Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/wX0dN8-xqKTQFuwSmgKCObEaK28.roa
File: wX0dN8-xqKTQFuwSmgKCObEaK28.roa (raw, json)
Hash identifier: OFjiZq19G2V6WWiptOHQxHV2ZO4VF781KugXt4SnUOs=
Subject key identifier: C1:7D:1D:37:CF:B1:A8:A4:D0:16:EC:12:9A:02:82:39:B1:1A:2B:6F
Certificate issuer: /CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Certificate serial: 018D13FF49BFA70D97E35D56991944711700
Authority key identifier: F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/wX0dN8-xqKTQFuwSmgKCObEaK28.roa
Signing time: Tue 16 Jan 2024 20:38:34 +0000
ROA not before: Tue 16 Jan 2024 20:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213063
IP address blocks: 94.142.176.0/22 maxlen: 24
185.159.144.0/22 maxlen: 24
185.226.165.0/24 maxlen: 24
2a0d:e200::/29 maxlen: 29
2a0f:d540::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/88huoplek0tlBBkRy562WHLCKJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/88huoplek0tlBBkRy562WHLCKJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 17:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:13:ff:49:bf:a7:0d:97:e3:5d:56:99:19:44:71:17:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Validity
Not Before: Jan 16 20:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c17d1d37cfb1a8a4d016ec129a028239b11a2b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:16:e2:18:b8:3a:01:91:2d:87:39:bb:8e:0d:
e5:d9:41:f3:0a:02:f7:22:1a:21:84:b2:c5:6f:24:
91:a1:42:7c:58:82:df:4b:4b:10:fc:00:fd:44:26:
77:4e:4e:68:16:d1:5e:10:14:c4:56:0a:77:59:29:
76:0a:85:58:94:95:e1:a9:3c:56:55:1f:c1:ff:0b:
2c:6e:18:c4:9d:da:ef:b9:0b:11:8f:57:be:69:53:
58:4c:78:8c:b7:ed:d3:7d:35:10:d2:a4:43:1e:3e:
05:a3:fa:1a:9b:d6:d8:5a:07:2b:af:a5:da:f6:20:
a4:07:bc:38:47:ff:7a:5e:ef:2e:11:14:5a:01:96:
24:4f:83:4b:00:2c:1b:a2:e1:e9:e0:5d:96:f0:ca:
0a:19:fe:a0:9d:ec:1f:4d:91:ea:e3:f3:b9:63:7c:
8e:79:ac:1b:e5:53:a5:73:7a:26:f7:03:eb:6f:26:
64:5f:d2:c9:85:6e:0e:99:51:aa:13:fb:52:ab:4f:
26:91:a9:1a:78:a2:1c:3f:57:ae:6e:1e:1f:51:15:
8b:f4:a8:3c:65:13:dc:1d:28:76:c3:27:80:ea:ae:
a5:1d:87:08:1d:de:12:e1:8e:7b:0f:b0:54:a1:af:
72:61:3e:4a:d3:e2:f5:1f:fa:5a:25:56:0d:1c:f1:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:7D:1D:37:CF:B1:A8:A4:D0:16:EC:12:9A:02:82:39:B1:1A:2B:6F
X509v3 Authority Key Identifier:
keyid:F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/wX0dN8-xqKTQFuwSmgKCObEaK28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/88huoplek0tlBBkRy562WHLCKJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.176.0/22
185.159.144.0/22
185.226.165.0/24
IPv6:
2a0d:e200::/29
2a0f:d540::/29
Signature Algorithm: sha256WithRSAEncryption
28:bf:63:75:ba:d8:2e:7f:c4:dc:e2:56:ae:2c:40:a1:84:8a:
5e:89:1d:e9:4c:ed:83:ad:39:47:7f:94:7e:3a:d9:1a:08:50:
e3:4d:58:98:c9:4c:de:69:c5:5e:1b:d8:36:86:0d:ef:ec:bf:
13:77:7e:30:02:2c:57:c3:6b:c0:f9:78:34:73:a9:35:c1:67:
f2:d3:9a:e1:04:0f:f0:6f:c6:b9:dd:3c:b4:75:92:a9:c2:ea:
7a:ce:ae:ea:fc:61:1c:49:60:ee:76:25:50:96:ab:7f:3a:5d:
2e:bd:b0:f8:a5:e5:d6:ef:0b:80:7d:d9:bf:47:d7:d5:d3:4f:
bb:fe:7f:13:1c:65:ce:83:cb:c4:53:7c:1d:75:1e:00:ff:e0:
ed:93:94:3e:b1:6c:03:0e:17:48:00:b4:73:71:bf:2c:9d:50:
10:e6:a8:d2:ad:30:ef:46:a1:92:f4:0c:21:6f:dd:3c:18:c1:
dc:b5:6e:fa:62:33:36:2d:58:fe:fe:27:a7:f4:6d:31:ad:0d:
5f:a8:71:d0:78:87:34:46:42:30:0b:13:9d:67:34:a5:31:67:
5e:57:16:4f:89:7d:04:56:6f:5e:a3:86:a3:07:52:bd:c6:78:
e5:74:9c:df:fb:84:62:18:e4:08:5c:e2:d3:f1:70:cc:42:c8:
e7:ec:9d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:38:17 2024 by rpki-client on console-fra.rpki-client.org