Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/r5zZtnZ_ftWIddB7Ar5MHQ87FYc.roa
File: r5zZtnZ_ftWIddB7Ar5MHQ87FYc.roa (raw, json)
Hash identifier: vubnVdLPa7nA1hzEdtq9sU+tV4ZHdMEozJo9KIWAvHc=
Subject key identifier: AF:9C:D9:B6:76:7F:7E:D5:88:75:D0:7B:02:BE:4C:1D:0F:3B:15:87
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018E5B68E5C2957BBA9FF9E744D4D6D474B9
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/r5zZtnZ_ftWIddB7Ar5MHQ87FYc.roa
Signing time: Wed 20 Mar 2024 10:29:44 +0000
ROA not before: Wed 20 Mar 2024 10:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 92.61.228.0/24 maxlen: 24
92.61.230.0/24 maxlen: 24
92.61.231.0/24 maxlen: 24
92.61.232.0/24 maxlen: 24
92.61.236.0/24 maxlen: 24
92.61.237.0/24 maxlen: 24
92.61.238.0/24 maxlen: 24
94.188.137.0/24 maxlen: 24
94.188.194.0/24 maxlen: 24
94.188.201.0/24 maxlen: 24
94.188.202.0/24 maxlen: 24
94.188.203.0/24 maxlen: 24
94.188.205.0/24 maxlen: 24
94.188.206.0/24 maxlen: 24
94.188.207.0/24 maxlen: 24
94.188.208.0/24 maxlen: 24
94.188.209.0/24 maxlen: 24
94.188.210.0/24 maxlen: 24
94.188.211.0/24 maxlen: 24
94.188.212.0/24 maxlen: 24
94.188.214.0/24 maxlen: 24
94.188.215.0/24 maxlen: 24
94.188.216.0/24 maxlen: 24
94.188.224.0/24 maxlen: 24
94.188.225.0/24 maxlen: 24
94.188.226.0/24 maxlen: 24
94.188.227.0/24 maxlen: 24
94.188.228.0/24 maxlen: 24
94.188.229.0/24 maxlen: 24
94.188.230.0/24 maxlen: 24
94.188.231.0/24 maxlen: 24
94.188.239.0/24 maxlen: 24
94.188.240.0/24 maxlen: 24
94.188.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 23:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5b:68:e5:c2:95:7b:ba:9f:f9:e7:44:d4:d6:d4:74:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Mar 20 10:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af9cd9b6767f7ed58875d07b02be4c1d0f3b1587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:72:b1:8a:3c:f5:76:d6:d7:c5:24:51:ea:
3b:09:9d:3a:84:22:e1:47:9e:71:30:65:e5:84:0f:
23:a4:73:0b:64:0e:58:e5:0e:19:a3:5e:3f:03:97:
d0:5d:ab:c1:f1:c9:ad:17:8e:9b:49:7c:5a:af:4d:
ec:ba:7c:3b:00:1e:ed:41:bb:11:ea:19:59:42:cf:
a0:47:b8:36:6b:6d:74:80:db:77:08:4a:15:60:6a:
b0:da:8d:f0:1e:11:2a:1f:2e:b2:40:d2:c0:16:f8:
1e:24:b2:f5:88:18:7e:5c:af:7d:ec:f6:f6:06:32:
c7:0b:08:5d:a7:f6:ca:d7:bd:2a:19:99:13:6c:2f:
52:dd:12:c6:db:53:7f:b3:97:5c:d8:90:75:b8:37:
b9:64:54:d2:0a:39:13:ff:0e:ec:ca:2f:1b:67:9e:
0e:03:4a:78:15:d2:dd:bb:2a:d6:3d:f2:0a:f7:2c:
96:b3:76:9f:db:7a:a4:a1:84:b8:e4:f8:3f:be:0d:
fe:3a:c1:9c:a1:21:5c:bc:29:3a:37:9d:2c:da:e8:
25:57:df:10:f1:b6:2f:d1:30:75:c6:98:44:0e:d6:
ca:d0:35:60:fb:66:a9:2f:62:12:0f:41:b5:d7:2c:
96:41:be:b9:f7:96:02:5f:fb:2c:c5:f8:c3:44:28:
01:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9C:D9:B6:76:7F:7E:D5:88:75:D0:7B:02:BE:4C:1D:0F:3B:15:87
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/r5zZtnZ_ftWIddB7Ar5MHQ87FYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.228.0/24
92.61.230.0-92.61.232.255
92.61.236.0-92.61.238.255
94.188.137.0/24
94.188.194.0/24
94.188.201.0-94.188.203.255
94.188.205.0-94.188.212.255
94.188.214.0-94.188.216.255
94.188.224.0/21
94.188.239.0-94.188.241.255
Signature Algorithm: sha256WithRSAEncryption
45:21:d2:a4:89:8d:5f:50:4b:bb:11:06:f0:08:1b:dc:18:95:
2b:5d:91:9f:4f:15:06:4d:89:6e:27:c0:ad:d4:66:28:ee:6e:
35:f8:be:df:ab:87:93:6a:53:ee:cd:7f:02:f5:d3:18:a0:21:
83:12:3b:63:32:6b:cb:47:84:aa:0d:a9:37:c8:bf:f4:69:15:
47:1d:df:6a:3a:3f:42:07:ae:23:fe:0a:90:45:73:36:e6:6e:
90:6e:ad:b4:1b:80:e7:c1:10:05:da:4e:02:8a:b8:b2:31:b7:
68:76:2e:ca:88:b4:74:85:f2:b2:1e:ce:93:bf:b8:25:c3:d7:
f3:5f:c1:3d:ef:fc:0a:69:00:40:7d:b9:a0:16:2c:4e:0a:33:
12:2d:d3:4f:e7:eb:ca:ba:5d:89:73:92:f2:f8:f8:6c:96:0c:
ca:2f:a8:46:d6:2f:80:24:06:db:57:64:13:0f:4b:af:3e:90:
8b:27:fa:92:a0:8e:34:26:a0:60:67:12:8a:5b:87:e7:5b:a8:
2b:b9:e0:9b:a6:3d:4f:5d:f6:0a:65:80:9d:94:11:3d:8b:d4:
9b:d6:cc:fc:bb:62:14:4d:72:ed:28:b3:14:a7:1b:db:1c:4e:
72:1e:38:b4:8f:82:73:51:98:a2:c7:53:ff:d9:47:dc:57:a5:
59:78:a2:0b
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAY5baOXClXu6n/nnRNTW1HS5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDViYjQwMTE4MGU1NWY1YzE2NWQ0NzkwOGRmZjRmZTI5
YTBkODYwHhcNMjQwMzIwMTAyOTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjljZDliNjc2N2Y3ZWQ1ODg3NWQwN2IwMmJlNGMxZDBmM2IxNTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcZysYo89XbW18UkUeo7CZ06hCLh
R55xMGXlhA8jpHMLZA5Y5Q4Zo14/A5fQXavB8cmtF46bSXxar03sunw7AB7tQbsR
6hlZQs+gR7g2a210gNt3CEoVYGqw2o3wHhEqHy6yQNLAFvgeJLL1iBh+XK997Pb2
BjLHCwhdp/bK170qGZkTbC9S3RLG21N/s5dc2JB1uDe5ZFTSCjkT/w7syi8bZ54O
A0p4FdLduyrWPfIK9yyWs3af23qkoYS45Pg/vg3+OsGcoSFcvCk6N50s2uglV98Q
8bYv0TB1xphEDtbK0DVg+2apL2ISD0G11yyWQb6595YCX/ssxfjDRCgB2QIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFK+c2bZ2f37ViHXQewK+TB0POxWHMB8GA1UdIwQY
MBaAFOLVu0ARgOVfXBZdR5CN/0/img2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEt
NDIxZTZiYzdlMmU4LzEvcjV6WnRuWl9mdFdJZGRCN0FyNU1IUTg3RlljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEtNDIxZTZiYzdlMmU4
LzEvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAFw95DAM
AwQBXD3mAwQAXD3oMAwDBAJcPewDBABcPe4DBABevIkDBABevMIwDAMEAF68yQME
Al68yDAMAwQAXrzNAwQAXrzUMAwDBAFevNYDBABevNgDBANevOAwDAMEAF687wME
AV688DANBgkqhkiG9w0BAQsFAAOCAQEARSHSpImNX1BLuxEG8Agb3BiVK12Rn08V
Bk2JbifArdRmKO5uNfi+36uHk2pT7s1/AvXTGKAhgxI7YzJry0eEqg2pN8i/9GkV
Rx3fajo/QgeuI/4KkEVzNuZukG6ttBuA58EQBdpOAoq4sjG3aHYuyoi0dIXysh7O
k7+4JcPX81/BPe/8CmkAQH25oBYsTgozEi3TT+fryrpdiXOS8vj4bJYMyi+oRtYv
gCQG21dkEw9Lrz6Qiyf6kqCONCagYGcSiluH51uoK7ngm6Y9T132CmWAnZQRPYvU
m9bM/LtiFE1y7SizFKcb2xxOch44tI+Cc1GYosdT/9lH3FelWXiiCw==
-----END CERTIFICATE-----
Generated at Mon May 6 06:55:31 2024 by rpki-client on console-fra.rpki-client.org