Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/gCb1QCZSdIljUgTGu9JuRns8lQM.roa
File: gCb1QCZSdIljUgTGu9JuRns8lQM.roa (raw, json)
Hash identifier: EaJ49kHdRAsXt2SExi30zIV73EjqtW69Yor37afE3i4=
Subject key identifier: 80:26:F5:40:26:52:74:89:63:52:04:C6:BB:D2:6E:46:7B:3C:95:03
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 01928FC25C5D78C3D12868AB5C497920E759
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/gCb1QCZSdIljUgTGu9JuRns8lQM.roa
Signing time: Tue 15 Oct 2024 10:38:52 +0000
ROA not before: Tue 15 Oct 2024 10:38:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8895
IP address blocks: 45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 25
212.26.37.0/24 maxlen: 25
212.26.38.0/24 maxlen: 25
212.26.39.0/24 maxlen: 25
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.52.0/24 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.56.0/24 maxlen: 24
212.26.58.0/24 maxlen: 24
212.26.60.0/24 maxlen: 24
212.26.63.0/24 maxlen: 24
212.26.64.0/24 maxlen: 24
212.26.65.0/24 maxlen: 24
212.26.68.0/23 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.72.0/24 maxlen: 25
212.26.74.0/24 maxlen: 25
212.26.78.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 24
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.132.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.147.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 24
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 25
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 24
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/32 maxlen: 32
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:112::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
2001:1490:114::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8f:c2:5c:5d:78:c3:d1:28:68:ab:5c:49:79:20:e7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Oct 15 10:38:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8026f54026527489635204c6bbd26e467b3c9503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0f:e9:1b:b5:16:18:8e:5d:57:61:fc:41:d1:
77:db:11:15:0f:ad:f2:c3:af:de:22:2d:30:49:05:
f9:d2:ec:8c:d5:3b:64:2f:32:5c:51:43:93:17:cd:
75:9a:29:35:af:7b:c6:2b:a2:d6:e0:ce:f5:30:67:
a5:22:1c:73:38:92:82:6b:53:f4:9f:02:33:62:99:
81:73:a0:56:5e:a3:0a:29:f1:a4:76:a6:dd:c2:00:
25:50:d4:e9:19:8c:8b:0b:5f:b9:ca:42:2c:4e:fd:
6b:f4:d7:8e:de:7f:73:96:4d:a3:9a:49:00:c7:f3:
5e:0a:ec:57:7b:d3:37:48:73:fa:05:58:20:b0:a0:
d5:51:7d:1e:68:61:d9:eb:ac:3f:2b:ec:c6:c5:f7:
ae:86:6e:5f:48:6a:1c:4a:a7:88:c9:bb:5c:63:e5:
cf:9d:92:5a:3c:bd:0f:ce:b9:ad:ca:bd:6c:a9:c6:
a1:5f:49:09:5c:98:33:0b:d8:0d:07:d1:ad:5d:92:
73:17:09:5f:28:9b:6a:58:86:5c:39:c6:a6:17:31:
8a:6c:3b:65:8d:e0:4c:3f:e1:17:39:60:67:4f:0a:
4f:30:90:81:0f:e4:17:f7:d8:09:d1:cd:7e:6a:73:
aa:08:ae:fc:82:40:f0:fc:cf:bf:c8:72:25:b6:cb:
6a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:26:F5:40:26:52:74:89:63:52:04:C6:BB:D2:6E:46:7B:3C:95:03
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/gCb1QCZSdIljUgTGu9JuRns8lQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.15.0/24
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/32
Signature Algorithm: sha256WithRSAEncryption
72:82:c9:3a:2a:db:51:a4:81:1a:03:44:bd:cf:df:b6:4d:47:
80:c6:6f:8e:13:35:45:d9:5e:d4:d4:c6:36:04:ff:f8:46:1d:
6a:2e:27:00:7e:2c:9b:38:e4:b3:89:8b:de:d4:f8:8c:f7:c7:
47:a6:d9:1a:96:5b:85:1a:b6:ff:bb:a5:07:71:62:25:fc:a6:
40:b7:1c:35:3d:0d:fc:ff:cd:9e:27:a1:d5:65:c9:9b:07:ee:
ff:aa:59:d0:2d:e0:e6:dd:a3:8c:f1:3d:cf:67:30:d2:2b:ea:
3b:8c:7e:eb:15:2d:03:73:92:b7:24:a0:b2:4b:0c:cb:eb:27:
ac:f6:4d:e5:80:19:e2:3d:d6:71:12:d4:55:1e:89:c2:7b:2f:
20:cb:4b:7f:00:07:f0:66:e0:e2:a8:05:bc:53:f6:ae:25:cc:
a5:bd:51:3b:a7:20:6f:cf:e8:d5:95:8f:05:24:f0:57:90:b4:
86:df:63:30:b5:9a:a8:a1:94:08:06:dc:bb:dc:df:af:d8:04:
c9:ab:6f:51:b9:17:f0:2b:3c:01:8c:49:da:cc:8a:c3:08:35:
1a:e3:76:5f:8f:c0:51:81:c6:13:2e:2f:e1:81:36:9b:c1:25:
5b:6a:61:56:c7:4f:65:67:44:b0:cb:f1:72:4d:1c:f4:d3:fb:
bc:e2:38:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:20:35 2024 by rpki-client on console-ams.rpki-client.org