185.177.232.0/22 maxlen: 22
185.180.52.0/22 maxlen: 22
188.253.32.0/19 maxlen: 24
188.253.64.0/19 maxlen: 24
193.32.80.0/23 maxlen: 23
194.33.122.0/23 maxlen: 23
2001:4c88::/32 maxlen: 32
2a02:cd80::/29 maxlen: 29
2a07:8f00::/29 maxlen: 29
2a07:8f40::/29 maxlen: 29
2a0a:4e00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft
rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a1:26:f7:a8:67:5f:ed:cd:72:8e:08:c1:f4:f7:3b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Feb 13 06:28:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57f12dc87c0f3963dae2572a00a332c99eba0378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:61:a6:e0:77:96:2e:1d:75:5e:7d:5c:32:34:
a0:55:ad:04:55:f8:a9:99:ce:83:ea:8c:40:08:8c:
e0:62:ac:b0:f2:27:0d:58:24:99:44:9e:97:af:56:
cf:12:a3:05:33:6a:6e:90:df:f0:a7:4e:41:e6:40:
b2:d8:4b:f3:35:03:b2:33:10:db:21:2c:c6:66:4b:
23:ba:b2:a0:93:51:64:18:6d:eb:37:0b:ed:e0:bf:
3f:eb:3d:94:ec:ee:42:7f:c3:46:8a:d9:e0:60:20:
2f:82:20:69:22:39:12:a9:32:41:d0:f7:db:5f:d0:
24:b1:d1:b1:7c:41:4b:9e:6d:58:17:db:4e:ae:c5:
86:2c:1a:75:25:86:e8:e1:67:d1:53:8c:d4:60:aa:
8c:50:dc:a1:a8:b2:8b:aa:78:b7:4e:6f:5a:57:2e:
40:3a:32:b5:5f:8a:f7:73:09:6c:44:c5:a4:42:a5:
ba:21:f2:44:eb:5a:46:55:9a:85:62:5b:69:f9:a1:
66:82:43:6c:27:83:ac:7e:99:cc:ba:d3:59:c4:a2:
60:aa:fa:91:fc:4c:46:a8:2a:de:f5:27:0b:84:58:
62:67:c3:92:01:b9:d3:a5:63:51:82:d5:e3:72:cc:
bc:dc:10:b7:96:f2:4a:59:3e:6f:d6:f0:c4:32:b0:
6d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F1:2D:C8:7C:0F:39:63:DA:E2:57:2A:00:A3:32:C9:9E:BA:03:78
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/V_EtyHwPOWPa4lcqAKMyyZ66A3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.0.0/16
77.237.160.0/19
85.9.64.0/18
91.209.242.0/24
95.215.160.0/22
109.125.160.0/19
109.232.5.0-109.232.7.255
185.72.24.0/22
185.83.88.0/22
185.103.128.0/22
185.125.244.0-185.126.19.255
185.126.40.0/22
185.131.28.0/22
185.155.8.0/21
185.169.20.0/22
185.169.36.0/22
185.177.232.0/22
185.180.52.0/22
188.253.32.0-188.253.95.255
193.32.80.0/23
194.33.122.0/23
IPv6:
2001:4c88::/32
2a02:cd80::/29
2a07:8f00::/29
2a07:8f40::/29
2a0a:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
86:be:45:35:b6:a2:d4:8f:ad:6f:57:41:24:1c:fe:5f:b2:9b:
26:09:8c:a9:f1:6b:5b:5f:d7:c8:d7:31:30:77:3e:49:15:59:
11:d8:c4:85:0c:74:58:c6:29:15:36:ba:6d:84:b1:97:91:77:
c4:78:4c:1e:0a:cc:09:bd:e0:04:38:1f:76:df:0f:f6:1e:88:
63:a7:07:af:51:4b:eb:5a:d6:f6:3e:8c:73:ca:f7:3c:df:5a:
e7:a0:b9:94:8f:e4:38:64:42:a7:ed:4b:2d:26:4c:6b:d0:c4:
f5:ce:c2:af:14:d8:2c:42:b1:80:39:60:df:83:86:d1:ea:8f:
22:de:f4:7e:5f:03:ec:4b:33:bd:30:5c:4b:52:73:eb:17:a5:
2d:eb:3e:e3:fc:64:40:fe:cd:ac:89:37:67:8d:a4:52:59:22:
be:78:71:af:4f:4c:7b:c4:d4:39:40:4c:c1:c8:ed:1c:96:d2:
7b:24:6e:ac:8e:81:79:77:0e:4f:08:22:93:f5:b4:63:a7:a7:
98:d4:87:67:32:5e:21:e6:c0:53:0a:18:01:a6:03:7d:51:45:
0e:10:09:0c:56:3e:93:1d:8a:91:d5:31:8e:ea:90:69:b2:5e:
39:6e:32:b4:e4:28:36:31:72:1c:72:0b:35:64:00:f1:8b:a0:
4e:5e:94:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 15:04:48 2024 by rpki-client on console-fra.rpki-client.org