Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WUOCMMqj80nkye5itG5bYwJw9Yc.roa
File: WUOCMMqj80nkye5itG5bYwJw9Yc.roa (raw, json)
Hash identifier: 29LcR3cZU+Y9VI2bElXWUWJCWFJXCZH0MjrTxrsdRqY=
Subject key identifier: 59:43:82:30:CA:A3:F3:49:E4:C9:EE:62:B4:6E:5B:63:02:70:F5:87
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FA0E4E3D8F49983BA42D1B6B8A68C
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WUOCMMqj80nkye5itG5bYwJw9Yc.roa
Signing time: Tue 02 Jan 2024 04:30:07 +0000
ROA not before: Tue 02 Jan 2024 04:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7393
IP address blocks: 193.37.249.0/24 maxlen: 24
176.110.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a0:e4:e3:d8:f4:99:83:ba:42:d1:b6:b8:a6:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59438230caa3f349e4c9ee62b46e5b630270f587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2f:c4:f7:6a:03:1e:91:52:1c:47:35:94:3f:
2f:fa:8f:ba:1c:8d:5b:85:bc:7e:bc:7e:8e:d2:94:
3b:6d:13:75:b8:3f:a5:fe:62:5f:6a:82:10:b7:c2:
4a:d7:75:b1:53:c1:5f:96:24:0e:8b:92:2d:7e:38:
02:e3:53:83:22:09:89:9f:39:a0:76:b6:01:82:77:
ea:1c:b1:73:e7:d4:4d:a3:5a:66:45:ba:f1:1c:c4:
a2:ad:b4:79:09:95:96:38:4a:c1:7c:5e:f7:7d:be:
dd:43:38:8b:02:af:8c:fe:bb:1e:8b:b8:2f:d2:3c:
7b:28:de:df:a1:fd:04:e7:a6:c1:e5:79:de:f9:7f:
8b:a5:76:20:39:7d:1b:21:71:1f:b2:ca:6c:f4:c1:
b4:df:66:74:43:37:0e:a4:74:0b:1d:bd:2a:fd:80:
6c:46:65:d9:a9:d7:47:c7:9d:e2:11:e2:04:2b:5b:
9b:77:d2:06:51:c2:1e:0c:21:34:cd:3b:1d:d1:2d:
86:ef:83:3f:13:1f:75:59:c3:7f:e7:36:d8:32:c6:
01:37:9d:ad:62:12:23:89:4e:24:2d:7d:fc:c1:f0:
3a:07:a2:cb:f0:c4:01:07:3d:2d:57:25:62:35:27:
80:e0:bf:8f:a4:30:73:9d:67:5d:ff:13:c0:be:a5:
22:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:43:82:30:CA:A3:F3:49:E4:C9:EE:62:B4:6E:5B:63:02:70:F5:87
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WUOCMMqj80nkye5itG5bYwJw9Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.110.0/24
193.37.249.0/24
Signature Algorithm: sha256WithRSAEncryption
59:4e:17:5b:de:d0:e1:1f:08:80:f0:4f:d8:6d:43:b2:82:02:
5e:15:68:53:a2:ce:8c:c6:1d:98:f4:1c:52:a0:48:16:12:0b:
4e:fd:99:0b:31:89:6f:46:d0:ae:31:72:71:ab:f2:0d:07:ee:
c9:73:9e:22:71:e8:ff:62:94:2a:90:16:42:67:cd:3c:56:27:
07:5b:4c:bd:9e:59:db:93:68:ca:4d:dd:b3:f7:9f:21:05:04:
50:f0:b0:7f:5f:cb:48:ea:32:54:42:93:89:77:0a:fc:3e:ef:
c6:fa:c2:5a:b7:63:c3:2c:ee:22:ad:44:84:22:d6:d5:e4:9b:
c1:06:d6:1f:10:c9:20:90:25:08:09:b6:8c:62:20:e3:aa:b1:
88:0f:45:71:5e:09:87:50:1e:f5:3b:53:38:93:82:92:2d:72:
3b:d0:37:3b:e5:4a:c4:db:fd:f2:cd:e1:c3:ba:81:53:7c:e5:
d3:b9:11:80:63:74:d5:88:a9:83:0a:b4:d1:69:71:94:20:3a:
16:19:b1:83:d0:6d:6b:d8:a9:58:de:f6:21:cd:cb:88:4d:63:
22:6d:43:ff:6d:ce:89:14:09:a9:92:95:f2:5f:47:33:99:e0:
57:d3:ab:f4:c9:20:b7:a5:b5:a3:5c:cb:08:0a:ec:39:a0:d6:
43:f3:a5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:04:19 2024 by rpki-client on console-fra.rpki-client.org