Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/texzmWAklIq5g-JEmuMZXT-3JBU.roa
File: texzmWAklIq5g-JEmuMZXT-3JBU.roa (raw, json)
Hash identifier: HLETNncFPLqRZVaGMYCreDsQJNc81dh9BUXcN4Xwd4I=
Subject key identifier: B5:EC:73:99:60:24:94:8A:B9:83:E2:44:9A:E3:19:5D:3F:B7:24:15
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018D126E4990769869E4A6DBC93AA2DDF303
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/texzmWAklIq5g-JEmuMZXT-3JBU.roa
Signing time: Tue 16 Jan 2024 13:20:34 +0000
ROA not before: Tue 16 Jan 2024 13:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48146
IP address blocks: 5.182.80.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
45.138.252.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.152.12.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
92.118.248.0/22 maxlen: 24
94.103.244.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
151.237.131.0/24 maxlen: 24
185.25.52.0/22 maxlen: 24
185.87.63.0/24 maxlen: 24
185.148.52.0/22 maxlen: 24
185.189.225.0/24 maxlen: 24
185.189.226.0/23 maxlen: 24
185.192.72.0/22 maxlen: 24
185.192.116.0/22 maxlen: 24
185.195.36.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
185.210.60.0/22 maxlen: 24
185.210.72.0/22 maxlen: 24
185.240.22.0/24 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
188.240.236.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
193.228.204.0/23 maxlen: 24
194.36.104.0/22 maxlen: 24
194.59.196.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:6e:49:90:76:98:69:e4:a6:db:c9:3a:a2:dd:f3:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 16 13:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5ec73996024948ab983e2449ae3195d3fb72415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:ba:74:4b:52:d9:45:e5:03:71:48:66:ff:
2d:01:b6:6b:49:fd:41:11:82:02:a4:df:bb:ec:d4:
ea:b1:55:47:67:9e:77:88:60:f6:e9:d0:3a:27:f2:
51:07:61:6c:6d:9a:88:f8:3d:a8:85:0c:2b:86:54:
00:6a:29:d2:a8:01:59:27:fe:f9:f9:85:89:c0:05:
51:e8:ea:fc:09:43:b3:96:13:76:03:df:87:88:c5:
0e:c5:08:88:d0:74:ff:6c:7b:8b:c7:1d:a6:b8:04:
41:0b:03:55:fd:0d:0d:84:d4:6a:51:02:7f:b7:6d:
f6:fd:ac:f6:3d:77:d0:6e:15:2d:7e:c5:27:bf:c5:
bd:9b:06:15:3f:14:ea:96:47:99:fb:b3:11:31:00:
34:1c:9e:ea:1e:0b:b8:81:d6:2e:5c:a0:62:fd:b7:
28:68:d9:bf:7d:0a:58:cd:7d:cd:59:30:31:5c:5c:
4f:13:b8:0c:46:4c:39:cc:2d:aa:ee:8f:35:7f:27:
42:4b:18:20:31:67:2e:97:40:a3:6e:23:6a:cb:50:
20:fa:f5:2e:38:d6:27:7f:da:bb:d1:8a:4c:8f:aa:
eb:97:36:28:64:6e:1c:3c:b3:fe:31:33:9a:52:43:
5e:ef:7c:ae:d5:51:7e:e1:ef:d2:48:db:4b:bc:25:
e0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EC:73:99:60:24:94:8A:B9:83:E2:44:9A:E3:19:5D:3F:B7:24:15
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/texzmWAklIq5g-JEmuMZXT-3JBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.138.252.0/22
45.147.204.0/22
45.152.12.0/22
81.22.232.0/22
92.118.248.0/22
94.103.244.0/22
151.237.59.0/24
151.237.131.0/24
185.25.52.0/22
185.87.63.0/24
185.148.52.0/22
185.189.225.0-185.189.227.255
185.192.72.0/22
185.192.116.0/22
185.195.36.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.22.0/23
185.255.72.0/22
188.240.236.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.59.196.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
06:c5:81:5f:a7:2b:ec:d4:b5:57:46:7e:c4:95:10:9c:08:8d:
88:8a:87:3e:0f:8a:19:8a:98:c2:1a:b5:30:82:d8:7f:64:61:
b6:a0:bf:38:1f:93:3b:1e:27:b9:76:5b:84:9b:b3:c0:b5:1b:
2c:47:63:59:9d:61:e6:09:c4:dd:0a:ce:c5:b6:ad:f5:a6:d9:
c4:6a:ae:20:21:f4:7b:51:4b:a2:fb:b8:38:ce:63:68:63:29:
9a:d1:b8:35:aa:e8:f2:84:15:88:86:e9:e9:fb:55:86:ca:64:
e5:34:da:86:5b:3f:a2:11:0e:56:3e:e8:be:b7:ab:99:9a:49:
e9:6a:76:a1:11:29:f4:48:9f:bb:f7:a3:ac:ae:ee:bf:79:77:
9c:71:5a:df:16:e1:e5:8e:95:3d:47:fe:21:c4:13:d2:b1:55:
b7:f1:ea:c2:bf:31:96:ac:ee:90:c1:d7:33:1a:b3:61:43:e6:
11:f7:d3:d4:da:f5:5e:99:7b:4f:8f:3a:81:cd:94:d5:79:f1:
3e:ee:15:22:53:c4:81:c1:3e:dc:19:a8:c9:16:df:95:6c:05:
b6:3b:a6:02:d3:a3:51:09:8f:ec:7c:17:b5:30:a4:d6:48:bd:
36:8c:ea:4c:a1:ec:5c:ac:40:42:e1:75:a4:30:ae:91:d9:da:
a8:fa:25:d8
-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgISAY0SbkmQdphp5KbbyTqi3fMDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjQwMTE2MTMyMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWVjNzM5OTYwMjQ5NDhhYjk4M2UyNDQ5YWUzMTk1ZDNmYjcyNDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKW6dEtS2UXlA3FIZv8tAbZrSf1B
EYICpN+77NTqsVVHZ553iGD26dA6J/JRB2FsbZqI+D2ohQwrhlQAainSqAFZJ/75
+YWJwAVR6Or8CUOzlhN2A9+HiMUOxQiI0HT/bHuLxx2muARBCwNV/Q0NhNRqUQJ/
t232/az2PXfQbhUtfsUnv8W9mwYVPxTqlkeZ+7MRMQA0HJ7qHgu4gdYuXKBi/bco
aNm/fQpYzX3NWTAxXFxPE7gMRkw5zC2q7o81fydCSxggMWcul0CjbiNqy1Ag+vUu
ONYnf9q70YpMj6rrlzYoZG4cPLP+MTOaUkNe73yu1VF+4e/SSNtLvCXgEQIDAQAB
o4IC0DCCAswwHQYDVR0OBBYEFLXsc5lgJJSKuYPiRJrjGV0/tyQVMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvdGV4em1XQWtsSXE1Zy1KRW11TVpYVC0zSkJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHlBggrBgEFBQcBBwEB/wSB1TCB0jCBzwQCAAEwgcgDBAIF
tlADBAItDtADBAItVuADBAItWSgDBAItiCADBAItivwDBAItk8wDBAItmAwDBAJR
FugDBAJcdvgDBAJeZ/QDBACX7TsDBACX7YMDBAK5GTQDBAC5Vz8DBAK5lDQwDAME
ALm94QMEArm94AMEArnASAMEArnAdAMEArnDJAMEArnGbAMEArnRCAMEArnSPAME
ArnSSAMEAbnwFgMEArn/SAMEArzw7AMEAcHkwgMEAcHkzAMEAsIkaAMEAsI7xAME
AsKTkDANBgkqhkiG9w0BAQsFAAOCAQEABsWBX6cr7NS1V0Z+xJUQnAiNiIqHPg+K
GYqYwhq1MILYf2RhtqC/OB+TOx4nuXZbhJuzwLUbLEdjWZ1h5gnE3QrOxbat9abZ
xGquICH0e1FLovu4OM5jaGMpmtG4Naro8oQViIbp6ftVhspk5TTahls/ohEOVj7o
vrermZpJ6Wp2oREp9Eifu/ejrK7uv3l3nHFa3xbh5Y6VPUf+IcQT0rFVt/Hqwr8x
lqzukMHXMxqzYUPmEffT1Nr1Xpl7T486gc2U1XnxPu4VIlPEgcE+3BmoyRbflWwF
tjumAtOjUQmP7HwXtTCk1ki9NozqTKHsXKxAQuF1pDCukdnaqPol2A==
-----END CERTIFICATE-----
Generated at Sun Jun 2 09:55:10 2024 by rpki-client on console-fra.rpki-client.org