Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/PoOlR04IRKMh98HEPlaBeS0jkgQ.roa
File: PoOlR04IRKMh98HEPlaBeS0jkgQ.roa (raw, json)
Hash identifier: mlvaodnBOfTN3SvnJyF6ZSO8oblYvqK+ePRLklpJHus=
Subject key identifier: 3E:83:A5:47:4E:08:44:A3:21:F7:C1:C4:3E:56:81:79:2D:23:92:04
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018FE1A9BBA239A6F6AF8EAD21FF14461724
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/PoOlR04IRKMh98HEPlaBeS0jkgQ.roa
Signing time: Tue 04 Jun 2024 05:12:28 +0000
ROA not before: Tue 04 Jun 2024 05:12:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8895
IP address blocks: 45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 25
212.26.39.0/24 maxlen: 25
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.52.0/24 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.56.0/24 maxlen: 24
212.26.58.0/24 maxlen: 24
212.26.60.0/24 maxlen: 24
212.26.63.0/24 maxlen: 24
212.26.64.0/24 maxlen: 24
212.26.65.0/24 maxlen: 24
212.26.68.0/23 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.72.0/24 maxlen: 24
212.26.74.0/24 maxlen: 25
212.26.78.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 25
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 24
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 25
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 24
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.207.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/32 maxlen: 32
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:112::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e1:a9:bb:a2:39:a6:f6:af:8e:ad:21:ff:14:46:17:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Jun 4 05:12:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e83a5474e0844a321f7c1c43e5681792d239204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:47:0d:83:53:2f:b0:e4:55:34:73:c8:01:96:
3c:6d:e2:76:95:78:55:48:54:35:b8:e7:9a:31:bb:
70:44:25:14:e6:07:16:2b:e1:c3:ec:24:c3:4f:73:
40:80:cd:e4:03:7c:e7:30:49:16:12:55:85:4b:13:
bd:89:6d:ef:55:1e:08:3b:11:9b:f1:d6:fb:db:65:
95:b0:24:43:d5:89:c3:67:03:1e:f8:a6:6a:a7:9b:
dd:7d:3c:9a:bd:03:67:74:3c:62:26:67:c2:41:5f:
25:f9:f4:20:a3:c8:13:41:51:c9:b3:bf:38:86:88:
ac:6f:91:f4:26:01:03:a1:87:1c:4f:62:c4:75:ef:
46:79:7b:fd:e5:1e:c3:3e:a8:8a:f3:68:b3:d3:2a:
85:49:db:3b:5a:0f:fd:cd:cf:b5:29:a0:76:5f:f8:
cb:9c:fc:06:25:3a:a7:9f:69:e3:c2:60:c9:a8:72:
c9:4e:a8:00:32:b5:db:11:16:ea:47:ff:61:98:e6:
3c:1d:47:2b:dd:3a:e0:bf:df:29:13:53:0d:a3:dc:
ae:83:ee:d7:b5:5d:a6:0e:bc:c4:81:4f:6e:f3:45:
81:b2:ba:4d:9c:28:a2:dd:aa:3b:9b:f4:df:30:88:
a7:9e:69:63:60:c0:c5:fc:50:52:20:7e:d6:2e:95:
c7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:83:A5:47:4E:08:44:A3:21:F7:C1:C4:3E:56:81:79:2D:23:92:04
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/PoOlR04IRKMh98HEPlaBeS0jkgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.15.0/24
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/32
Signature Algorithm: sha256WithRSAEncryption
4b:91:49:e4:ce:6b:12:af:a9:7f:5d:b3:dd:f8:8c:f8:a2:e4:
75:bd:45:15:67:cc:c9:f0:ef:e7:91:85:36:65:6a:85:64:83:
7d:8b:b2:31:30:0d:63:17:16:c0:c8:09:8f:74:07:30:db:20:
c4:d8:5c:da:cf:62:a8:d7:7f:cd:40:83:3e:72:3e:44:f2:fb:
ee:26:b0:50:24:bc:09:6f:e3:0f:7e:f0:00:d7:b3:ba:65:69:
de:e8:c4:2c:c7:84:17:1b:fc:26:14:7d:0e:b0:00:06:75:12:
de:62:4f:6b:8c:3d:b4:2f:1f:ee:3a:d6:83:cb:a1:f2:0a:c0:
38:92:7a:d9:4b:2d:f9:46:c6:14:57:14:71:3e:e3:39:69:1d:
9d:28:6f:ce:da:c1:ce:1d:1f:17:9e:f8:59:d5:40:2d:01:0c:
b8:0c:0d:fc:7e:89:25:0b:80:ce:f6:af:58:60:37:2b:1e:3e:
90:a3:af:8b:24:98:a6:da:72:9b:57:38:07:60:21:01:bf:44:
0d:b8:22:d0:03:75:2e:9c:90:77:6b:8e:3e:a2:48:6d:4a:8c:
39:58:2a:1e:39:26:7b:57:f5:0a:1e:84:a9:19:8d:ad:63:12:
1d:9f:4f:6f:eb:ec:89:4e:b1:3d:04:58:e9:be:66:42:fe:36:
1d:52:a8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 20:00:55 2024 by rpki-client on console-ams.rpki-client.org