Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/WO507J67-aU82VhM3sLjDkJtvLU.roa
File: WO507J67-aU82VhM3sLjDkJtvLU.roa (raw, json)
Hash identifier: jRMaMmgy5m+dOxSUWFnKgAUMGwq17J/+5cc2aj23jVE=
Subject key identifier: 58:EE:74:EC:9E:BB:F9:A5:3C:D9:58:4C:DE:C2:E3:0E:42:6D:BC:B5
Certificate issuer: /CN=25a89539520004270d34253bdc16d87784156e1a
Certificate serial: 018CC72764C916202DC7666E8883A68504B3
Authority key identifier: 25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/WO507J67-aU82VhM3sLjDkJtvLU.roa
Signing time: Mon 01 Jan 2024 22:31:36 +0000
ROA not before: Mon 01 Jan 2024 22:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8893
IP address blocks: 212.72.160.0/19 maxlen: 24
212.48.96.0/19 maxlen: 24
212.53.128.0/17 maxlen: 24
80.252.96.0/20 maxlen: 24
2a00:1f78::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/JaiVOVIABCcNNCU73BbYd4QVbho.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/JaiVOVIABCcNNCU73BbYd4QVbho.mft
rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 22:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:64:c9:16:20:2d:c7:66:6e:88:83:a6:85:04:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a89539520004270d34253bdc16d87784156e1a
Validity
Not Before: Jan 1 22:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58ee74ec9ebbf9a53cd9584cdec2e30e426dbcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5f:af:63:12:27:31:c7:36:eb:a1:2f:78:4a:
5b:02:e6:fd:12:41:67:2f:12:8e:2d:8f:2e:1d:a6:
7e:56:17:24:33:88:8f:36:8e:e5:3f:9c:fe:9f:7a:
9c:a4:8f:2f:d9:68:3c:54:5b:b3:71:57:da:41:23:
ba:58:f3:d4:5d:84:8c:23:45:6e:57:39:dd:81:e7:
67:e4:f6:4c:1d:df:0f:4b:1e:00:53:ed:50:f2:f7:
8f:b0:2c:e7:fc:f3:0c:48:d3:83:2b:d3:ae:c7:23:
22:51:9e:69:88:e6:f3:02:30:b9:64:f1:22:0f:65:
80:25:45:98:c4:73:c2:74:8e:e8:7c:90:8d:bb:94:
43:e7:0f:d6:b6:a4:87:66:04:9e:c7:e7:1c:56:fa:
61:13:9b:07:8b:c9:aa:79:1c:5c:b9:4b:6b:b3:30:
c8:9c:93:53:92:f1:b2:46:b7:c3:c2:bf:89:61:11:
29:5c:7a:dc:34:9c:07:b2:1f:09:3e:bd:87:0c:c8:
02:3f:df:65:9e:dd:74:cc:e9:5c:2f:ae:8b:00:1f:
90:2e:e0:27:3f:f0:2f:e2:b2:1e:dd:43:3f:98:56:
b7:c2:6d:cf:38:d5:2b:2d:e4:ed:56:1d:fc:72:46:
42:cf:66:34:fe:d0:49:ac:c6:68:c4:f3:ee:23:3f:
08:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EE:74:EC:9E:BB:F9:A5:3C:D9:58:4C:DE:C2:E3:0E:42:6D:BC:B5
X509v3 Authority Key Identifier:
keyid:25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/WO507J67-aU82VhM3sLjDkJtvLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/JaiVOVIABCcNNCU73BbYd4QVbho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.252.96.0/20
212.48.96.0/19
212.53.128.0/17
212.72.160.0/19
IPv6:
2a00:1f78::/29
Signature Algorithm: sha256WithRSAEncryption
13:67:d5:c9:6f:b3:12:f2:4d:44:50:ff:4c:21:00:d7:6f:68:
a9:bb:67:6b:30:eb:28:8d:ea:cb:b5:31:0a:68:86:e8:8f:67:
f4:56:90:6d:b5:37:04:7f:80:d4:ab:f0:02:e1:31:6c:9c:16:
15:f2:49:fb:18:55:6a:ef:c2:73:16:0c:b3:53:53:ab:48:bc:
78:d0:b3:b8:60:84:91:15:b1:9d:22:85:91:5b:22:17:1a:18:
7f:a9:24:3d:28:61:5c:20:be:a8:47:1e:f1:7f:2a:8f:24:20:
06:62:5b:14:0d:6e:e1:30:b6:64:dc:ac:11:90:7b:83:e1:9b:
6b:47:da:55:ac:51:29:fa:53:07:1e:c2:77:51:3e:2a:9e:eb:
06:72:b6:97:3b:34:ce:18:ad:c4:fe:d4:8e:28:a4:75:31:3c:
a5:2e:75:0a:2f:3e:70:da:5a:11:d5:97:17:c6:95:25:22:79:
45:b2:49:10:84:df:04:53:98:33:77:55:bc:70:56:98:84:5a:
9a:f7:79:33:80:2d:81:4e:fb:10:27:83:59:f3:6c:6a:39:dd:
ac:03:02:a5:d4:6d:03:13:fb:9f:4f:ee:c0:a3:99:8a:09:28:
e7:76:db:4d:a6:9b:91:8f:ed:8d:3a:ee:ee:cb:5d:1f:32:68:
d7:e6:84:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:15:35 2024 by rpki-client on console-fra.rpki-client.org