Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Sl2Gj0Y6livX_zHEp2GR5VnRFu8.roa
File: Sl2Gj0Y6livX_zHEp2GR5VnRFu8.roa (raw, json)
Hash identifier: L8VSAlPAC3PweXpB2Dxpca7zoX7FAr38i8kmuj6/flk=
Subject key identifier: 4A:5D:86:8F:46:3A:96:2B:D7:FF:31:C4:A7:61:91:E5:59:D1:16:EF
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018F58131568DE0136E7A3AE47D6E538A82D
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Sl2Gj0Y6livX_zHEp2GR5VnRFu8.roa
Signing time: Wed 08 May 2024 11:59:56 +0000
ROA not before: Wed 08 May 2024 11:59:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34758
IP address blocks: 31.6.80.0/20 maxlen: 20
31.6.80.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.87.0/24 maxlen: 24
31.6.88.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
31.6.93.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
45.13.88.0/24 maxlen: 24
45.13.89.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.36.0/24 maxlen: 24
45.93.37.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.96.0/24 maxlen: 24
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.101.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.112.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.115.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
93.93.16.0/21 maxlen: 21
93.93.16.0/24 maxlen: 24
93.93.17.0/24 maxlen: 24
93.93.18.0/24 maxlen: 24
93.93.19.0/24 maxlen: 24
93.93.20.0/24 maxlen: 24
93.93.21.0/24 maxlen: 24
93.93.22.0/24 maxlen: 24
93.93.23.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.136.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.141.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
146.255.160.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.84.0/24 maxlen: 24
185.23.85.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.23.87.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
185.103.80.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.140.0/24 maxlen: 24
185.126.141.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.158.28.0/22 maxlen: 22
185.158.28.0/24 maxlen: 24
185.158.29.0/24 maxlen: 24
185.158.30.0/24 maxlen: 24
185.158.31.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.171.36.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.38.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
195.225.224.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.32.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:13:15:68:de:01:36:e7:a3:ae:47:d6:e5:38:a8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: May 8 11:59:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a5d868f463a962bd7ff31c4a76191e559d116ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0a:14:4e:63:b6:e0:ab:9a:5b:05:f4:9e:94:
cf:da:6b:29:49:d1:86:a1:42:3e:ef:82:0f:5d:7a:
0b:83:f3:b9:eb:53:d7:ea:50:ba:68:c4:fb:56:4a:
bc:f9:0e:e3:2f:76:14:28:30:1a:dd:2e:47:04:5c:
2a:56:bc:5f:ed:69:f5:21:d9:9d:f6:d7:bc:28:a0:
67:20:10:25:e5:ff:c3:48:ac:99:1d:3e:3b:93:a2:
8d:4f:07:9a:c3:67:69:ec:9e:ad:c4:00:e3:c5:32:
97:e8:01:40:f2:b5:07:12:c5:c9:b1:fe:2e:3e:c7:
43:4f:42:55:22:84:e5:46:c8:a6:f6:a8:f8:45:67:
62:f9:95:5d:35:66:b8:6c:8f:9a:65:bd:0d:11:dc:
21:c3:bb:08:51:a0:43:3e:ee:24:34:33:97:78:57:
f9:d4:f8:ef:ae:45:b0:ac:f8:5b:69:a9:9b:37:5b:
8d:21:66:1f:d8:7f:be:04:76:6b:68:f9:67:08:7c:
eb:34:b4:07:55:4e:d7:27:b4:41:2b:07:43:c1:8f:
68:0f:4c:22:c2:c3:83:b1:d1:01:c6:c0:f8:7c:3c:
52:97:20:59:f5:65:3a:87:9d:b9:2a:d6:9c:cd:fc:
ad:5b:3b:0b:af:46:20:d9:f9:a5:6a:91:15:dd:39:
f6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:5D:86:8F:46:3A:96:2B:D7:FF:31:C4:A7:61:91:E5:59:D1:16:EF
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Sl2Gj0Y6livX_zHEp2GR5VnRFu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
93.93.16.0/21
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.158.28.0/22
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
72:5f:2e:f4:23:d0:a7:70:c1:c4:41:57:a5:1c:4b:7c:ec:5d:
9c:8c:b9:e9:9c:9e:17:96:22:58:f7:5c:e2:e3:a1:2e:da:ac:
18:7a:d7:08:cb:03:3a:59:73:b3:7f:ca:85:9e:e1:3f:86:6d:
f7:58:1f:65:a1:86:80:52:af:db:c0:44:50:d0:52:9a:f9:34:
18:13:d2:a6:0b:df:83:e1:99:0d:c9:1c:f1:9e:4d:a8:7f:b4:
42:84:22:de:8e:27:4f:ec:9a:9f:b8:19:87:73:78:7e:cd:b9:
ae:5d:26:62:cf:65:03:13:d1:c8:48:09:da:d7:b4:fd:4a:3f:
04:4e:f2:20:fe:b8:b8:aa:a5:b8:d4:77:a1:29:a4:b9:c2:12:
e3:97:78:4b:c7:df:69:f0:06:da:11:f2:9e:7b:0e:ae:7f:39:
d4:ce:33:02:dd:c1:3d:c6:18:f3:4f:b9:64:d6:c2:67:76:72:
e5:72:ad:6f:71:89:89:0b:ba:3b:55:10:0c:f1:39:2f:bc:76:
d5:d7:4e:0c:c5:40:da:b4:cb:38:3a:e2:30:a6:2f:23:f8:8c:
71:cb:ff:50:f3:4e:90:da:95:ce:14:7a:db:c6:3b:4c:e4:33:
5f:ba:dd:2c:b4:d2:af:8e:a4:32:47:12:87:b6:da:ef:d9:fc:
1b:00:60:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 21:49:41 2024 by rpki-client on console-fra.rpki-client.org