Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Wn5GQ5N9TzfVZAG-_HGYPMTa6nc.roa
File: Wn5GQ5N9TzfVZAG-_HGYPMTa6nc.roa (raw, json)
Hash identifier: 6vcPs+j8A7qPMhwebs2mpqT5OSx1q6zHOZmMf0wFW2Q=
Subject key identifier: 5A:7E:46:43:93:7D:4F:37:D5:64:01:BE:FC:71:98:3C:C4:DA:EA:77
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7954147B248A94517A9B47A3719C7A6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Wn5GQ5N9TzfVZAG-_HGYPMTa6nc.roa
Signing time: Tue 02 Jan 2024 00:31:36 +0000
ROA not before: Tue 02 Jan 2024 00:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9050
IP address blocks: 94.176.164.0/23 maxlen: 24
94.177.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:41:47:b2:48:a9:45:17:a9:b4:7a:37:19:c7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a7e4643937d4f37d56401befc71983cc4daea77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c3:e7:ce:be:5c:eb:01:b5:b1:72:50:1d:a1:
b0:0e:51:60:b8:e4:ec:29:4c:92:6c:14:c9:ef:ad:
5f:25:f9:53:f0:44:0a:46:18:00:d6:6c:e0:e9:d2:
a3:eb:b5:ad:64:55:0d:e0:6f:c1:4f:7a:30:24:a5:
f0:c4:88:da:a2:e9:68:5e:63:1f:4e:c2:a6:01:00:
de:be:30:8c:83:74:66:19:28:ae:d5:ca:35:3c:53:
c5:82:e9:c3:62:6f:2f:94:6c:55:7b:46:fb:90:e5:
e6:14:b5:a0:7b:61:b4:7f:11:9d:7d:8d:3d:5c:0e:
0d:80:ad:02:f0:21:a6:a5:e6:31:02:5f:a6:54:81:
5f:3d:04:b3:a3:17:1e:90:ca:ac:8b:49:92:7b:b6:
e7:d4:e0:3b:1c:7e:c4:99:48:5b:8f:95:bd:09:ca:
b1:85:90:a5:9e:40:05:94:10:bd:39:8e:79:d7:fc:
d3:71:42:ba:4d:53:c6:dc:43:34:82:6c:b2:b5:44:
5a:41:18:c9:25:b0:f8:67:08:e9:e2:ab:0e:f0:f5:
ee:e2:b2:c9:ae:66:0f:5d:fe:a4:23:d5:8f:6b:5b:
96:fa:00:1a:15:07:29:be:a9:57:ab:68:6e:3b:cb:
9f:d6:be:71:fb:ba:d2:8f:ce:bb:98:0f:1e:28:d8:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7E:46:43:93:7D:4F:37:D5:64:01:BE:FC:71:98:3C:C4:DA:EA:77
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Wn5GQ5N9TzfVZAG-_HGYPMTa6nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.164.0/23
94.177.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:98:05:de:77:68:c6:0d:18:6d:32:8b:c3:c1:80:2d:32:fd:
be:8f:60:d8:e6:09:a0:1b:25:2b:93:5d:57:fc:c8:0a:38:e8:
7d:ff:e9:db:d4:df:52:61:3c:f9:db:18:67:aa:55:f2:fa:36:
c0:64:b9:c0:10:a4:b6:2a:d9:f6:cd:44:76:eb:c7:98:1c:dc:
2c:53:c6:8b:f8:ce:90:83:40:7b:f0:b2:59:ed:0a:e1:b6:b7:
b4:6a:3e:10:48:fe:cc:b0:5e:ba:6b:44:32:fe:a6:0f:b4:45:
34:e0:eb:4a:27:6e:1f:50:82:23:3e:45:39:d1:7b:8a:37:01:
ce:1e:60:a5:a8:3b:28:14:c2:18:d7:b1:6f:fd:0f:6a:b9:25:
ba:2d:f8:e1:1b:a1:10:3b:22:11:1e:06:90:23:75:aa:ac:35:
b6:23:c0:51:cd:6f:12:35:a6:6f:84:23:ac:c7:c9:be:71:f5:
be:af:41:4b:2e:a2:70:56:c7:1d:0b:f3:83:34:ed:8a:3f:69:
76:ad:d9:71:64:f8:02:6d:0c:35:5f:f2:c8:01:61:2b:7a:6d:
ab:45:5b:39:f6:07:00:4e:f0:41:9d:55:0e:f9:9c:19:c7:cc:
29:fa:f0:b9:49:2e:83:1f:f4:d4:39:17:2a:09:96:ee:cc:4c:
0a:5a:95:8e
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzHlUFHskipRReptHo3GcemMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjQwMTAyMDAzMTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTdlNDY0MzkzN2Q0ZjM3ZDU2NDAxYmVmYzcxOTgzY2M0ZGFlYTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsPnzr5c6wG1sXJQHaGwDlFguOTs
KUySbBTJ761fJflT8EQKRhgA1mzg6dKj67WtZFUN4G/BT3owJKXwxIjaouloXmMf
TsKmAQDevjCMg3RmGSiu1co1PFPFgunDYm8vlGxVe0b7kOXmFLWge2G0fxGdfY09
XA4NgK0C8CGmpeYxAl+mVIFfPQSzoxcekMqsi0mSe7bn1OA7HH7EmUhbj5W9Ccqx
hZClnkAFlBC9OY551/zTcUK6TVPG3EM0gmyytURaQRjJJbD4Zwjp4qsO8PXu4rLJ
rmYPXf6kI9WPa1uW+gAaFQcpvqlXq2huO8uf1r5x+7rSj867mA8eKNhCuQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFFp+RkOTfU831WQBvvxxmDzE2up3MB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL1duNUdRNU45VHpmVlpBRy1fSEdZUE1UYTZuYy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAFesKQD
BABesWswDQYJKoZIhvcNAQELBQADggEBAKyYBd53aMYNGG0yi8PBgC0y/b6PYNjm
CaAbJSuTXVf8yAo46H3/6dvU31JhPPnbGGeqVfL6NsBkucAQpLYq2fbNRHbrx5gc
3CxTxov4zpCDQHvwslntCuG2t7RqPhBI/sywXrprRDL+pg+0RTTg60onbh9QgiM+
RTnRe4o3Ac4eYKWoOygUwhjXsW/9D2q5Jbot+OEboRA7IhEeBpAjdaqsNbYjwFHN
bxI1pm+EI6zHyb5x9b6vQUsuonBWxx0L84M07Yo/aXat2XFk+AJtDDVf8sgBYSt6
batFWzn2BwBO8EGdVQ75nBnHzCn68LlJLoMf9NQ5FyoJlu7MTApalY4=
-----END CERTIFICATE-----
Generated at Thu Jun 20 10:56:37 2024 by rpki-client on console-ams.rpki-client.org