Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/TTwS-47umm8I-R7Aii1wGLC6QrQ.roa
File: TTwS-47umm8I-R7Aii1wGLC6QrQ.roa (download)
Hash identifier: Va4/zkzKpq1q7UldHNiozyc0GnFtL/DysGZ5DQXErlQ=
Subject key identifier: 4D:3C:12:FB:8E:EE:9A:6F:08:F9:1E:C0:8A:2D:70:18:B0:BA:42:B4
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 0185E8B9DEECCC0CFC6A53078890BB34A062
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/TTwS-47umm8I-R7Aii1wGLC6QrQ.roa
ROA valid until: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks:
1: 89.167.144.0/24 maxlen: 24
2: 89.167.152.0/22 maxlen: 22
3: 89.167.146.0/24 maxlen: 24
4: 89.167.166.0/24 maxlen: 24
Validation: OK
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:b9:de:ec:cc:0c:fc:6a:53:07:88:90:bb:34:a0:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jan 25 11:39:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d3c12fb8eee9a6f08f91ec08a2d7018b0ba42b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:46:d6:4f:8d:e7:29:2d:00:76:f2:3a:ad:
96:cc:0b:24:85:36:34:4a:4e:32:36:da:0b:bf:40:
ff:63:1e:9b:cf:2e:92:d3:07:c8:ef:8a:d6:6d:ab:
55:d6:70:0c:79:9d:6a:86:39:7c:ae:8c:e6:b0:e2:
bb:de:59:b4:4d:88:03:cf:5d:9f:4a:ae:27:b5:1e:
9f:3f:b5:f7:77:8c:21:49:6b:d7:f8:4f:a6:9a:ac:
d4:7c:2e:e7:54:3e:28:d0:5d:5f:2f:4e:e9:35:e8:
2d:74:e7:c0:89:e4:a3:f9:2a:a7:b9:3e:b3:bc:66:
e3:e1:ff:a1:87:2c:5d:d1:ab:75:ea:65:04:3b:ae:
5c:6a:0d:8b:de:a7:83:6a:b1:db:9c:10:e7:42:95:
24:d6:2b:70:60:39:dc:6e:96:2f:6b:a8:5a:c0:8c:
1b:d9:d1:01:7c:2e:ed:96:bd:ca:a3:29:09:b4:dc:
1d:cd:60:26:bb:94:7c:26:e0:ec:ac:57:da:e4:1f:
10:89:de:01:c9:f4:13:57:e3:d5:73:0e:d3:4e:9d:
fe:e3:9b:35:d9:f8:64:a0:6e:bd:f6:61:12:c7:f8:
38:62:64:21:bc:95:8b:97:ef:db:39:7d:45:54:3d:
cb:48:c9:1f:e4:74:f8:a9:86:41:35:8c:1f:ee:3c:
b4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3C:12:FB:8E:EE:9A:6F:08:F9:1E:C0:8A:2D:70:18:B0:BA:42:B4
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/TTwS-47umm8I-R7Aii1wGLC6QrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.167.144.0/24
89.167.146.0/24
89.167.152.0/22
89.167.166.0/24
Signature Algorithm: sha256WithRSAEncryption
07:83:68:33:f4:07:a4:da:49:0d:1f:5b:7a:db:80:e6:98:25:
a8:e0:8b:d8:9d:c1:69:9c:35:55:12:ad:e5:89:64:49:5f:ac:
ef:82:d0:2d:86:bc:d6:1b:74:31:96:38:77:c2:e4:35:bf:11:
e8:5c:62:8e:b5:68:17:e4:c9:fa:f1:b3:10:19:5e:46:ba:0d:
c4:00:e3:1e:73:02:78:86:08:18:d4:5b:99:fb:d8:47:9b:31:
b5:d4:9a:af:98:5c:54:ec:6a:46:7b:1f:ca:96:f9:cf:6a:a2:
15:00:ae:11:2f:46:d3:22:3f:d2:c5:ea:d1:fe:26:28:03:38:
20:d6:9a:0a:d4:43:b6:4b:af:98:0c:19:a8:46:12:87:b2:50:
c2:a2:eb:ef:9c:45:6f:49:a9:85:c0:6f:d4:e6:21:99:f0:15:
6b:07:39:b9:87:b7:8e:f7:f8:71:b2:28:34:db:9b:cb:e1:a3:
ff:da:31:5b:ac:a4:92:82:12:41:80:db:e8:5f:9f:bc:fc:f5:
88:64:b5:ed:f6:e0:46:9d:d8:5c:3e:b3:8b:ae:c2:fd:00:8b:
d8:7a:d3:7b:c7:50:39:bf:f2:5e:32:5a:ea:03:d2:ae:f9:0b:
01:a3:fe:a9:a3:ff:ce:2a:09:86:13:d4:20:2a:c8:41:d9:df:
6d:a2:06:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 25 12:48:54 2023 by rpki-client.