Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/v1SmmpFPf_eHg5wmcKcMZFKxB5M.roa
File: v1SmmpFPf_eHg5wmcKcMZFKxB5M.roa (raw, json)
Hash identifier: INnR+YKsPVskOyORpdBKL1kPwCEOuQllSTT7/Xi04Y0=
Subject key identifier: BF:54:A6:9A:91:4F:7F:F7:87:83:9C:26:70:A7:0C:64:52:B1:07:93
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018E3BF217D7B33F9419A32E327EF1779F75
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/v1SmmpFPf_eHg5wmcKcMZFKxB5M.roa
Signing time: Thu 14 Mar 2024 07:51:45 +0000
ROA not before: Thu 14 Mar 2024 07:51:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 46.3.8.0/22 maxlen: 22
46.3.28.0/23 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.120.0/21 maxlen: 24
46.3.134.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.184.0/22 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.206.0/23 maxlen: 24
46.3.208.0/22 maxlen: 24
46.3.212.0/22 maxlen: 24
46.3.228.0/23 maxlen: 24
46.3.236.0/23 maxlen: 24
46.3.243.0/24 maxlen: 24
46.3.244.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.232.0.0/22 maxlen: 24
46.232.16.0/23 maxlen: 24
46.232.18.0/23 maxlen: 24
46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.116.0/23 maxlen: 24
46.232.118.0/23 maxlen: 24
46.232.124.0/23 maxlen: 24
46.232.126.0/23 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.196.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 04:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:f2:17:d7:b3:3f:94:19:a3:2e:32:7e:f1:77:9f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 14 07:51:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf54a69a914f7ff787839c2670a70c6452b10793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:be:63:86:0d:2a:e6:31:ac:55:62:a5:48:aa:
65:8c:87:d2:6f:18:af:1a:5a:d0:47:2d:70:96:73:
38:87:16:1b:b4:f7:d9:88:4b:99:80:fe:d0:84:73:
ed:90:8c:eb:11:fa:02:0a:4a:9d:28:f7:61:39:df:
74:07:c7:54:d4:c0:e1:ed:ed:7a:40:b7:9c:bc:35:
1b:18:43:22:a9:58:69:fb:af:02:f2:b6:47:d8:cb:
3a:63:54:2f:02:b9:03:13:d2:b0:17:1f:16:80:a7:
40:16:9b:12:45:c3:2e:5f:d1:15:bb:db:03:2d:a0:
75:20:2c:6b:94:67:b3:6d:2d:3c:63:c3:26:c9:cf:
c3:8f:6f:5e:d1:b7:6c:28:eb:ae:7f:27:8a:d5:42:
e7:bf:10:2d:e8:85:79:35:93:46:f9:62:2e:73:53:
83:31:f2:0e:3a:c4:2c:26:9d:8c:d5:1f:31:61:22:
99:b8:53:d8:6c:bf:24:cc:59:34:9d:07:81:23:63:
ee:4e:9f:44:b5:f8:d5:d0:ab:4d:74:5e:80:d7:3a:
18:49:03:c8:5f:98:b7:63:6d:8e:49:4a:27:05:1e:
b8:33:e7:c2:c7:28:d5:3d:6c:f5:43:62:38:15:46:
d4:7a:53:34:e6:c4:3f:02:35:cb:ef:26:ce:f2:bf:
62:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:54:A6:9A:91:4F:7F:F7:87:83:9C:26:70:A7:0C:64:52:B1:07:93
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/v1SmmpFPf_eHg5wmcKcMZFKxB5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.8.0/22
46.3.28.0/23
46.3.89.0-46.3.91.255
46.3.120.0/21
46.3.134.0/24
46.3.160.0/22
46.3.184.0-46.3.188.255
46.3.201.0/24
46.3.206.0-46.3.215.255
46.3.228.0/23
46.3.236.0/23
46.3.243.0-46.3.244.255
46.3.246.0/24
46.3.248.0/24
46.3.251.0/24
46.3.253.0-46.3.255.255
46.232.0.0/22
46.232.16.0/22
46.232.64.0-46.232.66.255
46.232.68.0/24
46.232.116.0/22
46.232.124.0/22
149.126.193.0/24
149.126.196.0/24
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0/23
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f3:34:1e:e0:c5:19:00:be:d2:30:0f:78:85:6a:9e:f0:d0:
0c:98:52:1f:fc:23:cd:df:bf:66:14:45:c1:1c:02:b8:76:d6:
e0:fd:28:98:cd:74:5b:c9:1e:88:90:94:d8:11:18:fe:12:aa:
1c:71:8d:4d:0d:9a:0c:7b:29:8f:67:b3:13:3a:56:47:6c:9a:
89:b6:23:0e:f7:8c:e0:bc:71:42:85:1d:ca:f0:fb:b7:87:da:
fb:33:1b:85:8b:bf:b1:15:59:49:3c:f0:96:99:58:55:ac:10:
ac:9b:a6:d1:17:cf:c0:76:2c:f6:00:11:88:d8:92:47:d2:36:
68:5f:fb:33:da:11:27:be:17:6c:d2:98:b0:b0:70:99:3b:7b:
9d:55:cb:82:98:8d:01:76:57:de:3d:b4:8f:0b:ca:d9:6b:c9:
6b:cb:03:a4:ae:53:32:a5:90:ab:9d:62:64:4c:87:26:2f:e7:
ba:fa:2f:80:f1:3e:12:8d:f2:ac:b2:96:39:7f:40:64:d8:d0:
46:f5:a5:45:28:34:37:bd:74:c4:43:c2:4b:26:00:df:64:19:
d7:e5:e9:07:3f:03:50:04:fd:cb:d2:3c:10:29:76:7f:0c:e2:
9e:cd:43:d0:09:51:1f:f1:9c:f0:dc:50:1b:29:c3:42:3c:3b:
a0:95:17:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 14:06:05 2024 by rpki-client on console-fra.rpki-client.org