Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/ygRYI8dOrxl0aI50HqUnfBsoSWM.roa
File: ygRYI8dOrxl0aI50HqUnfBsoSWM.roa (raw, json)
Hash identifier: kZdQcJz2/cZ41TCnU08uk+MQ/spToe+WJ8frsXS2Pbc=
Subject key identifier: CA:04:58:23:C7:4E:AF:19:74:68:8E:74:1E:A5:27:7C:1B:28:49:63
Certificate issuer: /CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Certificate serial: 018ECCB34E123DB01CE8D30E65CC5D8FD03A
Authority key identifier: B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/ygRYI8dOrxl0aI50HqUnfBsoSWM.roa
Signing time: Thu 11 Apr 2024 10:28:06 +0000
ROA not before: Thu 11 Apr 2024 10:28:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200590
IP address blocks: 5.188.64.0/22 maxlen: 24
5.188.152.0/22 maxlen: 24
77.240.44.0/22 maxlen: 24
79.143.20.0/22 maxlen: 24
82.115.60.0/24 maxlen: 24
82.115.61.0/24 maxlen: 24
82.115.62.0/24 maxlen: 24
84.252.156.0/22 maxlen: 24
87.255.194.0/23 maxlen: 24
87.255.196.0/22 maxlen: 24
87.255.200.0/23 maxlen: 24
89.223.0.0/24 maxlen: 24
89.223.2.0/24 maxlen: 24
91.147.100.0/22 maxlen: 24
93.190.240.0/22 maxlen: 24
94.126.201.0/24 maxlen: 24
178.238.78.0/23 maxlen: 24
185.97.112.0/22 maxlen: 24
188.94.152.0/23 maxlen: 24
194.76.124.0/22 maxlen: 24
2a06:580::/29 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/sJ__jo_9j459mntm0cxz3DkoHvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/sJ__jo_9j459mntm0cxz3DkoHvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cc:b3:4e:12:3d:b0:1c:e8:d3:0e:65:cc:5d:8f:d0:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Validity
Not Before: Apr 11 10:28:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca045823c74eaf1974688e741ea5277c1b284963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:b7:78:9a:a9:e6:be:7b:a9:c7:31:bf:32:
01:82:4c:6c:64:66:9c:61:45:9a:0e:c6:b6:b9:a0:
7b:e1:53:ee:81:3c:9f:cf:20:14:99:7f:71:f9:3b:
25:26:97:eb:dd:94:29:6a:67:82:57:97:03:43:73:
53:f8:77:47:3b:ba:20:e9:f1:d9:0e:6f:f3:d2:69:
8d:c9:8d:21:c3:2d:44:f2:37:81:53:98:06:9b:49:
a2:ee:c9:00:85:9b:1d:77:55:34:2e:02:c2:62:b2:
9b:4d:c6:ca:29:82:4e:51:96:94:b1:c3:c0:40:71:
68:15:6a:62:6a:77:72:03:2d:db:9e:bd:3c:09:7d:
ba:24:cf:7f:53:5c:62:80:8b:50:ec:70:0f:6a:e9:
a9:6d:fc:eb:d0:d2:52:b8:0b:c9:69:16:71:b1:75:
2a:60:cb:f5:0d:98:8f:2b:db:ef:b4:9a:f5:a9:54:
d2:f2:f4:a2:80:30:25:db:65:84:dd:d3:2d:47:f6:
e0:64:e1:12:16:9d:5a:f7:6d:2b:cd:4a:7e:a6:87:
24:73:a5:b8:b1:12:75:4d:84:87:f0:59:e4:27:ac:
5e:52:95:83:c2:0e:a7:a0:e5:97:df:ef:9d:6b:9a:
ee:c4:d9:11:87:dc:60:ea:74:1f:ad:dd:27:ea:33:
7f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:04:58:23:C7:4E:AF:19:74:68:8E:74:1E:A5:27:7C:1B:28:49:63
X509v3 Authority Key Identifier:
keyid:B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/ygRYI8dOrxl0aI50HqUnfBsoSWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/sJ__jo_9j459mntm0cxz3DkoHvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.64.0/22
5.188.152.0/22
77.240.44.0/22
79.143.20.0/22
82.115.60.0-82.115.62.255
84.252.156.0/22
87.255.194.0-87.255.201.255
89.223.0.0/24
89.223.2.0/24
91.147.100.0/22
93.190.240.0/22
94.126.201.0/24
178.238.78.0/23
185.97.112.0/22
188.94.152.0/23
194.76.124.0/22
IPv6:
2a06:580::/29
Signature Algorithm: sha256WithRSAEncryption
87:6a:cc:e3:56:b5:75:da:ba:9a:8b:a5:3c:72:b4:c5:17:76:
03:1f:4b:36:98:cb:03:6e:7a:e1:bd:39:5c:d1:2e:98:ff:15:
54:3f:1a:26:be:b0:53:c5:af:a3:02:5f:4d:7a:36:df:8c:55:
6f:8c:8b:5e:cd:b2:6f:82:61:f7:25:4c:9a:f3:11:5d:0c:3a:
22:6a:62:63:64:e7:51:30:9d:ea:02:9d:08:fc:c8:33:9c:f4:
fd:23:92:f3:41:f4:61:7b:46:c2:cb:e3:15:ea:75:d6:fc:1c:
72:1a:19:69:af:56:a8:02:04:77:80:b0:86:3a:78:f5:8c:ff:
53:e4:9e:df:3a:8c:13:b4:be:16:69:97:e6:4a:3b:65:bd:55:
cf:be:45:37:c4:7b:f3:72:72:1c:37:13:db:7f:25:7d:64:08:
4d:f2:bb:6f:3b:82:37:14:da:7e:1c:68:f0:aa:db:48:2f:68:
c2:d1:56:69:59:c7:d7:0f:ec:ff:3f:dc:fa:5d:4b:ee:d8:e8:
fd:5c:ae:a9:fc:dc:75:38:ff:c7:fb:07:02:9c:32:7f:dc:74:
b2:70:7e:53:94:f6:3c:7d:38:b7:82:b9:a0:61:d4:43:f4:77:
82:ec:9d:0b:5a:be:e8:b5:6e:e7:1e:21:0c:04:6c:16:20:a7:
8f:9f:7f:a6
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAY7Ms04SPbAc6NMOZcxdj9A6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwOWZmZjhlOGZmZDhmOGU3ZDlhN2I2NmQxY2M3M2RjMzky
ODFlZjYwHhcNMjQwNDExMTAyODA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTA0NTgyM2M3NGVhZjE5NzQ2ODhlNzQxZWE1Mjc3YzFiMjg0OTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6q3eJqp5r57qccxvzIBgkxsZGac
YUWaDsa2uaB74VPugTyfzyAUmX9x+TslJpfr3ZQpameCV5cDQ3NT+HdHO7og6fHZ
Dm/z0mmNyY0hwy1E8jeBU5gGm0mi7skAhZsdd1U0LgLCYrKbTcbKKYJOUZaUscPA
QHFoFWpiandyAy3bnr08CX26JM9/U1xigItQ7HAPaumpbfzr0NJSuAvJaRZxsXUq
YMv1DZiPK9vvtJr1qVTS8vSigDAl22WE3dMtR/bgZOESFp1a920rzUp+pockc6W4
sRJ1TYSH8FnkJ6xeUpWDwg6noOWX3++da5ruxNkRh9xg6nQfrd0n6jN/4wIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFMoEWCPHTq8ZdGiOdB6lJ3wbKEljMB8GA1UdIwQY
MBaAFLCf/46P/Y+OfZp7ZtHMc9w5KB72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0pfX2pvXzlqNDU5bW50bTBjeHozRGtvSHZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy84ZmJjN2UtMWY0Ny00ODdjLTgyOTIt
ZTVhNzdmN2E3YWEyLzEveWdSWUk4ZE9yeGwwYUk1MEhxVW5mQnNvU1dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy84ZmJjN2UtMWY0Ny00ODdjLTgyOTItZTVhNzdmN2E3YWEy
LzEvc0pfX2pvXzlqNDU5bW50bTBjeHozRGtvSHZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzB2BAIAATBwAwQCBbxA
AwQCBbyYAwQCTfAsAwQCT48UMAwDBAJSczwDBABScz4DBAJU/JwwDAMEAVf/wgME
AVf/yAMEAFnfAAMEAFnfAgMEAluTZAMEAl2+8AMEAF5+yQMEAbLuTgMEArlhcAME
AbxemAMEAsJMfDANBAIAAjAHAwUDKgYFgDANBgkqhkiG9w0BAQsFAAOCAQEAh2rM
41a1ddq6moulPHK0xRd2Ax9LNpjLA2564b05XNEumP8VVD8aJr6wU8WvowJfTXo2
34xVb4yLXs2yb4Jh9yVMmvMRXQw6ImpiY2TnUTCd6gKdCPzIM5z0/SOS80H0YXtG
wsvjFep11vwcchoZaa9WqAIEd4Cwhjp49Yz/U+Se3zqME7S+FmmX5ko7Zb1Vz75F
N8R783JyHDcT238lfWQITfK7bzuCNxTafhxo8KrbSC9owtFWaVnH1w/s/z/c+l1L
7tjo/VyuqfzcdTj/x/sHApwyf9x0snB+U5T2PH04t4K5oGHUQ/R3guydC1q+6LVu
5x4hDARsFiCnj59/pg==
-----END CERTIFICATE-----
Generated at Fri Jun 14 08:54:44 2024 by rpki-client on console-ams.rpki-client.org