Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/ywDGnZ_XUViip5DO2wDTvYVzrNM.roa
File: ywDGnZ_XUViip5DO2wDTvYVzrNM.roa (download)
Hash identifier: Lczs1kcVYQEl7deJc2GjB+s8k1IPcsmv/QivMNhX8Zo=
Subject key identifier: CB:00:C6:9D:9F:D7:51:58:A2:A7:90:CE:DB:00:D3:BD:85:73:AC:D3
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 0185E8B9DE04A92B2E7A293B534343D4304F
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/ywDGnZ_XUViip5DO2wDTvYVzrNM.roa
ROA valid until: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks:
1: 92.60.240.0/20 maxlen: 24
2: 89.167.128.0/17 maxlen: 24
3: 217.79.160.0/20 maxlen: 24
Validation: OK
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:b9:de:04:a9:2b:2e:7a:29:3b:53:43:43:d4:30:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jan 25 11:39:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb00c69d9fd75158a2a790cedb00d3bd8573acd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9b:e4:2a:47:0f:9e:52:be:5b:34:2b:19:f1:
65:70:dd:3b:74:ff:c4:68:b2:3b:55:63:e7:8e:24:
9c:88:01:09:c9:67:03:c0:ae:78:35:fd:96:3e:ba:
8b:22:a4:20:51:29:09:0b:17:ca:44:1e:70:8c:12:
a1:c9:39:8d:b1:19:1b:4d:57:ef:e7:f1:90:ee:5c:
0e:9a:fc:05:dd:38:21:63:4c:1d:8c:78:a6:e5:6c:
8b:01:e4:9f:36:69:5a:c2:d5:d2:30:91:ec:c5:1f:
7a:42:49:5a:f6:c4:5e:1d:a1:81:7e:28:b7:b9:cb:
6e:25:67:7f:ad:44:71:65:3c:21:8d:a6:6c:2d:34:
ef:b7:29:c2:78:c7:15:a5:f9:54:b8:e7:90:81:42:
cd:99:21:d5:7b:65:d0:4a:68:09:90:04:84:35:a9:
07:b4:e8:50:3f:d4:5e:40:b1:79:87:20:c5:a5:01:
b9:80:23:9b:37:2c:34:cb:fe:b5:00:41:9e:5f:bb:
bc:cc:2b:ce:3e:70:71:ff:8d:8f:5d:67:f9:17:2c:
aa:c8:15:3d:53:45:e9:57:4c:8b:ca:85:c6:04:7a:
70:94:16:51:b8:18:71:f7:b8:82:ed:cf:d6:77:74:
6d:b8:b9:35:e4:75:64:db:92:99:45:7b:eb:40:49:
cd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:00:C6:9D:9F:D7:51:58:A2:A7:90:CE:DB:00:D3:BD:85:73:AC:D3
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/ywDGnZ_XUViip5DO2wDTvYVzrNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.167.128.0/17
92.60.240.0/20
217.79.160.0/20
Signature Algorithm: sha256WithRSAEncryption
14:fc:92:c3:ed:30:19:19:08:21:a4:3a:9c:fa:76:73:96:82:
76:3f:d5:a2:e4:42:d7:62:78:8e:d8:ac:f5:9e:2b:de:41:62:
20:58:9d:9a:11:c2:4e:e8:57:42:3e:1c:d5:61:36:ec:05:6c:
bb:d8:d5:c8:1c:ec:23:ee:c7:80:df:75:58:97:cb:60:92:99:
00:ba:c3:2b:91:b5:2e:d5:9e:41:03:71:f8:e7:1a:86:4b:bc:
b9:b7:be:2f:0d:42:5f:60:9b:94:ef:56:ad:a2:26:5e:43:c8:
25:f8:45:6c:93:82:e2:1b:6b:a8:8f:ed:4e:65:ee:d0:cd:51:
05:73:48:e6:e6:73:79:9c:6a:62:2c:fe:64:ff:6e:e0:eb:aa:
c3:d0:8b:3f:49:c3:9e:ce:1d:3c:bf:d8:77:f9:bf:d5:0a:ae:
07:31:aa:03:59:1f:bf:3f:ab:41:15:ec:37:c3:4f:48:d1:21:
6f:97:fe:c0:e0:10:a3:00:f1:89:f4:8a:18:a0:9f:53:1d:2c:
76:e6:9f:52:ef:ba:b3:82:bc:d5:45:78:d2:3e:0e:cc:0d:75:
bd:16:04:c6:55:32:8b:af:70:90:0d:d9:d7:a1:2a:1f:ed:eb:
63:b9:31:ef:17:5d:c7:0d:14:03:48:35:fd:d8:ee:74:8c:68:
28:2f:d6:3d
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYXoud4EqSsueik7U0ND1DBPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjNlMTYwMTcyZWNjNzVjOGNhYjFiYWUyNzFiZTNlYmY0
MDdhODAwHhcNMjMwMTI1MTEzOTMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjAwYzY5ZDlmZDc1MTU4YTJhNzkwY2VkYjAwZDNiZDg1NzNhY2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZvkKkcPnlK+WzQrGfFlcN07dP/E
aLI7VWPnjiSciAEJyWcDwK54Nf2WPrqLIqQgUSkJCxfKRB5wjBKhyTmNsRkbTVfv
5/GQ7lwOmvwF3TghY0wdjHim5WyLAeSfNmlawtXSMJHsxR96Qkla9sReHaGBfii3
uctuJWd/rURxZTwhjaZsLTTvtynCeMcVpflUuOeQgULNmSHVe2XQSmgJkASENakH
tOhQP9ReQLF5hyDFpQG5gCObNyw0y/61AEGeX7u8zCvOPnBx/42PXWf5FyyqyBU9
U0XpV0yLyoXGBHpwlBZRuBhx97iC7c/Wd3RtuLk15HVk25KZRXvrQEnNlQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMsAxp2f11FYoqeQztsA072Fc6zTMB8GA1UdIwQY
MBaAFAXz4WAXLsx1yMqxuuJxvj6/QHqAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZQaFlCY3V6SFhJeXJHNjRuRy1QcjlBZW9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hYThiNDYtOTY0NS00NjIwLTg0Nzkt
NWQ1NjA5ODljZjdiLzEveXdER25aX1hVVmlpcDVETzJ3RFR2WVZ6ck5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9hYThiNDYtOTY0NS00NjIwLTg0NzktNWQ1NjA5ODljZjdi
LzEvQmZQaFlCY3V6SFhJeXJHNjRuRy1QcjlBZW9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQHWaeAAwQE
XDzwAwQE2U+gMA0GCSqGSIb3DQEBCwUAA4IBAQAU/JLD7TAZGQghpDqc+nZzloJ2
P9Wi5ELXYniO2Kz1niveQWIgWJ2aEcJO6FdCPhzVYTbsBWy72NXIHOwj7seA33VY
l8tgkpkAusMrkbUu1Z5BA3H45xqGS7y5t74vDUJfYJuU71atoiZeQ8gl+EVsk4Li
G2uoj+1OZe7QzVEFc0jm5nN5nGpiLP5k/27g66rD0Is/ScOezh08v9h3+b/VCq4H
MaoDWR+/P6tBFew3w09I0SFvl/7A4BCjAPGJ9IoYoJ9THSx25p9S77qzgrzVRXjS
Pg7MDXW9FgTGVTKLr3CQDdnXoSof7etjuTHvF13HDRQDSDX92O50jGgoL9Y9
-----END CERTIFICATE-----
Generated at Wed Jan 25 12:48:54 2023 by rpki-client.