Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa
File: Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa (raw, json)
Hash identifier: 1KG2ClcrCy5S6p473cJ50vtzpWj4KLcnjmsCA3I7WII=
Subject key identifier: 4E:1E:57:7A:1F:27:5E:20:6C:5D:CE:8F:7E:F9:9B:7B:A7:A2:93:E3
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 018F7EFCB866191F93A738B32A7EF8C83B37
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa
Signing time: Thu 16 May 2024 01:20:42 +0000
ROA not before: Thu 16 May 2024 01:20:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 5.226.136.0/21 maxlen: 21
31.14.102.0/24 maxlen: 24
31.14.254.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
46.102.155.0/24 maxlen: 24
46.247.142.0/23 maxlen: 24
46.247.143.0/24 maxlen: 24
64.239.236.0/22 maxlen: 22
77.81.124.0/22 maxlen: 22
77.81.191.0/24 maxlen: 24
79.139.84.0/22 maxlen: 22
80.240.108.0/23 maxlen: 23
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.211.0/24 maxlen: 24
81.19.215.0/24 maxlen: 24
81.19.216.0/24 maxlen: 24
82.97.192.0/23 maxlen: 23
84.247.0.0/24 maxlen: 24
84.247.40.0/23 maxlen: 24
84.247.42.0/23 maxlen: 24
85.204.70.0/24 maxlen: 24
86.104.20.0/22 maxlen: 22
86.104.20.0/23 maxlen: 24
86.104.22.0/23 maxlen: 24
86.104.248.0/22 maxlen: 22
86.104.248.0/24 maxlen: 24
86.104.249.0/24 maxlen: 24
86.106.89.0/24 maxlen: 24
86.106.112.0/24 maxlen: 24
86.106.135.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.107.241.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
89.21.67.0/24 maxlen: 24
89.32.127.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
89.34.96.0/24 maxlen: 24
89.34.97.0/24 maxlen: 24
89.35.25.0/24 maxlen: 24
89.35.28.0/22 maxlen: 22
89.37.64.0/22 maxlen: 22
89.37.172.0/22 maxlen: 22
89.37.173.0/24 maxlen: 24
89.38.68.0/23 maxlen: 23
89.40.212.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.248.0/22 maxlen: 22
93.114.83.0/24 maxlen: 24
93.114.129.0/24 maxlen: 24
93.118.40.0/22 maxlen: 22
94.177.17.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
134.255.243.0/24 maxlen: 24
176.223.172.0/22 maxlen: 22
176.223.172.0/23 maxlen: 24
176.223.174.0/23 maxlen: 24
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.16.204.0/22 maxlen: 22
185.38.148.0/22 maxlen: 22
185.44.76.0/22 maxlen: 22
185.61.156.0/22 maxlen: 22
185.61.156.0/24 maxlen: 24
185.61.157.0/24 maxlen: 24
185.114.224.0/24 maxlen: 24
185.121.136.0/22 maxlen: 22
185.125.204.0/22 maxlen: 22
185.134.20.0/22 maxlen: 22
185.137.36.0/22 maxlen: 22
185.137.36.0/24 maxlen: 24
185.158.240.0/22 maxlen: 24
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
185.200.204.0/22 maxlen: 22
185.216.144.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
185.223.235.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.60.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
188.241.246.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
193.32.208.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
195.20.108.0/23 maxlen: 23
195.20.108.0/24 maxlen: 24
195.140.212.0/22 maxlen: 22
195.206.165.0/24 maxlen: 24
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
195.234.124.0/23 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
212.237.224.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
217.146.92.0/24 maxlen: 24
2a00:1a30::/32 maxlen: 32
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:34::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 07:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7e:fc:b8:66:19:1f:93:a7:38:b3:2a:7e:f8:c8:3b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: May 16 01:20:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e1e577a1f275e206c5dce8f7ef99b7ba7a293e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:08:5d:71:97:e5:81:6d:ce:c9:ac:e6:c6:95:
0f:72:3d:1b:59:d3:0c:88:0a:35:7c:1f:4d:e2:00:
b6:8f:22:79:18:9e:d2:64:cd:f6:2e:40:f8:c7:8c:
bf:79:19:b1:29:60:74:d0:c4:2e:e7:b8:a4:99:62:
8c:79:dc:7a:d0:4c:31:d9:33:7e:4d:c8:92:a9:c6:
53:e7:dd:32:f1:1c:e5:de:ce:8f:65:a5:56:66:e2:
19:50:eb:a9:d0:fa:87:d4:66:da:40:04:71:eb:fc:
e1:da:94:65:aa:ea:c7:c4:59:29:b6:ab:9e:b8:ad:
67:36:34:3d:71:e3:0e:54:06:32:a8:3d:94:51:98:
07:97:e3:07:4e:37:6e:35:57:5e:34:18:f8:55:fe:
c4:e3:da:e0:f4:55:ef:9b:7a:b2:50:50:55:54:84:
7e:d3:34:88:07:b4:1e:f8:3a:af:2f:3a:22:12:14:
01:83:77:99:1f:b9:43:87:03:1d:7b:dd:09:96:b5:
2c:68:d7:4e:3f:d4:0f:9a:1d:6a:15:ff:5b:ba:85:
c9:a5:f5:b0:b8:f6:1f:0e:0b:99:91:3d:70:7c:92:
1b:57:79:e5:c3:49:99:1d:f9:06:2f:db:88:c1:de:
83:a7:4f:39:1b:70:30:e6:49:48:31:ac:27:74:c0:
f3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1E:57:7A:1F:27:5E:20:6C:5D:CE:8F:7E:F9:9B:7B:A7:A2:93:E3
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
31.14.254.0/24
37.10.113.0-37.10.114.255
46.102.155.0/24
46.247.142.0/23
64.239.236.0/22
77.81.124.0/22
77.81.191.0/24
79.139.84.0/22
80.240.108.0/23
81.19.208.0/20
82.97.192.0/23
84.247.0.0/24
84.247.40.0/22
85.204.70.0/24
86.104.20.0/22
86.104.248.0/22
86.106.89.0/24
86.106.112.0/24
86.106.135.0/24
86.106.157.0-86.106.158.255
86.107.241.0/24
89.21.64.0/22
89.32.127.0/24
89.34.96.0/22
89.35.25.0/24
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
89.46.248.0/22
93.114.83.0/24
93.114.129.0/24
93.118.40.0/22
94.177.17.0/24
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
176.223.172.0/22
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.200.204.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
188.241.246.0/24
193.32.208.0/22
193.176.28.0/22
194.50.234.0/23
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
212.237.224.0/22
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
6b:9a:d0:3b:2d:66:12:53:fb:24:91:e3:54:15:bb:b5:9e:be:
27:d6:03:8e:44:90:d0:64:38:84:db:e5:c7:e5:00:d1:f3:3c:
a2:09:40:97:b5:a1:1c:5b:cb:db:74:e0:e5:77:2b:11:8c:69:
17:ed:8e:d4:c7:46:6f:b2:fb:01:4e:17:9d:0e:ed:63:35:ec:
e4:e0:94:b9:ba:11:6b:a5:ee:fb:b0:5c:53:f5:d1:2c:0b:e5:
fa:b6:4b:6a:f2:5f:7d:a3:d5:57:90:2e:e2:b9:c9:8a:ce:ae:
e4:26:dc:ee:ab:39:ce:91:0d:66:c7:3c:f0:6c:7b:eb:f1:1f:
16:20:ec:4d:7f:00:0f:69:9a:f5:85:a5:88:1e:14:e3:d0:05:
0b:6d:d5:a8:87:47:d6:11:2e:01:81:bd:54:32:e9:2a:34:0b:
65:12:75:88:3a:ea:72:9f:fd:ca:1b:de:f4:d3:a3:de:ed:72:
60:6b:65:14:27:a1:f6:80:a8:66:3b:e5:bb:1c:48:41:b4:db:
da:8a:3b:29:bb:14:cd:60:88:c4:4e:35:27:cb:1d:68:85:fd:
0f:e4:11:67:33:7c:23:01:fb:4d:84:97:4b:e7:7e:10:d7:f6:
5e:a5:2c:d9:44:aa:6f:a3:53:a6:4d:56:39:ae:2d:5f:0f:1d:
79:19:0c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 11:33:03 2024 by rpki-client on console-ams.rpki-client.org