Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/gEl2tX2FdrtAkFDuTKFeMaV4p-g.roa
File: gEl2tX2FdrtAkFDuTKFeMaV4p-g.roa (raw, json)
Hash identifier: NQzuM5feUy5AlgZBxM0mwI/a6yKbCPTWVJXkR26ySKs=
Subject key identifier: 80:49:76:B5:7D:85:76:BB:40:90:50:EE:4C:A1:5E:31:A5:78:A7:E8
Certificate issuer: /CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Certificate serial: 018FC97F8104EDE038FE558244FA145F2A21
Authority key identifier: 4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/gEl2tX2FdrtAkFDuTKFeMaV4p-g.roa
Signing time: Thu 30 May 2024 12:35:27 +0000
ROA not before: Thu 30 May 2024 12:35:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3188
IP address blocks: 5.2.80.0/24 maxlen: 24
5.2.81.0/24 maxlen: 24
5.2.82.0/24 maxlen: 24
5.2.83.0/24 maxlen: 24
5.2.84.0/24 maxlen: 24
5.2.85.0/24 maxlen: 24
5.2.86.0/24 maxlen: 24
5.2.87.0/24 maxlen: 24
185.8.32.0/24 maxlen: 24
185.8.33.0/24 maxlen: 24
185.8.34.0/24 maxlen: 24
185.8.35.0/24 maxlen: 24
185.8.128.0/24 maxlen: 24
185.8.129.0/24 maxlen: 24
185.8.130.0/24 maxlen: 24
185.8.131.0/24 maxlen: 24
185.150.128.0/24 maxlen: 24
185.150.131.0/24 maxlen: 24
2a02:d9c0::/29 maxlen: 29
2a04:b600::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/TL_T5y1KA5b5U0cza0Jnj2jCZDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/TL_T5y1KA5b5U0cza0Jnj2jCZDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c9:7f:81:04:ed:e0:38:fe:55:82:44:fa:14:5f:2a:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Validity
Not Before: May 30 12:35:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=804976b57d8576bb409050ee4ca15e31a578a7e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0c:c8:af:c2:78:98:b3:0f:e9:ba:12:a1:4d:
0f:35:2d:f6:a9:3d:53:23:1a:07:f6:39:da:75:0b:
5e:5b:a1:c1:fc:d1:6f:ca:b8:fe:ce:0d:5a:d0:46:
8b:75:e1:cf:f6:77:c7:11:fa:76:23:12:dd:41:91:
20:2e:67:ce:2c:52:4d:35:82:05:a9:b0:0d:fc:af:
3c:32:d4:bb:c6:ed:ff:a0:74:0b:3c:9f:a5:5e:97:
fe:d3:9b:6e:7c:a8:05:5a:6e:3b:67:29:42:da:95:
73:51:5a:8e:6a:44:02:82:d1:af:e2:8c:4c:89:ca:
f8:80:b2:78:02:7c:b0:28:a7:99:08:a0:77:f3:42:
fd:39:a9:22:13:40:00:41:63:bc:87:89:1b:81:55:
ae:00:f8:4d:b9:51:e5:82:1e:83:2d:26:ae:51:c3:
86:f0:c5:97:18:30:38:c8:5d:bb:07:9f:59:d0:f7:
85:63:58:55:0d:ed:08:c5:11:a3:32:8a:f9:95:0c:
47:26:89:26:04:09:10:bb:46:e7:b8:6a:90:ba:4c:
62:4e:a8:d7:91:2e:62:09:3d:7c:24:89:97:ea:eb:
aa:a9:81:d2:63:48:2a:70:5f:c0:4a:9d:39:3e:aa:
07:58:79:f7:72:b1:f2:5f:e1:97:b4:29:7c:8f:3f:
09:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:49:76:B5:7D:85:76:BB:40:90:50:EE:4C:A1:5E:31:A5:78:A7:E8
X509v3 Authority Key Identifier:
keyid:4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/gEl2tX2FdrtAkFDuTKFeMaV4p-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/TL_T5y1KA5b5U0cza0Jnj2jCZDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.2.80.0/21
185.8.32.0/22
185.8.128.0/22
185.150.128.0/24
185.150.131.0/24
IPv6:
2a02:d9c0::/29
2a04:b600::/29
Signature Algorithm: sha256WithRSAEncryption
2d:47:8a:fb:9f:c6:1e:b2:2f:d1:1c:14:8d:18:65:52:42:a1:
6f:19:99:4d:65:d7:65:71:57:55:b8:2e:16:fa:99:19:61:06:
7e:23:ef:c5:4f:f6:b5:13:4b:8b:70:9c:cd:e3:ed:78:9b:d8:
28:ee:7a:80:f0:6c:5e:37:0d:2a:b7:7b:b5:64:9a:bf:06:da:
52:53:33:ca:70:db:25:b7:ad:04:67:8f:7a:4e:94:95:9f:27:
a6:7f:cb:61:9a:e0:02:50:a0:cf:a3:25:46:71:07:3c:20:b3:
f2:b8:a4:42:0d:53:0b:3a:6f:09:08:88:f0:25:fe:9c:2b:68:
dd:83:ca:5f:6e:43:df:26:4d:22:3b:d0:dc:6c:fd:03:2e:b1:
a0:af:e4:63:98:b6:bb:0f:d2:99:e5:ba:44:fe:b4:c3:1e:1d:
9f:05:8f:0c:0d:14:5f:f2:87:eb:c8:c9:30:46:76:c6:6b:3f:
80:7a:8b:a6:5b:2e:97:69:89:8b:5b:21:c6:15:24:27:d9:f0:
a5:bc:0d:4c:1e:99:1f:8d:0f:c1:25:44:c1:ac:9f:55:eb:90:
34:cd:9c:74:2f:4f:d0:c6:3f:7b:f1:9b:ca:22:62:df:a8:0e:
8a:51:01:19:25:74:fc:b1:b9:a9:37:46:fc:03:3e:a2:a1:f9:
e7:90:13:2c
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAY/Jf4EE7eA4/lWCRPoUXyohMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYmZkM2U3MmQ0YTAzOTZmOTUzNDczMzZiNDI2NzhmNjhj
MjY0MzAwHhcNMjQwNTMwMTIzNTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDQ5NzZiNTdkODU3NmJiNDA5MDUwZWU0Y2ExNWUzMWE1NzhhN2U4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gzIr8J4mLMP6boSoU0PNS32qT1T
IxoH9jnadQteW6HB/NFvyrj+zg1a0EaLdeHP9nfHEfp2IxLdQZEgLmfOLFJNNYIF
qbAN/K88MtS7xu3/oHQLPJ+lXpf+05tufKgFWm47ZylC2pVzUVqOakQCgtGv4oxM
icr4gLJ4AnywKKeZCKB380L9OakiE0AAQWO8h4kbgVWuAPhNuVHlgh6DLSauUcOG
8MWXGDA4yF27B59Z0PeFY1hVDe0IxRGjMor5lQxHJokmBAkQu0bnuGqQukxiTqjX
kS5iCT18JImX6uuqqYHSY0gqcF/ASp05PqoHWHn3crHyX+GXtCl8jz8JRQIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFIBJdrV9hXa7QJBQ7kyhXjGleKfoMB8GA1UdIwQY
MBaAFEy/0+ctSgOW+VNHM2tCZ49owmQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVExfVDV5MUtBNWI1VTBjemEwSm5qMmpDWkRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iNTczM2ItMzg5MS00NDliLTk5NTAt
ZmY2MGUyMThlZDQxLzEvZ0VsMnRYMkZkcnRBa0ZEdVRLRmVNYVY0cC1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iNTczM2ItMzg5MS00NDliLTk5NTAtZmY2MGUyMThlZDQx
LzEvVExfVDV5MUtBNWI1VTBjemEwSm5qMmpDWkRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQDBQJQAwQC
uQggAwQCuQiAAwQAuZaAAwQAuZaDMBQEAgACMA4DBQMqAtnAAwUDKgS2ADANBgkq
hkiG9w0BAQsFAAOCAQEALUeK+5/GHrIv0RwUjRhlUkKhbxmZTWXXZXFXVbguFvqZ
GWEGfiPvxU/2tRNLi3CczePteJvYKO56gPBsXjcNKrd7tWSavwbaUlMzynDbJbet
BGePek6UlZ8npn/LYZrgAlCgz6MlRnEHPCCz8rikQg1TCzpvCQiI8CX+nCto3YPK
X25D3yZNIjvQ3Gz9Ay6xoK/kY5i2uw/SmeW6RP60wx4dnwWPDA0UX/KH68jJMEZ2
xms/gHqLplsul2mJi1shxhUkJ9nwpbwNTB6ZH40PwSVEwayfVeuQNM2cdC9P0MY/
e/GbyiJi36gOilEBGSV0/LG5qTdG/AM+oqH555ATLA==
-----END CERTIFICATE-----
Generated at Fri Jun 21 17:41:40 2024 by rpki-client on console-fra.rpki-client.org