Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/I3aChAKmJqpvc3g1SSwEDax2rPg.roa
File: I3aChAKmJqpvc3g1SSwEDax2rPg.roa (raw, json)
Hash identifier: x2e2lL5aTKw0LP2h3oIno02RmbQkij+5eWAwWau484M=
Subject key identifier: 23:76:82:84:02:A6:26:AA:6F:73:78:35:49:2C:04:0D:AC:76:AC:F8
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018FE1A9BA73103616699227414CF273047C
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/I3aChAKmJqpvc3g1SSwEDax2rPg.roa
Signing time: Tue 04 Jun 2024 05:12:27 +0000
ROA not before: Tue 04 Jun 2024 05:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203
IP address blocks: 45.94.14.0/24 maxlen: 24
45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.76.0/24 maxlen: 24
212.26.78.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 25
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 25
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 24
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 25
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.192.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.207.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
2001:1497:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e1:a9:ba:73:10:36:16:69:92:27:41:4c:f2:73:04:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Jun 4 05:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2376828402a626aa6f737835492c040dac76acf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5e:6d:ed:85:60:92:d1:df:a5:bc:87:2f:55:
2d:36:0a:d0:3f:29:c2:0c:dd:e6:a8:f5:bd:40:90:
f1:07:4a:b8:76:f5:bb:3e:0a:8c:c9:0f:17:fc:b7:
4f:20:de:e2:a8:a9:bc:31:ec:e1:bd:b2:11:ed:a1:
ef:e3:6e:70:20:f3:02:93:11:88:41:26:01:37:1d:
46:38:ce:2d:a5:de:78:34:d3:51:3b:ae:19:7b:a7:
62:67:d6:ad:10:86:89:c3:98:50:e5:32:bf:fa:54:
92:e4:b3:c3:49:3e:ca:bb:f6:27:17:c3:0a:af:97:
4d:38:aa:e6:d7:43:d7:72:f1:13:7a:a2:0d:b2:d5:
f6:0d:b9:84:b4:a3:09:29:b1:04:f1:5b:8a:8c:e4:
48:2a:2c:54:b5:8c:64:75:93:c3:76:b1:03:83:cb:
18:67:b8:5c:ca:3c:c3:37:a0:bb:b4:7c:88:31:27:
15:fc:49:f9:55:9b:93:27:44:97:0c:f3:c8:3f:52:
e0:83:cd:79:a4:24:c8:55:e3:35:e9:f5:ac:d6:86:
be:b6:b9:29:f3:05:69:b8:16:e0:47:ff:11:52:a0:
ba:c1:ba:3b:f0:41:6e:9c:20:b0:ae:31:87:0a:54:
ed:64:a6:ef:5c:18:3a:7f:db:c8:7c:7a:18:7b:07:
c8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:76:82:84:02:A6:26:AA:6F:73:78:35:49:2C:04:0D:AC:76:AC:F8
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/I3aChAKmJqpvc3g1SSwEDax2rPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/47
2001:1490:103::/48
2001:1490:106::/47
2001:1490:110::/47
2001:1490:113::/48
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
27:28:2f:67:71:a7:ae:b5:03:71:0a:69:8d:b3:f4:ef:b3:a8:
64:b1:73:7e:73:c3:43:57:16:6d:e8:87:71:d6:ad:68:5a:da:
06:6e:93:67:08:09:cb:d0:43:bc:3a:61:dd:2a:22:99:18:2f:
7f:ca:85:d7:70:85:51:50:24:ef:a2:62:72:70:b2:47:7e:31:
fd:15:9f:b0:d0:19:e5:17:18:be:7e:8a:bf:de:86:71:74:9c:
fb:8c:d2:3b:6b:cb:fc:ec:9c:b8:d3:ed:2e:3c:83:d6:03:e4:
61:25:71:1b:89:48:ec:f7:18:72:bb:b2:83:47:b1:1e:3e:eb:
27:8f:5a:7f:b4:63:19:10:79:7f:96:05:65:fc:37:bf:d8:46:
70:94:08:69:5d:00:87:8c:be:99:6f:d3:84:da:98:b0:70:45:
47:6e:fa:f2:20:95:75:5b:55:05:57:6a:59:4e:99:00:a5:37:
fa:da:1e:c1:77:c5:c0:e3:1f:27:d3:b4:29:cf:71:77:45:2f:
7a:5e:31:94:d1:5c:28:cd:5d:31:54:f4:6d:83:0d:68:6e:95:
8c:9a:51:8d:65:80:70:77:76:b1:a2:b3:5a:a9:ee:ae:29:ab:
b9:9f:01:f7:c6:24:fe:9d:54:88:c4:ee:e5:31:61:c2:ec:cc:
93:56:d2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 20:00:55 2024 by rpki-client on console-ams.rpki-client.org