Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TGjLL4o6wttMYrsZ9FzS9PfP7Ek.roa
File: TGjLL4o6wttMYrsZ9FzS9PfP7Ek.roa (raw, json)
Hash identifier: xiUy46C97tpKMhKu/atpeQc9ZcCt/y9kRXmBOUsLac8=
Subject key identifier: 4C:68:CB:2F:8A:3A:C2:DB:4C:62:BB:19:F4:5C:D2:F4:F7:CF:EC:49
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EA744B331799F34685372F5F8C45FF5EF
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TGjLL4o6wttMYrsZ9FzS9PfP7Ek.roa
Signing time: Thu 04 Apr 2024 04:01:20 +0000
ROA not before: Thu 04 Apr 2024 04:01:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12332
IP address blocks: 5.143.112.0/20 maxlen: 20
77.34.0.0/15 maxlen: 24
81.2.0.0/18 maxlen: 19
81.2.0.0/19 maxlen: 24
82.162.0.0/16 maxlen: 18
86.102.0.0/16 maxlen: 18
212.91.192.0/19 maxlen: 24
212.107.192.0/19 maxlen: 24
212.107.192.0/20 maxlen: 24
212.107.208.0/20 maxlen: 24
212.122.0.0/19 maxlen: 24
212.122.0.0/20 maxlen: 24
212.122.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 00:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a7:44:b3:31:79:9f:34:68:53:72:f5:f8:c4:5f:f5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 4 04:01:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c68cb2f8a3ac2db4c62bb19f45cd2f4f7cfec49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:eb:29:59:9c:4a:d3:05:64:31:c0:db:a7:ff:
6b:b6:0d:1c:ca:63:9e:62:4b:e5:a8:f9:02:fa:ff:
0d:1d:05:5f:3f:89:1d:07:43:dd:a8:1c:a0:de:11:
f5:a0:0e:41:5c:be:17:3a:55:4b:7e:99:de:d9:c2:
8d:48:93:c1:78:2e:82:f5:54:7b:ca:e8:5b:da:91:
3b:9b:d0:76:dd:3f:13:b0:d4:fb:1f:04:8b:89:da:
be:2a:28:8f:2e:f5:16:fb:6d:85:70:4e:62:12:16:
ed:66:65:a7:2c:35:67:a1:6d:3e:be:fb:e5:aa:a0:
51:f9:40:a9:40:fb:8e:ca:7a:8f:67:87:49:85:8b:
2e:a3:59:5f:67:58:3d:a9:f5:f2:8f:cf:5b:5e:2a:
43:16:34:57:e1:ea:92:4c:6f:a0:ee:a5:85:89:cd:
93:12:67:bf:a6:cf:c9:2c:8a:63:0e:8c:30:57:57:
f0:09:a7:82:db:b9:44:49:6c:fa:94:5d:e6:42:28:
7f:6c:ae:20:ed:46:5c:db:77:92:65:5e:df:f7:ee:
25:90:5a:37:27:67:26:9f:d9:3e:c5:28:76:34:67:
eb:c3:b7:7c:a5:98:b5:0b:db:34:d5:2e:38:4a:89:
e8:25:6f:e0:d7:0b:2a:d7:10:65:f4:04:2b:d5:c6:
da:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:68:CB:2F:8A:3A:C2:DB:4C:62:BB:19:F4:5C:D2:F4:F7:CF:EC:49
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/TGjLL4o6wttMYrsZ9FzS9PfP7Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.143.112.0/20
77.34.0.0/15
81.2.0.0/18
82.162.0.0/16
86.102.0.0/16
212.91.192.0/19
212.107.192.0/19
212.122.0.0/19
Signature Algorithm: sha256WithRSAEncryption
14:3b:00:65:bd:4e:c5:91:73:6a:5a:b8:7f:01:5f:ef:06:61:
89:95:75:d1:c7:a9:5e:f9:98:72:e7:33:43:29:ce:de:08:a3:
88:cb:25:3e:e2:90:43:ee:3f:5e:09:c0:d3:a2:f2:98:5a:67:
0c:11:f9:8c:12:8e:a7:08:4f:ba:b7:57:89:d2:75:51:72:f5:
f1:44:02:ec:af:5e:80:c0:d5:05:5f:79:f3:7e:76:8d:e4:4c:
00:93:5f:a6:a8:ae:15:9f:3f:11:13:3e:ce:db:78:28:99:86:
07:f4:59:ef:64:f2:1e:bd:03:12:f8:d0:66:0c:9f:09:c0:04:
78:5c:de:8f:d6:37:8b:e0:ab:75:1f:45:1d:ae:58:79:50:1e:
0d:62:6c:43:9f:b3:ff:89:4e:cd:e9:ee:97:26:5f:7a:35:36:
2a:cb:42:e8:1e:7a:b5:ad:13:33:3b:9f:56:19:76:cc:a1:0f:
3b:80:a6:dc:f8:7e:53:fc:1d:40:c4:79:7c:9a:0d:be:52:67:
f9:58:de:b8:8a:30:e3:b0:d6:dd:7c:ef:47:3d:e2:ab:b1:23:
29:8f:73:f5:e6:6f:62:88:81:58:1b:f8:7f:9c:7b:47:10:3a:
10:1d:b6:36:a6:4c:87:5f:7e:5e:0d:2b:29:aa:6f:4b:bd:da:
5a:48:ba:e2
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAY6nRLMxeZ80aFNy9fjEX/XvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDA0MDQwMTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzY4Y2IyZjhhM2FjMmRiNGM2MmJiMTlmNDVjZDJmNGY3Y2ZlYzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOspWZxK0wVkMcDbp/9rtg0cymOe
YkvlqPkC+v8NHQVfP4kdB0PdqByg3hH1oA5BXL4XOlVLfpne2cKNSJPBeC6C9VR7
yuhb2pE7m9B23T8TsNT7HwSLidq+KiiPLvUW+22FcE5iEhbtZmWnLDVnoW0+vvvl
qqBR+UCpQPuOynqPZ4dJhYsuo1lfZ1g9qfXyj89bXipDFjRX4eqSTG+g7qWFic2T
Eme/ps/JLIpjDowwV1fwCaeC27lESWz6lF3mQih/bK4g7UZc23eSZV7f9+4lkFo3
J2cmn9k+xSh2NGfrw7d8pZi1C9s01S44SonoJW/g1wsq1xBl9AQr1cbaGQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFExoyy+KOsLbTGK7GfRc0vT3z+xJMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvVEdqTEw0bzZ3dHRNWXJzWjlGelM5UGZQN0VrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAzBAIAATAtAwQEBY9wAwMB
TSIDBAZRAgADAwBSogMDAFZmAwQF1FvAAwQF1GvAAwQF1HoAMA0GCSqGSIb3DQEB
CwUAA4IBAQAUOwBlvU7FkXNqWrh/AV/vBmGJlXXRx6le+Zhy5zNDKc7eCKOIyyU+
4pBD7j9eCcDTovKYWmcMEfmMEo6nCE+6t1eJ0nVRcvXxRALsr16AwNUFX3nzfnaN
5EwAk1+mqK4Vnz8REz7O23gomYYH9FnvZPIevQMS+NBmDJ8JwAR4XN6P1jeL4Kt1
H0Udrlh5UB4NYmxDn7P/iU7N6e6XJl96NTYqy0LoHnq1rRMzO59WGXbMoQ87gKbc
+H5T/B1AxHl8mg2+Umf5WN64ijDjsNbdfO9HPeKrsSMpj3P15m9iiIFYG/h/nHtH
EDoQHbY2pkyHX35eDSspqm9LvdpaSLri
-----END CERTIFICATE-----
Generated at Sat Nov 23 07:36:25 2024 by rpki-client on console-fra.rpki-client.org