Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/WvF4EEm_t4tWgHeyj9KywL3CFjg.roa
File: WvF4EEm_t4tWgHeyj9KywL3CFjg.roa (raw, json)
Hash identifier: 3NnA375d9OjkMTdQ92zD7wm+l7Uq8Mj+PTrAcyybAvE=
Subject key identifier: 5A:F1:78:10:49:BF:B7:8B:56:80:77:B2:8F:D2:B2:C0:BD:C2:16:38
Certificate issuer: /CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Certificate serial: 018CC2DAC923A45BDFA295C4BE1330AB33C7
Authority key identifier: 9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/WvF4EEm_t4tWgHeyj9KywL3CFjg.roa
Signing time: Mon 01 Jan 2024 02:29:27 +0000
ROA not before: Mon 01 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213145
IP address blocks: 188.125.173.0/24 maxlen: 24
188.125.175.0/24 maxlen: 24
185.117.99.0/24 maxlen: 24
185.14.172.0/24 maxlen: 24
185.14.173.0/24 maxlen: 24
185.14.174.0/24 maxlen: 24
185.14.175.0/24 maxlen: 24
188.125.172.0/24 maxlen: 24
188.125.171.0/24 maxlen: 24
185.117.120.0/24 maxlen: 24
185.117.121.0/24 maxlen: 24
185.117.123.0/24 maxlen: 24
185.117.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c9:23:a4:5b:df:a2:95:c4:be:13:30:ab:33:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e9e6887ea7572a6411306c87b0cc089397a6354
Validity
Not Before: Jan 1 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5af1781049bfb78b568077b28fd2b2c0bdc21638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e0:9e:80:9c:c8:dc:a0:62:1b:43:88:25:03:
1d:99:20:6d:fd:b9:b9:cb:53:14:ba:82:3c:1a:1c:
e1:c6:40:34:b5:4b:13:01:50:71:ce:62:65:54:84:
f1:5f:9c:65:ba:06:7e:d6:c7:d6:ac:ac:92:b5:ef:
ab:04:d6:d9:de:9b:27:17:70:4c:0f:d4:25:a9:08:
c8:27:4e:7c:55:c2:15:36:87:cf:91:fc:0a:14:f7:
b4:31:34:d3:fc:78:17:01:6c:91:6d:e5:5c:12:37:
65:66:95:40:83:31:e5:70:02:c6:a2:8a:96:22:b4:
31:2a:a0:f7:b6:7c:ea:6b:bd:2f:13:dd:30:c8:d8:
7e:2c:06:80:60:a0:14:35:6c:8a:8e:23:b3:9c:94:
52:3a:d9:1c:c2:d4:c7:c9:65:5f:8c:17:a6:86:9e:
85:3f:8a:3a:6b:7a:fc:9e:83:0a:62:eb:27:f8:37:
fa:d2:5d:b9:45:45:3d:76:bf:46:54:8a:f1:64:85:
46:82:24:77:7c:53:98:aa:6c:d1:62:e6:c6:51:69:
7f:65:03:13:0a:d7:e8:91:cc:1e:54:f6:7b:e8:4f:
c9:2b:49:f8:f1:d5:88:b1:fa:d4:25:23:35:9c:35:
97:57:d0:af:78:02:4c:59:97:45:3f:f1:10:7b:8a:
2f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F1:78:10:49:BF:B7:8B:56:80:77:B2:8F:D2:B2:C0:BD:C2:16:38
X509v3 Authority Key Identifier:
keyid:9E:9E:68:87:EA:75:72:A6:41:13:06:C8:7B:0C:C0:89:39:7A:63:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/np5oh-p1cqZBEwbIewzAiTl6Y1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/WvF4EEm_t4tWgHeyj9KywL3CFjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e2abad-58fa-4ced-8650-ec508dec7793/1/np5oh-p1cqZBEwbIewzAiTl6Y1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.172.0/22
185.117.99.0/24
185.117.120.0/22
188.125.171.0-188.125.173.255
188.125.175.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:f8:1e:6d:23:c3:c6:30:6c:8c:22:2b:40:8a:81:b5:42:60:
ae:3c:e1:33:9f:ad:62:0e:ce:51:cd:b3:34:b7:ab:6f:9d:f0:
ef:25:85:e0:7d:37:97:f4:b4:b2:5b:aa:bd:4c:7a:75:df:37:
cf:d0:8b:9c:bd:ea:e9:12:0f:0a:16:b0:c8:01:08:21:67:ed:
ab:44:ea:94:e5:7f:aa:63:4d:17:44:1a:33:fe:cd:22:a0:d7:
85:8c:6a:db:d4:20:06:5b:d4:10:8c:b3:61:f5:47:9f:ae:c0:
c6:ce:6c:e3:85:ed:cc:4f:7a:64:85:ad:26:91:69:ea:c3:f2:
f1:fa:3e:24:12:f8:2e:5d:9b:c4:2c:c6:74:be:bb:8e:9d:8e:
cd:d1:d0:f1:c9:f1:61:bf:45:5a:27:93:57:a8:3c:40:f8:1c:
49:2f:7e:4a:d9:d9:45:90:2c:ab:d8:70:2f:c7:11:bb:82:37:
a3:df:98:b5:69:4c:3a:45:df:f7:85:09:9c:91:eb:63:1d:c0:
08:fe:bb:8e:16:c6:96:9c:9f:62:d7:f1:7b:82:fc:d1:f4:e9:
37:9e:df:ce:5f:98:f3:ba:55:b6:fc:3c:a6:98:ea:08:b1:88:
d5:c5:b7:14:6d:d8:ee:8b:47:fa:47:d9:2d:8b:96:05:42:cb:
ed:dd:5a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 16:20:10 2024 by rpki-client on console-fra.rpki-client.org