Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/W_jcbLyuaDO_2RjDEG2ND_KjEgM.roa
File: W_jcbLyuaDO_2RjDEG2ND_KjEgM.roa (raw, json)
Hash identifier: GaTmByQDseCLXS8UDW1xF7+7JsHY1INNnP94XhyoUo0=
Subject key identifier: 5B:F8:DC:6C:BC:AE:68:33:BF:D9:18:C3:10:6D:8D:0F:F2:A3:12:03
Certificate issuer: /CN=c0a9ca3a912e87279b43a27a4aa5bb91ca5e2786
Certificate serial: 018CC64B2027F4832BF47615E9218E801574
Authority key identifier: C0:A9:CA:3A:91:2E:87:27:9B:43:A2:7A:4A:A5:BB:91:CA:5E:27:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/W_jcbLyuaDO_2RjDEG2ND_KjEgM.roa
Signing time: Mon 01 Jan 2024 18:31:01 +0000
ROA not before: Mon 01 Jan 2024 18:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50131
IP address blocks: 91.230.73.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:20:27:f4:83:2b:f4:76:15:e9:21:8e:80:15:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0a9ca3a912e87279b43a27a4aa5bb91ca5e2786
Validity
Not Before: Jan 1 18:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bf8dc6cbcae6833bfd918c3106d8d0ff2a31203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:80:d5:91:9d:86:3e:49:32:d3:a5:f7:82:7e:
c5:72:16:52:e6:53:60:c5:18:76:30:7b:e1:61:5a:
e4:1e:a9:0c:ed:a5:9f:61:cc:17:40:be:3e:e1:7d:
81:22:03:03:11:17:c6:df:d9:02:74:19:11:1b:b0:
32:25:42:95:92:ca:e3:ba:05:92:7b:b6:53:ec:c0:
a7:82:4b:c2:15:9f:98:21:be:95:fd:c8:6b:eb:8a:
93:1a:ad:5b:70:55:be:86:9e:1c:f7:25:e3:c9:b6:
4e:8d:4b:a8:59:ef:e0:74:91:34:92:8a:1d:59:17:
79:53:b8:68:0d:ff:15:b4:1b:b8:b8:ca:bb:49:a6:
56:b0:1d:91:d1:8f:3e:66:8b:24:eb:f9:6b:70:02:
44:45:d6:63:05:da:6b:24:a3:c8:d3:07:c5:b4:ce:
cf:12:f2:33:b1:36:ef:e4:4d:1c:82:19:3e:8f:63:
15:ee:46:aa:36:8b:d1:85:f6:9d:69:0e:c9:e8:d0:
80:8c:7c:64:e2:39:c8:1a:d9:c8:1b:6a:cb:47:0d:
eb:a4:82:7c:ed:74:5f:88:67:98:a6:ba:ac:79:c6:
65:7e:20:2b:2b:6d:c0:eb:0b:c6:75:15:fc:bf:23:
d1:3a:b1:c4:d1:b6:17:7e:10:04:56:1f:00:4a:55:
57:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F8:DC:6C:BC:AE:68:33:BF:D9:18:C3:10:6D:8D:0F:F2:A3:12:03
X509v3 Authority Key Identifier:
keyid:C0:A9:CA:3A:91:2E:87:27:9B:43:A2:7A:4A:A5:BB:91:CA:5E:27:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/W_jcbLyuaDO_2RjDEG2ND_KjEgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/40ad8d-a03d-445c-af1e-bb9be892ac5c/1/wKnKOpEuhyebQ6J6SqW7kcpeJ4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.73.0/24
Signature Algorithm: sha256WithRSAEncryption
27:87:7d:fb:92:25:c2:fd:a2:fd:d9:c7:66:8a:41:c5:1e:02:
51:1a:72:8a:27:90:9a:bb:83:d5:2d:74:91:ce:61:8b:c4:a8:
de:15:c5:c7:22:f0:3e:ae:ab:fc:c9:c5:bd:15:c3:ff:a5:71:
87:ea:0c:32:86:7b:8e:59:59:8b:a8:30:9e:5d:d7:4c:d9:c3:
a0:ee:93:3a:a5:4b:df:9b:1e:c1:92:e7:c8:b5:6a:10:0d:72:
92:32:8e:4a:99:9e:6d:5f:4c:0a:5d:ff:5e:bf:f0:e5:b7:47:
c4:ff:0a:71:e0:ce:5c:47:b2:df:d9:bf:d6:ef:1e:02:71:15:
0c:f3:ff:4b:d1:f2:56:ab:e2:3a:9d:a9:1c:e7:03:7a:9b:7c:
e4:fc:1d:43:58:53:24:c5:df:35:32:6e:ee:97:bc:ca:04:49:
72:a9:ef:f7:92:6b:84:90:e4:c0:9b:a4:52:07:85:aa:ad:12:
d1:ef:d3:73:15:fa:89:91:2a:f6:08:37:af:ab:26:16:ad:7a:
f8:90:fb:3e:93:3b:9f:00:95:47:63:17:90:bd:fa:7f:c0:fb:
4d:78:06:5a:e5:67:ab:00:c3:75:5e:99:a7:8f:f2:c3:55:25:
f5:a7:98:31:77:1b:d6:7f:26:8f:5d:6a:85:7a:75:2e:c2:99:
04:83:8f:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGSyAn9IMr9HYV6SGOgBV0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwYTljYTNhOTEyZTg3Mjc5YjQzYTI3YTRhYTViYjkxY2E1
ZTI3ODYwHhcNMjQwMTAxMTgzMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmY4ZGM2Y2JjYWU2ODMzYmZkOTE4YzMxMDZkOGQwZmYyYTMxMjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYDVkZ2GPkky06X3gn7FchZS5lNg
xRh2MHvhYVrkHqkM7aWfYcwXQL4+4X2BIgMDERfG39kCdBkRG7AyJUKVksrjugWS
e7ZT7MCngkvCFZ+YIb6V/chr64qTGq1bcFW+hp4c9yXjybZOjUuoWe/gdJE0kood
WRd5U7hoDf8VtBu4uMq7SaZWsB2R0Y8+Zosk6/lrcAJERdZjBdprJKPI0wfFtM7P
EvIzsTbv5E0cghk+j2MV7kaqNovRhfadaQ7J6NCAjHxk4jnIGtnIG2rLRw3rpIJ8
7XRfiGeYprqsecZlfiArK23A6wvGdRX8vyPROrHE0bYXfhAEVh8ASlVXZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFv43Gy8rmgzv9kYwxBtjQ/yoxIDMB8GA1UdIwQY
MBaAFMCpyjqRLocnm0Oiekqlu5HKXieGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0tuS09wRXVoeWViUTZKNlNxVzdrY3BlSjRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi80MGFkOGQtYTAzZC00NDVjLWFmMWUt
YmI5YmU4OTJhYzVjLzEvV19qY2JMeXVhRE9fMlJqREVHMk5EX0tqRWdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi80MGFkOGQtYTAzZC00NDVjLWFmMWUtYmI5YmU4OTJhYzVj
LzEvd0tuS09wRXVoeWViUTZKNlNxVzdrY3BlSjRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+ZJMA0G
CSqGSIb3DQEBCwUAA4IBAQAnh337kiXC/aL92cdmikHFHgJRGnKKJ5Cau4PVLXSR
zmGLxKjeFcXHIvA+rqv8ycW9FcP/pXGH6gwyhnuOWVmLqDCeXddM2cOg7pM6pUvf
mx7BkufItWoQDXKSMo5KmZ5tX0wKXf9ev/Dlt0fE/wpx4M5cR7Lf2b/W7x4CcRUM
8/9L0fJWq+I6nakc5wN6m3zk/B1DWFMkxd81Mm7ul7zKBElyqe/3kmuEkOTAm6RS
B4WqrRLR79NzFfqJkSr2CDevqyYWrXr4kPs+kzufAJVHYxeQvfp/wPtNeAZa5Wer
AMN1Xpmnj/LDVSX1p5gxdxvWfyaPXWqFenUuwpkEg4/Q
-----END CERTIFICATE-----
Generated at Mon Jun 24 09:04:04 2024 by rpki-client on console-ams.rpki-client.org