Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/5TTqix2iOKfjBahfXZZ-ML87goo.roa
File: 5TTqix2iOKfjBahfXZZ-ML87goo.roa (raw, json)
Hash identifier: 0C2PsrUIBEtTRGUBR80N45H8dDWp/c6p/9E39F4htRw=
Subject key identifier: E5:34:EA:8B:1D:A2:38:A7:E3:05:A8:5F:5D:96:7E:30:BF:3B:82:8A
Certificate issuer: /CN=f2d593b1c87b81739ec41910295bf385f2c9a992
Certificate serial: 018E56D99A316C729D4A09D7A39AD2A95BA7
Authority key identifier: F2:D5:93:B1:C8:7B:81:73:9E:C4:19:10:29:5B:F3:85:F2:C9:A9:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8tWTsch7gXOexBkQKVvzhfLJqZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/5TTqix2iOKfjBahfXZZ-ML87goo.roa
Signing time: Tue 19 Mar 2024 13:14:45 +0000
ROA not before: Tue 19 Mar 2024 13:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210892
IP address blocks: 5.1.45.0/24 maxlen: 24
79.135.124.0/24 maxlen: 24
79.135.125.0/24 maxlen: 24
79.135.126.0/24 maxlen: 24
79.135.127.0/24 maxlen: 24
109.224.223.0/24 maxlen: 24
109.224.232.0/24 maxlen: 24
213.254.180.0/24 maxlen: 24
213.254.181.0/24 maxlen: 24
213.254.182.0/24 maxlen: 24
213.254.183.0/24 maxlen: 24
2a11:2b07:1::/48 maxlen: 48
2a11:2b07:f000::/48 maxlen: 48
2a11:2b07:f001::/48 maxlen: 48
2a11:2b07:f002::/48 maxlen: 48
2a11:2b07:f003::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/8tWTsch7gXOexBkQKVvzhfLJqZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/8tWTsch7gXOexBkQKVvzhfLJqZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8tWTsch7gXOexBkQKVvzhfLJqZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:d9:9a:31:6c:72:9d:4a:09:d7:a3:9a:d2:a9:5b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2d593b1c87b81739ec41910295bf385f2c9a992
Validity
Not Before: Mar 19 13:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e534ea8b1da238a7e305a85f5d967e30bf3b828a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f0:bd:6d:3a:1d:ea:8f:24:64:3c:de:38:6c:
ff:b3:94:b1:74:94:8e:a3:4d:9c:6f:a6:c7:d7:17:
99:37:4d:1b:3f:d5:12:84:b2:b2:3d:63:09:65:c4:
68:2d:98:9e:8a:95:b4:bc:47:e2:d2:12:73:db:10:
2b:ea:18:70:57:fd:7c:73:b2:42:dd:f8:02:13:8d:
aa:e5:8b:2b:2e:f2:15:4f:e8:1f:ea:81:dc:37:74:
38:80:60:04:ab:e6:36:e3:b0:c9:0e:07:bc:11:81:
59:4a:ba:b2:eb:a7:c9:5e:e9:16:90:d6:72:93:46:
b4:94:4f:fe:57:41:ab:14:74:62:7d:2f:c0:56:5f:
29:2b:f8:ed:e4:9d:84:9c:91:5f:14:0f:b9:4a:05:
83:9d:72:ab:de:a3:61:df:b5:6f:23:e5:53:18:f3:
59:88:08:0e:4c:93:f1:0a:e2:ba:52:10:16:84:eb:
16:fe:1e:6c:3a:16:22:2b:e1:57:d6:15:6a:53:f7:
cc:8d:2b:3c:28:53:46:22:b8:d4:e5:5f:45:7e:d8:
1f:60:2c:eb:04:b1:dc:69:e7:f8:09:95:b0:24:72:
83:f8:1b:e5:25:16:54:69:46:98:bb:f1:1d:93:32:
fd:e6:44:f0:24:ee:17:6d:76:d2:59:94:78:4f:df:
d3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:34:EA:8B:1D:A2:38:A7:E3:05:A8:5F:5D:96:7E:30:BF:3B:82:8A
X509v3 Authority Key Identifier:
keyid:F2:D5:93:B1:C8:7B:81:73:9E:C4:19:10:29:5B:F3:85:F2:C9:A9:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8tWTsch7gXOexBkQKVvzhfLJqZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/5TTqix2iOKfjBahfXZZ-ML87goo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9391a6-dd3f-4933-9da2-9b8d68ee87fc/1/8tWTsch7gXOexBkQKVvzhfLJqZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.45.0/24
79.135.124.0/22
109.224.223.0/24
109.224.232.0/24
213.254.180.0/22
IPv6:
2a11:2b07:1::/48
2a11:2b07:f000::/46
Signature Algorithm: sha256WithRSAEncryption
ae:90:09:97:11:9b:78:59:43:7e:39:fa:ce:0f:ff:9a:f3:a2:
bd:1a:06:f5:79:40:e3:db:34:5b:47:55:df:50:0a:bf:4b:66:
e0:9c:23:c6:71:bc:8c:3e:f6:56:a8:7a:37:56:a7:39:44:7f:
15:e2:d7:6b:8b:0d:76:ef:25:1b:13:64:84:8c:ce:fa:89:37:
8f:f7:05:40:1e:8b:07:77:00:25:53:ee:2b:50:c9:c1:6e:51:
09:66:d9:cf:61:fc:10:27:62:89:0b:8f:8f:ea:e1:9e:72:19:
01:e8:9f:ac:b0:ae:f4:db:fc:2d:70:89:20:00:f0:d2:03:39:
8e:6b:3d:67:53:cf:7f:a5:12:6f:7c:ff:49:7d:6a:13:dc:2d:
d1:43:7a:34:9e:ab:84:9d:a6:bd:8d:4e:ba:a5:be:39:d2:ce:
0c:7e:08:f8:3c:da:fc:0a:24:9f:eb:ee:c5:34:9f:c9:e6:d1:
8a:9c:a3:f2:38:5b:60:ff:1a:f8:91:e1:68:ff:d8:9e:79:e9:
61:6f:c4:5e:44:bb:45:4c:60:64:14:9c:ee:8e:08:da:5f:5e:
f9:34:46:9d:42:f6:d0:07:ff:b8:e8:ba:36:46:6a:c8:20:92:
ca:03:bd:d6:48:c1:59:36:15:72:fe:9a:f2:d9:61:80:54:21:
9e:1e:21:d9
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAY5W2ZoxbHKdSgnXo5rSqVunMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZDU5M2IxYzg3YjgxNzM5ZWM0MTkxMDI5NWJmMzg1ZjJj
OWE5OTIwHhcNMjQwMzE5MTMxNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTM0ZWE4YjFkYTIzOGE3ZTMwNWE4NWY1ZDk2N2UzMGJmM2I4MjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/C9bTod6o8kZDzeOGz/s5SxdJSO
o02cb6bH1xeZN00bP9UShLKyPWMJZcRoLZieipW0vEfi0hJz2xAr6hhwV/18c7JC
3fgCE42q5YsrLvIVT+gf6oHcN3Q4gGAEq+Y247DJDge8EYFZSrqy66fJXukWkNZy
k0a0lE/+V0GrFHRifS/AVl8pK/jt5J2EnJFfFA+5SgWDnXKr3qNh37VvI+VTGPNZ
iAgOTJPxCuK6UhAWhOsW/h5sOhYiK+FX1hVqU/fMjSs8KFNGIrjU5V9FftgfYCzr
BLHcaef4CZWwJHKD+BvlJRZUaUaYu/EdkzL95kTwJO4XbXbSWZR4T9/T6QIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFOU06osdojin4wWoX12WfjC/O4KKMB8GA1UdIwQY
MBaAFPLVk7HIe4FznsQZEClb84XyyamSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHRXVHNjaDdnWE9leEJrUUtWdnpoZkxKcVpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS85MzkxYTYtZGQzZi00OTMzLTlkYTIt
OWI4ZDY4ZWU4N2ZjLzEvNVRUcWl4MmlPS2ZqQmFoZlhaWi1NTDg3Z29vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS85MzkxYTYtZGQzZi00OTMzLTlkYTItOWI4ZDY4ZWU4N2Zj
LzEvOHRXVHNjaDdnWE9leEJrUUtWdnpoZkxKcVpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAkBAIAATAeAwQABQEtAwQC
T4d8AwQAbeDfAwQAbeDoAwQC1f60MBgEAgACMBIDBwAqESsHAAEDBwIqESsH8AAw
DQYJKoZIhvcNAQELBQADggEBAK6QCZcRm3hZQ345+s4P/5rzor0aBvV5QOPbNFtH
Vd9QCr9LZuCcI8ZxvIw+9laoejdWpzlEfxXi12uLDXbvJRsTZISMzvqJN4/3BUAe
iwd3ACVT7itQycFuUQlm2c9h/BAnYokLj4/q4Z5yGQHon6ywrvTb/C1wiSAA8NID
OY5rPWdTz3+lEm98/0l9ahPcLdFDejSeq4Sdpr2NTrqlvjnSzgx+CPg82vwKJJ/r
7sU0n8nm0Yqco/I4W2D/GviR4Wj/2J556WFvxF5Eu0VMYGQUnO6OCNpfXvk0Rp1C
9tAH/7joujZGasggksoDvdZIwVk2FXL+mvLZYYBUIZ4eIdk=
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:56 2024 by rpki-client on console-fra.rpki-client.org