Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c7agTmE6JywTk7AUpxYSkUwaEaA.roa
File: c7agTmE6JywTk7AUpxYSkUwaEaA.roa (raw, json)
Hash identifier: 0fYTO2xgb90a/qfZeZZRkp98TWk4Fab+0u5T+ZItF/M=
Subject key identifier: 73:B6:A0:4E:61:3A:27:2C:13:93:B0:14:A7:16:12:91:4C:1A:11:A0
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0190E9F019D00C08025C4DE064939F03008C
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c7agTmE6JywTk7AUpxYSkUwaEaA.roa
Signing time: Thu 25 Jul 2024 12:49:04 +0000
ROA not before: Thu 25 Jul 2024 12:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 45.92.172.0/24 maxlen: 24
45.135.177.0/24 maxlen: 24
45.138.144.0/24 maxlen: 24
45.138.147.0/24 maxlen: 24
45.140.60.0/24 maxlen: 24
45.140.62.0/24 maxlen: 24
45.140.63.0/24 maxlen: 24
45.142.72.0/24 maxlen: 24
45.142.73.0/24 maxlen: 24
45.142.74.0/24 maxlen: 24
45.142.75.0/24 maxlen: 24
45.143.142.0/24 maxlen: 24
45.147.252.0/24 maxlen: 24
45.152.212.0/24 maxlen: 24
45.152.213.0/24 maxlen: 24
45.152.214.0/24 maxlen: 24
45.152.215.0/24 maxlen: 24
45.156.148.0/24 maxlen: 24
45.156.151.0/24 maxlen: 24
45.158.45.0/24 maxlen: 24
87.247.141.0/24 maxlen: 24
91.188.228.0/24 maxlen: 24
91.188.229.0/24 maxlen: 24
91.188.230.0/24 maxlen: 24
91.188.231.0/24 maxlen: 24
91.213.35.0/24 maxlen: 24
91.213.50.0/24 maxlen: 24
91.220.206.0/24 maxlen: 24
91.220.229.0/24 maxlen: 24
193.8.171.0/24 maxlen: 24
194.156.0.0/24 maxlen: 24
194.156.27.0/24 maxlen: 24
213.226.102.0/24 maxlen: 24
213.226.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:f0:19:d0:0c:08:02:5c:4d:e0:64:93:9f:03:00:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 25 12:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73b6a04e613a272c1393b014a71612914c1a11a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:28:dd:cb:b9:8d:51:cb:f7:7a:d9:9a:6d:17:
d1:b4:8f:ba:d7:50:a2:18:45:db:04:fb:4d:ab:29:
06:df:0a:46:dd:d5:a0:15:a0:82:cc:32:0e:c5:6d:
55:cf:6c:4e:b0:7c:e2:42:75:fb:04:ad:96:40:39:
be:cb:ff:fe:bb:a3:b5:9b:6e:7a:4c:a9:3d:38:5b:
84:3e:c2:3a:a1:d9:ad:d1:10:1b:7f:f5:ee:1e:41:
cd:34:94:b6:e0:54:88:cb:30:91:21:cb:48:14:75:
ca:1d:c2:a4:12:36:e1:9e:2e:83:31:34:b8:44:89:
fc:82:74:fa:7d:3d:fe:6e:f1:6d:b7:ec:d1:4c:cb:
2e:a7:f8:07:ba:4c:cb:02:98:e1:f4:54:4f:55:7b:
66:26:8d:e1:bb:a3:eb:18:a3:ad:30:10:fa:bd:d8:
f2:57:03:80:12:a3:a3:bf:64:32:25:48:50:31:ba:
f9:31:2a:94:5c:2d:c1:ff:d2:96:10:d7:b5:22:83:
f5:2b:30:c6:02:67:c2:bc:ff:cc:70:63:d9:c8:ea:
e6:0a:30:6f:11:e2:b8:03:e8:8c:13:39:bf:63:fb:
85:82:55:92:22:08:72:3b:52:57:ae:04:b2:da:5b:
3c:45:c0:29:28:5d:83:b4:f3:3d:2b:eb:24:2b:bc:
ac:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B6:A0:4E:61:3A:27:2C:13:93:B0:14:A7:16:12:91:4C:1A:11:A0
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/c7agTmE6JywTk7AUpxYSkUwaEaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.172.0/24
45.135.177.0/24
45.138.144.0/24
45.138.147.0/24
45.140.60.0/24
45.140.62.0/23
45.142.72.0/22
45.143.142.0/24
45.147.252.0/24
45.152.212.0/22
45.156.148.0/24
45.156.151.0/24
45.158.45.0/24
87.247.141.0/24
91.188.228.0/22
91.213.35.0/24
91.213.50.0/24
91.220.206.0/24
91.220.229.0/24
193.8.171.0/24
194.156.0.0/24
194.156.27.0/24
213.226.102.0/23
Signature Algorithm: sha256WithRSAEncryption
75:f2:c8:89:a7:68:f0:2d:01:69:02:94:87:ab:98:d2:be:78:
15:51:fe:73:94:b9:e2:28:00:fd:e5:13:aa:b2:20:2d:9c:55:
18:b2:ab:bf:5d:81:b9:0b:d6:30:3d:14:5a:21:09:ac:ae:4b:
5c:44:43:a5:b0:d8:63:0a:cf:73:c7:40:48:fc:71:39:7c:dd:
88:6c:b9:05:2e:1d:b2:14:3e:7b:50:dc:0b:00:ee:28:e6:5a:
31:44:18:54:b4:72:8f:01:26:09:fb:85:a7:cf:b3:ea:c9:ea:
09:56:00:08:f3:82:8d:36:e9:51:df:36:55:b7:8f:57:20:e3:
7a:59:d1:42:d5:58:78:c1:6e:14:77:46:ed:9c:65:80:6a:38:
a6:81:90:ff:e7:50:e4:3a:91:e2:2b:e5:97:98:21:b3:e7:ac:
13:40:0b:5b:08:07:5f:17:81:b2:57:96:db:5c:7a:40:61:d9:
d5:ed:64:43:73:35:a7:1f:2a:e3:ea:b8:a6:d5:0a:24:29:50:
49:76:67:9d:a9:50:b5:8c:1c:0d:51:86:1d:fc:e9:ab:97:95:
2b:51:1a:f9:18:88:bf:1a:98:66:f7:11:b5:80:f4:ec:d2:56:
9e:43:28:33:80:fb:98:86:57:b7:7d:e1:e1:a3:31:1d:06:98:
9c:e5:9d:11
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAZDp8BnQDAgCXE3gZJOfAwCMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjQwNzI1MTI0OTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3M2I2YTA0ZTYxM2EyNzJjMTM5M2IwMTRhNzE2MTI5MTRjMWExMWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSjdy7mNUcv3etmabRfRtI+611Ci
GEXbBPtNqykG3wpG3dWgFaCCzDIOxW1Vz2xOsHziQnX7BK2WQDm+y//+u6O1m256
TKk9OFuEPsI6odmt0RAbf/XuHkHNNJS24FSIyzCRIctIFHXKHcKkEjbhni6DMTS4
RIn8gnT6fT3+bvFtt+zRTMsup/gHukzLApjh9FRPVXtmJo3hu6PrGKOtMBD6vdjy
VwOAEqOjv2QyJUhQMbr5MSqUXC3B/9KWENe1IoP1KzDGAmfCvP/McGPZyOrmCjBv
EeK4A+iMEzm/Y/uFglWSIghyO1JXrgSy2ls8RcApKF2DtPM9K+skK7ys9QIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFHO2oE5hOicsE5OwFKcWEpFMGhGgMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvYzdhZ1RtRTZKeXdUazdBVXB4WVNrVXdhRWFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAAt
XKwDBAAth7EDBAAtipADBAAtipMDBAAtjDwDBAEtjD4DBAItjkgDBAAtj44DBAAt
k/wDBAItmNQDBAAtnJQDBAAtnJcDBAAtni0DBABX940DBAJbvOQDBABb1SMDBABb
1TIDBABb3M4DBABb3OUDBADBCKsDBADCnAADBADCnBsDBAHV4mYwDQYJKoZIhvcN
AQELBQADggEBAHXyyImnaPAtAWkClIermNK+eBVR/nOUueIoAP3lE6qyIC2cVRiy
q79dgbkL1jA9FFohCayuS1xEQ6Ww2GMKz3PHQEj8cTl83YhsuQUuHbIUPntQ3AsA
7ijmWjFEGFS0co8BJgn7hafPs+rJ6glWAAjzgo026VHfNlW3j1cg43pZ0ULVWHjB
bhR3Ru2cZYBqOKaBkP/nUOQ6keIr5ZeYIbPnrBNAC1sIB18XgbJXlttcekBh2dXt
ZENzNacfKuPquKbVCiQpUEl2Z52pULWMHA1Rhh386auXlStRGvkYiL8amGb3EbWA
9OzSVp5DKDOA+5iGV7d94eGjMR0GmJzlnRE=
-----END CERTIFICATE-----
Generated at Tue Nov 26 00:56:20 2024 by rpki-client on console-fra.rpki-client.org