Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/WWjsZ7YtYzlkdQ37YCI3Ka5TxLI.roa
File: WWjsZ7YtYzlkdQ37YCI3Ka5TxLI.roa (raw, json)
Hash identifier: W8DHCT+mJKiSaCbeluKuYL2kFSHoFLN9PVaiplfd4+A=
Subject key identifier: 59:68:EC:67:B6:2D:63:39:64:75:0D:FB:60:22:37:29:AE:53:C4:B2
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 018CC9EF16B8C799B053A58321F17CFD8E38
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/WWjsZ7YtYzlkdQ37YCI3Ka5TxLI.roa
Signing time: Tue 02 Jan 2024 11:28:58 +0000
ROA not before: Tue 02 Jan 2024 11:28:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204755
IP address blocks: 193.142.147.0/24 maxlen: 24
2a0f:ca80:deed::/48 maxlen: 48
2a0f:ca80:fe0::/44 maxlen: 44
2a0f:ca80:b00b::/48 maxlen: 48
2a0f:ca80:616::/48 maxlen: 48
2a0f:ca80:666::/48 maxlen: 48
2a0f:ca81:deed::/48 maxlen: 48
2a0f:ca80:1339::/48 maxlen: 48
2a0f:ca81:b00b::/48 maxlen: 48
2a0f:ca80:beef::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ef:16:b8:c7:99:b0:53:a5:83:21:f1:7c:fd:8e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 2 11:28:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5968ec67b62d633964750dfb60223729ae53c4b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:63:8d:06:43:5e:62:30:8f:25:a7:12:dc:30:
ba:99:cf:e5:58:07:7b:8f:07:61:f8:63:5b:42:fe:
05:95:ae:9c:0e:d4:d3:34:d4:fe:e2:f0:8c:26:64:
b7:aa:d0:82:ba:af:d7:16:5b:cd:be:5f:54:a5:9e:
15:9a:3d:86:d0:cb:bd:98:f4:76:59:65:19:e8:be:
3d:7b:19:5a:52:3c:a3:6f:ba:c2:4c:70:7c:a7:61:
b2:c0:a7:a5:b9:89:3d:de:04:f3:c6:94:ab:42:0d:
83:86:05:7c:8a:74:bb:b1:bc:d4:db:0b:e4:8e:90:
79:18:c2:34:a2:d0:e5:48:99:ba:67:aa:4d:57:c1:
14:eb:72:68:80:e8:dd:ef:94:14:6f:0c:7e:5d:c2:
fd:77:f2:21:82:a5:9d:7e:74:8f:5d:c8:a9:ad:b9:
7f:5c:29:1d:fa:0c:d0:7a:a1:2b:dc:18:3a:28:50:
1a:ee:01:56:98:5e:c2:a2:9c:d8:a6:0c:df:96:41:
8a:0a:ac:9a:73:fb:2a:0a:aa:83:8e:3f:d8:88:38:
4e:ed:8e:ec:24:b5:20:a6:b5:bf:b2:02:f2:99:be:
11:16:37:40:2b:98:c8:bf:48:c5:cd:72:82:63:67:
09:25:df:34:69:55:ab:29:b2:2c:4f:d6:c5:a5:f7:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:68:EC:67:B6:2D:63:39:64:75:0D:FB:60:22:37:29:AE:53:C4:B2
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/WWjsZ7YtYzlkdQ37YCI3Ka5TxLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.147.0/24
IPv6:
2a0f:ca80:616::/48
2a0f:ca80:666::/48
2a0f:ca80:fe0::/44
2a0f:ca80:1339::/48
2a0f:ca80:b00b::/48
2a0f:ca80:beef::/48
2a0f:ca80:deed::/48
2a0f:ca81:b00b::/48
2a0f:ca81:deed::/48
Signature Algorithm: sha256WithRSAEncryption
4c:32:09:45:60:03:6d:91:d1:06:82:7d:fb:e7:54:80:8b:e0:
0f:ab:1e:9e:6d:33:38:30:59:68:38:4f:6a:78:c9:15:55:4f:
f3:50:a3:34:e3:d6:c9:7a:b7:12:e4:63:08:a0:86:1e:8d:2e:
39:d0:69:9f:e1:b8:59:c8:e0:7a:2b:34:46:34:3b:0a:d2:a9:
b3:fd:a1:63:39:4e:37:a1:61:5b:c5:9f:62:57:43:64:62:0e:
cb:44:3d:5f:b3:3e:91:88:a1:a8:d2:e7:0a:8b:38:80:f5:c8:
27:15:00:e6:b0:c5:5f:e1:d3:a9:1f:a2:8d:57:29:fc:b6:01:
eb:e5:6e:1b:35:b0:50:d9:80:a2:34:95:60:2f:1c:19:20:a5:
83:53:75:60:b2:7d:b0:7a:f0:8f:23:2c:44:a3:f4:57:e2:2f:
92:40:c2:58:9a:fa:5f:ac:b1:97:f0:68:bb:d2:8c:09:80:b0:
44:ed:5f:8a:ce:62:99:31:73:26:08:ab:8e:e2:61:0c:e8:1d:
34:73:84:ab:92:da:7d:18:67:0e:3b:4a:95:74:f4:1e:2f:3d:
5d:94:eb:25:27:7f:97:ab:4e:b2:ab:72:d6:c1:9c:bb:88:94:
cd:33:e4:5f:2f:87:fb:e7:9f:f8:03:21:48:d5:81:0c:2d:5e:
94:5d:12:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 12:11:14 2024 by rpki-client on console-fra.rpki-client.org