Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/TtUv5FgvucnbcSe7BQ25LmBqv4Y.roa
File: TtUv5FgvucnbcSe7BQ25LmBqv4Y.roa (raw, json)
Hash identifier: ht7XuYlzD9opnj+H4FARtvzpKzIsk82H8ypA1/Ht0jU=
Subject key identifier: 4E:D5:2F:E4:58:2F:B9:C9:DB:71:27:BB:05:0D:B9:2E:60:6A:BF:86
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01934F99594BF8D98CBF7D810502CBF24690
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/TtUv5FgvucnbcSe7BQ25LmBqv4Y.roa
Signing time: Thu 21 Nov 2024 16:41:10 +0000
ROA not before: Thu 21 Nov 2024 16:41:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.128.0/24 maxlen: 24
77.90.129.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
213.209.129.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4f:99:59:4b:f8:d9:8c:bf:7d:81:05:02:cb:f2:46:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Nov 21 16:41:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ed52fe4582fb9c9db7127bb050db92e606abf86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:01:11:6e:4c:d9:52:0b:55:b4:ae:9e:02:ef:
bc:7a:c3:d3:ee:dd:ac:8d:62:f7:ed:97:50:b2:fc:
71:c3:64:1f:50:63:d8:97:29:1f:5a:4e:55:90:b0:
74:d1:93:13:72:ed:63:a1:0d:b6:4b:b0:4f:92:3e:
a7:35:6b:63:c6:a8:ee:99:29:7f:85:23:2d:15:f8:
23:88:49:77:55:35:d1:9a:06:dd:ca:bb:29:47:36:
31:8a:a4:06:7b:15:07:5f:5b:46:b4:5e:d6:b2:8c:
f9:0e:34:72:e2:77:da:2d:4f:d7:c5:49:1e:7b:02:
83:57:b2:23:5c:ac:10:7f:47:0c:de:26:cb:43:c4:
a5:c3:e0:b2:72:e0:01:0d:ae:8f:0c:67:7c:45:b4:
93:4f:4a:19:cb:9b:d2:fc:89:1d:a9:4e:95:25:32:
17:fe:22:64:b8:d0:2a:f3:00:f6:fe:7e:e0:ab:b0:
87:e0:e0:fb:3b:9c:a3:c0:7c:98:8f:92:2a:75:d3:
cd:68:80:d2:dd:ba:1f:ee:b8:0d:46:68:a9:fa:2f:
e6:b4:1f:e0:c6:b9:1d:57:53:8d:fa:56:17:05:06:
fc:2e:87:38:67:5d:79:3d:07:fc:63:1f:d0:98:0f:
8e:2c:53:ce:50:e1:d5:49:8a:87:c1:e3:9c:2b:56:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D5:2F:E4:58:2F:B9:C9:DB:71:27:BB:05:0D:B9:2E:60:6A:BF:86
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/TtUv5FgvucnbcSe7BQ25LmBqv4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
213.209.129.0/24
213.209.138.0/24
213.209.143.0/24
213.209.150.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
31:5e:d8:be:81:6c:b3:af:6d:f2:f8:73:da:d8:e5:08:4f:0f:
ee:a5:fe:b5:ac:fd:5b:46:23:c9:3d:7a:b2:48:9c:15:20:63:
ec:ba:61:9d:0a:ce:8e:1e:85:6c:a2:06:82:d8:64:8d:9f:2a:
0d:82:0e:3e:15:0e:57:6d:a9:f5:c0:18:00:66:f4:c0:11:62:
a8:f9:5f:0f:29:8e:8b:05:65:19:ef:19:8d:54:f6:14:f0:22:
55:e6:46:69:19:e9:be:f1:99:bf:00:08:39:d9:59:ef:d4:69:
92:40:8c:45:a3:4f:fa:07:11:b4:7d:2e:d8:c0:d7:2d:f2:fc:
91:7a:c3:2b:a7:0c:7a:16:38:3e:9c:54:9f:15:5d:79:3d:72:
62:c9:5e:4f:65:63:77:1d:44:6f:88:dc:94:17:69:f4:80:44:
f3:bd:26:01:b5:d3:37:41:b1:0f:c1:9e:cc:60:af:5b:d6:4a:
cf:2d:9e:cf:70:c5:c9:16:6c:c3:38:1a:ed:73:49:20:dc:73:
bc:7b:cf:29:d5:a9:f0:e6:39:00:da:5c:ee:d1:b5:09:68:6c:
98:ac:6d:1a:87:38:8e:3e:bf:55:52:e3:04:3d:05:3f:41:d3:
95:8e:a8:cb:c0:c8:98:f4:3f:1f:c4:9e:ef:50:f2:63:39:88:
ec:b0:5d:f7
-----BEGIN CERTIFICATE-----
MIIFbDCCBFSgAwIBAgISAZNPmVlL+NmMv32BBQLL8kaQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjQxMTIxMTY0MTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWQ1MmZlNDU4MmZiOWM5ZGI3MTI3YmIwNTBkYjkyZTYwNmFiZjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwERbkzZUgtVtK6eAu+8esPT7t2s
jWL37ZdQsvxxw2QfUGPYlykfWk5VkLB00ZMTcu1joQ22S7BPkj6nNWtjxqjumSl/
hSMtFfgjiEl3VTXRmgbdyrspRzYxiqQGexUHX1tGtF7Wsoz5DjRy4nfaLU/XxUke
ewKDV7IjXKwQf0cM3ibLQ8Slw+CycuABDa6PDGd8RbSTT0oZy5vS/IkdqU6VJTIX
/iJkuNAq8wD2/n7gq7CH4OD7O5yjwHyYj5IqddPNaIDS3bof7rgNRmip+i/mtB/g
xrkdV1ON+lYXBQb8Loc4Z115PQf8Yx/QmA+OLFPOUOHVSYqHweOcK1YWLwIDAQAB
o4ICeDCCAnQwHQYDVR0OBBYEFE7VL+RYL7nJ23EnuwUNuS5gar+GMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvVHRVdjVGZ3Z1Y25iY1NlN0JRMjVMbUJxdjRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwZAQCAAEwXjAMAwQHTVqA
AwQATVqCMAwDBAJNWoQDBAFNWogwDAMEAE1aiwMEAE1ajDAMAwQBTVqOAwQATVqQ
MAwDBAFNWpIDBABNWpQDBADV0YEDBADV0YoDBADV0Y8DBADV0ZYwFAQCAAIwDgMF
ACoEKcIDBQAqBCnHMA0GCSqGSIb3DQEBCwUAA4IBAQAxXti+gWyzr23y+HPa2OUI
Tw/upf61rP1bRiPJPXqySJwVIGPsumGdCs6OHoVsogaC2GSNnyoNgg4+FQ5Xban1
wBgAZvTAEWKo+V8PKY6LBWUZ7xmNVPYU8CJV5kZpGem+8Zm/AAg52Vnv1GmSQIxF
o0/6BxG0fS7YwNct8vyResMrpwx6Fjg+nFSfFV15PXJiyV5PZWN3HURviNyUF2n0
gETzvSYBtdM3QbEPwZ7MYK9b1krPLZ7PcMXJFmzDOBrtc0kg3HO8e88p1anw5jkA
2lzu0bUJaGyYrG0ahziOPr9VUuMEPQU/QdOVjqjLwMiY9D8fxJ7vUPJjOYjssF33
-----END CERTIFICATE-----
Generated at Mon Nov 25 20:27:12 2024 by rpki-client on console-fra.rpki-client.org