Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4U8oGSoqGQZS7XlNbluKOY7Wgk.roa
File: W4U8oGSoqGQZS7XlNbluKOY7Wgk.roa (raw, json)
Hash identifier: Epovdhozq3tdgg4w99/1XulMHtceutUXmiXR691fSZw=
Subject key identifier: 5B:85:3C:A0:64:A8:A8:64:19:4B:B5:E5:35:B9:6E:28:E6:3B:5A:09
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 018CC86F963D6F5E82A1C8CC81DDD9F9D4AD
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4U8oGSoqGQZS7XlNbluKOY7Wgk.roa
Signing time: Tue 02 Jan 2024 04:30:05 +0000
ROA not before: Tue 02 Jan 2024 04:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62068
IP address blocks: 91.230.49.0/24 maxlen: 24
91.226.227.0/24 maxlen: 24
5.182.208.0/22 maxlen: 24
185.244.36.0/22 maxlen: 24
45.87.40.0/22 maxlen: 24
185.224.128.0/22 maxlen: 24
45.14.224.0/22 maxlen: 24
146.19.248.0/24 maxlen: 24
2a0d:2780::/29 maxlen: 32
2a0e:16c0::/29 maxlen: 29
2a0e:1740::/29 maxlen: 29
2a12:a8c0::/29 maxlen: 29
2a11:b240::/29 maxlen: 32
2a0d:2400::/29 maxlen: 39
2a0e:2000::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:96:3d:6f:5e:82:a1:c8:cc:81:dd:d9:f9:d4:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 2 04:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b853ca064a8a864194bb5e535b96e28e63b5a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e6:e8:c8:ac:02:8e:6b:1d:b3:82:5b:4d:e0:
6e:1b:92:99:c9:b1:f7:ea:d7:3c:b8:fd:55:b7:5b:
00:e9:96:4f:a5:55:a1:13:bb:a5:e4:9e:d5:ac:82:
b2:1e:d0:7e:f5:a2:73:01:8a:42:20:79:2d:9c:8a:
ee:7a:75:46:a7:27:4d:b7:30:b4:01:c7:62:11:de:
6d:a3:62:46:c2:be:7a:01:e0:bf:0b:b5:bc:43:88:
09:b2:30:22:87:47:e4:9b:3a:9b:47:a8:25:4c:54:
91:1c:c3:bf:ad:9c:b4:02:01:de:9d:2d:e3:b1:e1:
b9:51:6b:29:cc:ae:07:35:0a:b4:a2:78:7e:07:2c:
30:77:2c:27:f9:3d:4b:b5:db:92:05:55:a9:87:97:
cc:93:e7:78:a4:62:8c:35:cd:8d:8f:e0:c3:83:a4:
ee:77:5b:5b:3c:3f:0c:8a:01:88:ef:22:c6:ff:a2:
ca:4f:19:2f:67:db:db:4e:c6:d0:fc:60:a9:5f:12:
98:b4:97:b3:1d:ca:d0:03:10:2d:a8:2d:a7:59:45:
82:92:d2:78:ff:4e:ca:35:f2:9c:ad:20:75:1c:6f:
35:7b:7c:f1:d9:e3:28:0c:9a:c3:d5:16:be:d0:e7:
bd:30:47:a5:0b:3d:18:6e:db:fe:30:61:2a:c3:a1:
f4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:85:3C:A0:64:A8:A8:64:19:4B:B5:E5:35:B9:6E:28:E6:3B:5A:09
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4U8oGSoqGQZS7XlNbluKOY7Wgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.208.0/22
45.14.224.0/22
45.87.40.0/22
91.226.227.0/24
91.230.49.0/24
146.19.248.0/24
185.224.128.0/22
185.244.36.0/22
IPv6:
2a0d:2400::/29
2a0d:2780::/29
2a0e:16c0::/29
2a0e:1740::/29
2a0e:2000::/29
2a11:b240::/29
2a12:a8c0::/29
Signature Algorithm: sha256WithRSAEncryption
14:4e:8c:05:82:50:22:f1:20:56:76:09:92:95:f7:3b:1f:54:
7e:22:1a:0f:65:9e:93:1a:de:97:e0:c1:44:62:cb:0a:a7:7f:
fd:01:4c:73:b5:2d:3b:4e:83:8f:06:eb:51:c9:a0:a8:d8:6b:
6b:8d:c4:c1:bd:48:a1:fc:0d:b2:c9:e3:bb:f1:eb:48:21:21:
87:42:81:bb:0e:15:9a:fb:08:22:3e:06:67:96:44:55:f8:e9:
ec:b8:08:df:f4:d6:76:4f:d1:58:a9:d2:64:e9:26:87:8a:47:
8b:68:d7:d9:6f:3c:18:31:08:df:d5:71:c3:81:4e:8a:1a:55:
d2:d4:94:31:d9:a8:73:a2:98:58:29:01:89:f3:84:37:15:ac:
dd:ce:d7:6b:2d:73:a8:db:a3:0b:fc:1c:86:3a:af:28:85:59:
66:89:c0:9d:e5:e5:dc:a3:34:cb:39:38:5b:2c:cd:fc:d0:f4:
96:5e:aa:fc:68:4e:47:bf:21:34:1e:ba:3e:96:f5:e1:36:14:
ab:be:8d:0c:db:ed:d7:88:4e:9b:f7:cb:e3:72:99:6c:c8:44:
7a:c8:f1:39:22:bc:b8:0f:00:76:80:e8:a7:f4:e7:e6:fa:25:
a4:b5:85:4e:18:e9:32:83:9b:b3:07:30:4d:2b:b5:23:71:d6:
a6:61:ed:07
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgISAYzIb5Y9b16CocjMgd3Z+dStMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNGZiMDYxYTk0MjZlNGZiMjg4NWQ4MjI4Njc1NzJhMWI1
OGE0YzAwHhcNMjQwMTAyMDQzMDA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Yjg1M2NhMDY0YThhODY0MTk0YmI1ZTUzNWI5NmUyOGU2M2I1YTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+boyKwCjmsds4JbTeBuG5KZybH3
6tc8uP1Vt1sA6ZZPpVWhE7ul5J7VrIKyHtB+9aJzAYpCIHktnIruenVGpydNtzC0
AcdiEd5to2JGwr56AeC/C7W8Q4gJsjAih0fkmzqbR6glTFSRHMO/rZy0AgHenS3j
seG5UWspzK4HNQq0onh+Bywwdywn+T1LtduSBVWph5fMk+d4pGKMNc2Nj+DDg6Tu
d1tbPD8MigGI7yLG/6LKTxkvZ9vbTsbQ/GCpXxKYtJezHcrQAxAtqC2nWUWCktJ4
/07KNfKcrSB1HG81e3zx2eMoDJrD1Ra+0Oe9MEelCz0Ybtv+MGEqw6H0owIDAQAB
o4ICbTCCAmkwHQYDVR0OBBYEFFuFPKBkqKhkGUu15TW5bijmO1oJMB8GA1UdIwQY
MBaAFOxPsGGpQm5PsohdgihnVyobWKTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0Utd1lhbENiay15aUYyQ0tHZFhLaHRZcE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83YmMzYWItZDliNi00YWU0LWJjZDEt
Y2U1NzE1MDY5NWE5LzEvVzRVOG9HU29xR1FaUzdYbE5ibHVLT1k3V2drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83YmMzYWItZDliNi00YWU0LWJjZDEtY2U1NzE1MDY5NWE5
LzEvN0Utd1lhbENiay15aUYyQ0tHZFhLaHRZcE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGCBggrBgEFBQcBBwEB/wRzMHEwNgQCAAEwMAMEAgW20AME
Ai0O4AMEAi1XKAMEAFvi4wMEAFvmMQMEAJIT+AMEArnggAMEArn0JDA3BAIAAjAx
AwUDKg0kAAMFAyoNJ4ADBQMqDhbAAwUDKg4XQAMFAyoOIAADBQMqEbJAAwUDKhKo
wDANBgkqhkiG9w0BAQsFAAOCAQEAFE6MBYJQIvEgVnYJkpX3Ox9UfiIaD2Wekxre
l+DBRGLLCqd//QFMc7UtO06DjwbrUcmgqNhra43Ewb1IofwNssnju/HrSCEhh0KB
uw4VmvsIIj4GZ5ZEVfjp7LgI3/TWdk/RWKnSZOkmh4pHi2jX2W88GDEI39Vxw4FO
ihpV0tSUMdmoc6KYWCkBifOENxWs3c7Xay1zqNujC/wchjqvKIVZZonAneXl3KM0
yzk4WyzN/ND0ll6q/GhOR78hNB66Ppb14TYUq76NDNvt14hOm/fL43KZbMhEesjx
OSK8uA8AdoDop/Tn5volpLWFThjpMoObswcwTSu1I3HWpmHtBw==
-----END CERTIFICATE-----
Generated at Mon May 20 17:31:21 2024 by rpki-client on console-fra.rpki-client.org