Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/_WDZ5Y0ialc-WG-7LUM4xmwScMU.roa
File: _WDZ5Y0ialc-WG-7LUM4xmwScMU.roa (raw, json)
Hash identifier: c90O3XcX9SDa4i8PaggOvrl5hZMS3/rpByWQHdyayQ8=
Subject key identifier: FD:60:D9:E5:8D:22:6A:57:3E:58:6F:BB:2D:43:38:C6:6C:12:70:C5
Certificate issuer: /CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Certificate serial: 018CC8DE68EB05A5F8F5E4781AB499D7301E
Authority key identifier: 27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/_WDZ5Y0ialc-WG-7LUM4xmwScMU.roa
Signing time: Tue 02 Jan 2024 06:31:08 +0000
ROA not before: Tue 02 Jan 2024 06:31:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48391
IP address blocks: 95.81.84.0/23 maxlen: 24
95.81.86.0/24 maxlen: 24
95.81.93.0/24 maxlen: 24
95.81.92.0/24 maxlen: 24
95.81.92.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:68:eb:05:a5:f8:f5:e4:78:1a:b4:99:d7:30:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Validity
Not Before: Jan 2 06:31:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd60d9e58d226a573e586fbb2d4338c66c1270c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:11:ed:1a:00:30:77:f5:ba:17:4c:2e:26:a2:
34:54:e4:ef:d9:64:fb:42:ce:c4:a6:1a:06:e7:6c:
ea:3a:0b:3a:a1:07:f3:3c:63:aa:7e:82:ae:0b:8a:
df:8c:a9:51:a0:a0:e9:0e:9a:fa:72:76:b0:1f:a3:
f7:e3:b5:a4:06:7b:1f:e5:61:22:2d:5a:79:9e:31:
b8:df:69:94:81:a0:6d:5a:75:6b:27:fc:dc:66:57:
5d:1b:84:8a:58:fc:2a:8b:c0:b1:d9:53:2c:ec:76:
36:16:dc:38:b4:8c:8b:2d:bf:ef:6d:1a:1f:2e:18:
34:b5:dc:34:eb:91:d8:00:82:c6:37:0c:dc:2e:12:
32:df:bb:79:e9:df:d3:fb:94:42:48:c2:2b:30:ac:
29:fe:60:89:80:76:08:44:ce:07:5b:5c:c2:47:10:
c9:74:07:ad:3e:e0:77:ef:a0:45:9f:58:e6:64:2a:
88:e7:42:cb:4e:15:5d:99:aa:87:6e:01:e1:80:ca:
41:2b:01:b3:bf:1f:de:42:53:e3:7a:3f:1f:e7:08:
88:08:cf:d6:5a:96:90:76:65:80:9e:fc:15:34:3c:
f5:52:86:7e:af:aa:23:56:5e:78:ea:67:49:ef:8b:
a0:c8:41:8e:ac:74:6b:a9:ea:b1:3e:02:22:7a:5c:
40:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:60:D9:E5:8D:22:6A:57:3E:58:6F:BB:2D:43:38:C6:6C:12:70:C5
X509v3 Authority Key Identifier:
keyid:27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/_WDZ5Y0ialc-WG-7LUM4xmwScMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.81.84.0-95.81.86.255
95.81.92.0/23
Signature Algorithm: sha256WithRSAEncryption
26:ca:19:73:9a:f3:4f:8a:7b:da:37:bb:5d:02:a5:e5:93:2c:
b3:e9:d3:1d:78:be:04:2f:3f:55:9a:08:cb:ba:4b:79:4e:ba:
c8:ab:e2:3d:62:73:57:1e:40:1f:7f:e5:d9:7d:69:91:1b:00:
4a:d1:d8:48:29:42:97:6c:71:77:01:4d:52:4c:a7:5f:76:4e:
90:70:ce:81:70:60:2d:52:80:1d:bd:ab:56:64:1a:f1:bb:0b:
5e:fa:a5:c7:36:b5:55:3b:22:3d:13:20:22:4f:06:3d:42:c1:
ae:6e:ee:01:67:78:dc:c0:11:e3:4d:bb:fb:c7:f3:9f:2a:ff:
be:e0:52:69:f6:1c:83:89:32:34:a4:cf:be:a9:00:65:2b:eb:
28:00:a0:48:d6:22:bf:f0:1b:a5:8d:08:33:21:6c:6c:d5:3b:
f7:bc:24:c8:dc:b2:2e:dc:91:fc:ff:c2:0a:77:eb:12:51:33:
7a:e8:aa:6d:f8:0b:e4:1d:67:85:ff:9a:5b:a7:80:e9:79:a9:
cc:22:41:2c:05:db:59:cc:68:51:27:b2:a3:14:ae:cc:e0:7c:
91:c0:00:8e:8e:55:e2:9c:5a:1c:dc:5e:93:40:8c:ca:56:98:
24:c9:65:8c:f8:9a:74:4c:50:ce:75:8e:b5:cd:6c:28:29:c6:
2f:be:fa:08
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 4 04:47:50 2024 by rpki-client on console-ams.rpki-client.org