Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/ti7s_6S9lliIOLZU4oFAEoMJDVE.roa
File: ti7s_6S9lliIOLZU4oFAEoMJDVE.roa (raw, json)
Hash identifier: weGozYt/t4/1b7IktWBAXqPWntN9ZJQGv2uVKuCSqAo=
Subject key identifier: B6:2E:EC:FF:A4:BD:96:58:88:38:B6:54:E2:81:40:12:83:09:0D:51
Certificate issuer: /CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Certificate serial: 018E1CBB9D7F9F79DFDD2292385FA149125D
Authority key identifier: E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/ti7s_6S9lliIOLZU4oFAEoMJDVE.roa
Signing time: Fri 08 Mar 2024 06:24:01 +0000
ROA not before: Fri 08 Mar 2024 06:24:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 45.140.28.0/22 maxlen: 22
89.33.204.0/23 maxlen: 23
89.33.234.0/23 maxlen: 23
89.34.88.0/23 maxlen: 23
89.34.94.0/23 maxlen: 23
89.34.168.0/23 maxlen: 23
89.34.176.0/23 maxlen: 23
89.35.58.0/23 maxlen: 23
89.35.156.0/23 maxlen: 23
89.35.176.0/23 maxlen: 23
89.37.30.0/23 maxlen: 23
89.38.242.0/23 maxlen: 23
89.39.186.0/23 maxlen: 23
89.40.128.0/23 maxlen: 23
89.42.32.0/23 maxlen: 23
89.43.204.0/23 maxlen: 23
89.44.202.0/23 maxlen: 23
89.45.230.0/23 maxlen: 23
89.46.44.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1c:bb:9d:7f:9f:79:df:dd:22:92:38:5f:a1:49:12:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Validity
Not Before: Mar 8 06:24:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b62eecffa4bd96588838b654e281401283090d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:c4:28:11:a7:99:d8:e1:00:a5:f0:06:8e:
0b:39:f6:68:9e:fe:fd:68:ef:24:c1:58:51:68:b2:
e9:e3:75:b0:9b:46:0f:8d:30:c0:31:e4:2e:f9:25:
3b:cb:1c:4b:f7:99:02:dd:64:d2:23:df:d9:1d:6e:
f6:d6:be:8c:d0:4f:66:9c:30:38:7a:6b:4f:f8:2c:
61:0b:e5:a7:35:d0:ce:41:4b:30:30:b5:5d:78:86:
d7:5b:25:0f:59:00:79:9d:d3:c4:77:c0:11:48:06:
74:e3:0d:4a:7f:e0:98:b1:29:0f:7d:79:0a:36:c8:
ab:4c:d2:80:48:90:9b:e5:d2:39:27:1c:5d:2b:72:
c9:7c:29:a7:18:a1:9b:d6:fe:2c:33:70:40:dd:c5:
60:11:07:44:7e:09:f7:15:ac:a6:a1:a9:6c:41:c1:
f3:b3:c3:b1:76:42:9a:92:13:92:fe:6f:53:f9:22:
81:e0:bb:e6:2f:2c:3a:c7:f6:b3:32:d9:2b:4e:3c:
67:5d:26:c9:d8:bf:af:4d:0e:43:f7:9a:82:01:7e:
d5:cf:ef:f0:3d:1d:fe:70:9e:b3:a7:c9:82:68:e2:
46:f3:cb:c0:6d:79:a1:60:31:7b:10:41:14:65:92:
e0:9b:fa:6d:0f:73:e2:76:e5:91:2e:1a:27:71:b8:
1e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2E:EC:FF:A4:BD:96:58:88:38:B6:54:E2:81:40:12:83:09:0D:51
X509v3 Authority Key Identifier:
keyid:E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/ti7s_6S9lliIOLZU4oFAEoMJDVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.28.0/22
89.33.204.0/23
89.33.234.0/23
89.34.88.0/23
89.34.94.0/23
89.34.168.0/23
89.34.176.0/23
89.35.58.0/23
89.35.156.0/23
89.35.176.0/23
89.37.30.0/23
89.38.242.0/23
89.39.186.0/23
89.40.128.0/23
89.42.32.0/23
89.43.204.0/23
89.44.202.0/23
89.45.230.0/23
89.46.44.0/23
Signature Algorithm: sha256WithRSAEncryption
03:47:7b:e9:d5:33:ba:13:13:ea:7d:d0:60:2e:08:6b:7d:70:
e8:64:d7:e1:ed:73:a9:56:06:ce:b9:30:5a:22:cb:f2:f6:c7:
7e:58:af:fc:f3:a0:05:1e:7a:b0:ba:ea:b3:d9:3b:46:2d:bc:
ca:d6:e5:f1:9c:cb:10:a5:cb:40:7b:dd:f0:73:0b:a1:bb:93:
b9:45:da:d3:0e:ef:25:ac:d7:0d:46:8c:97:cd:7b:e2:c5:a3:
eb:b3:51:3c:38:6e:db:d0:ca:9a:78:a1:86:13:07:69:f4:f8:
84:26:7e:47:59:47:e9:06:87:f1:cd:ea:91:32:5c:55:1a:9f:
7a:0e:9e:61:13:26:a3:64:69:25:48:be:8a:9f:fc:8f:c6:37:
70:60:cb:f6:b0:27:25:01:40:9b:c3:f1:a0:f7:f2:30:ef:16:
13:1c:47:57:b7:d7:67:52:9c:5c:91:e5:2f:36:b2:7e:ad:38:
3a:d7:44:0e:ff:98:28:bb:a2:b4:f5:ca:00:52:42:e0:1f:74:
13:d9:35:7b:0a:1d:5b:da:b4:bc:49:58:dd:cf:64:02:27:04:
60:c8:6e:a2:69:81:57:bb:81:76:fe:be:99:6b:fe:32:7d:ec:
d4:45:1e:bc:f4:99:27:76:d7:20:27:6c:22:31:c2:df:32:67:
1f:50:86:96
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAY4cu51/n3nf3SKSOF+hSRJdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZmVkNGU3NzgyMDljM2NhZTkzZDRiNzZkMzUwNzA0NDYy
YzNhYWIwHhcNMjQwMzA4MDYyNDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjJlZWNmZmE0YmQ5NjU4ODgzOGI2NTRlMjgxNDAxMjgzMDkwZDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjXEKBGnmdjhAKXwBo4LOfZonv79
aO8kwVhRaLLp43Wwm0YPjTDAMeQu+SU7yxxL95kC3WTSI9/ZHW721r6M0E9mnDA4
emtP+CxhC+WnNdDOQUswMLVdeIbXWyUPWQB5ndPEd8ARSAZ04w1Kf+CYsSkPfXkK
NsirTNKASJCb5dI5JxxdK3LJfCmnGKGb1v4sM3BA3cVgEQdEfgn3FaymoalsQcHz
s8OxdkKakhOS/m9T+SKB4LvmLyw6x/azMtkrTjxnXSbJ2L+vTQ5D95qCAX7Vz+/w
PR3+cJ6zp8mCaOJG88vAbXmhYDF7EEEUZZLgm/ptD3PiduWRLhoncbgezQIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFLYu7P+kvZZYiDi2VOKBQBKDCQ1RMB8GA1UdIwQY
MBaAFOf+1Od4IJw8rpPUt201BwRGLDqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNV83VTUzZ2duRHl1azlTM2JUVUhCRVlzT3FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8yMmEzYzctNmZlNS00OWUxLTkzNWQt
OGJiODAxNTJhYjM0LzEvdGk3c182UzlsbGlJT0xaVTRvRkFFb01KRFZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8yMmEzYzctNmZlNS00OWUxLTkzNWQtOGJiODAxNTJhYjM0
LzEvNV83VTUzZ2duRHl1azlTM2JUVUhCRVlzT3FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAi2MHAME
AVkhzAMEAVkh6gMEAVkiWAMEAVkiXgMEAVkiqAMEAVkisAMEAVkjOgMEAVkjnAME
AVkjsAMEAVklHgMEAVkm8gMEAVknugMEAVkogAMEAVkqIAMEAVkrzAMEAVksygME
AVkt5gMEAVkuLDANBgkqhkiG9w0BAQsFAAOCAQEAA0d76dUzuhMT6n3QYC4Ia31w
6GTX4e1zqVYGzrkwWiLL8vbHfliv/POgBR56sLrqs9k7Ri28ytbl8ZzLEKXLQHvd
8HMLobuTuUXa0w7vJazXDUaMl8174sWj67NRPDhu29DKmnihhhMHafT4hCZ+R1lH
6QaH8c3qkTJcVRqfeg6eYRMmo2RpJUi+ip/8j8Y3cGDL9rAnJQFAm8PxoPfyMO8W
ExxHV7fXZ1KcXJHlLzayfq04OtdEDv+YKLuitPXKAFJC4B90E9k1ewodW9q0vElY
3c9kAicEYMhuommBV7uBdv6+mWv+Mn3s1EUevPSZJ3bXICdsIjHC3zJnH1CGlg==
-----END CERTIFICATE-----
Generated at Fri Sep 27 22:01:58 2024 by rpki-client on console-ams.rpki-client.org