Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/waKCGtoVxeWXpygKFA2lth_JIUA.roa
File: waKCGtoVxeWXpygKFA2lth_JIUA.roa (raw, json)
Hash identifier: kN0aaodTVCQiJ7ou23vzQiwJaRQA6JKZbp5I3Ky8YdU=
Subject key identifier: C1:A2:82:1A:DA:15:C5:E5:97:A7:28:0A:14:0D:A5:B6:1F:C9:21:40
Certificate issuer: /CN=82b136e6820d94f03b1c5d71eee3d4b22191528f
Certificate serial: 018EF67720379748DA2ABBE4E83106DC2077
Authority key identifier: 82:B1:36:E6:82:0D:94:F0:3B:1C:5D:71:EE:E3:D4:B2:21:91:52:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grE25oINlPA7HF1x7uPUsiGRUo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/waKCGtoVxeWXpygKFA2lth_JIUA.roa
Signing time: Fri 19 Apr 2024 13:06:25 +0000
ROA not before: Fri 19 Apr 2024 13:06:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20670
IP address blocks: 31.131.168.0/21 maxlen: 21
45.93.228.0/22 maxlen: 22
91.210.76.0/22 maxlen: 22
185.37.32.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/grE25oINlPA7HF1x7uPUsiGRUo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/grE25oINlPA7HF1x7uPUsiGRUo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/grE25oINlPA7HF1x7uPUsiGRUo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f6:77:20:37:97:48:da:2a:bb:e4:e8:31:06:dc:20:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b136e6820d94f03b1c5d71eee3d4b22191528f
Validity
Not Before: Apr 19 13:06:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1a2821ada15c5e597a7280a140da5b61fc92140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:34:94:f0:85:f1:6f:d9:03:ca:29:c2:a5:15:
86:d8:26:c7:f2:2d:2e:61:1e:01:0e:24:56:48:e6:
23:a7:90:76:86:0c:1f:42:2e:5f:5d:d0:f0:9c:47:
44:8e:de:c8:65:d7:f5:1e:8a:0e:a0:e5:7a:f2:91:
b0:90:86:10:af:bb:88:ba:b9:9a:00:3c:a0:35:d4:
f9:9a:0d:92:b8:b4:21:c1:fe:57:c0:8c:35:8c:14:
54:2a:87:b2:9f:a4:68:9b:3c:10:83:7b:59:0c:72:
5b:dc:05:63:11:18:51:7f:d3:db:f1:f3:70:6d:60:
48:20:73:d0:84:f6:e3:04:c3:5b:0b:50:d2:21:a1:
dc:7c:a4:df:97:72:9a:4e:50:2c:fe:f5:2c:20:8f:
18:c8:47:57:79:d3:c5:0d:a0:9a:30:09:0f:f9:f6:
4f:60:88:35:b4:16:b5:00:44:2c:87:75:eb:2d:52:
68:be:09:34:18:af:19:97:35:1f:72:89:ed:7c:c6:
92:1c:ad:eb:f8:c6:5a:90:d7:53:d1:70:fd:c5:ab:
2c:fe:bf:66:16:8f:79:83:0c:b0:cc:a5:49:b3:43:
03:32:c9:46:ac:16:ae:17:db:c7:9a:53:0e:45:19:
ec:85:d9:d0:26:2c:f5:5e:30:be:4a:c6:b0:fb:f1:
b0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A2:82:1A:DA:15:C5:E5:97:A7:28:0A:14:0D:A5:B6:1F:C9:21:40
X509v3 Authority Key Identifier:
keyid:82:B1:36:E6:82:0D:94:F0:3B:1C:5D:71:EE:E3:D4:B2:21:91:52:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grE25oINlPA7HF1x7uPUsiGRUo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/waKCGtoVxeWXpygKFA2lth_JIUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/22112e-4e13-43d0-9eb1-0da3caa91429/1/grE25oINlPA7HF1x7uPUsiGRUo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.168.0/21
45.93.228.0/22
91.210.76.0/22
185.37.32.0/22
Signature Algorithm: sha256WithRSAEncryption
28:47:40:7a:7b:bf:5f:f2:32:af:3b:20:5f:b3:e1:92:1f:de:
21:a8:7b:92:bd:1c:a1:d3:dc:76:bb:f7:f0:c2:5e:bf:0e:9c:
ab:24:61:55:0a:70:f6:28:06:0e:1b:ee:2b:0a:06:07:bf:7a:
ed:fd:76:08:a2:d1:6c:83:b8:b6:03:5d:5f:77:5a:0e:0c:94:
28:21:3c:7d:71:63:b0:8f:52:9f:35:af:8d:7f:78:83:dc:f4:
79:f5:dd:68:9f:01:4e:32:47:f6:21:5b:1f:90:32:f8:d0:07:
33:52:28:51:24:cb:57:2b:65:58:bd:32:a6:dc:df:a6:25:a2:
7b:15:0f:15:5d:96:3e:31:94:4e:51:7c:61:e0:30:82:71:ee:
6d:69:83:32:5e:27:53:c6:b1:d1:3f:45:2c:e7:f6:f6:78:e3:
41:53:8e:e0:51:08:a3:f2:a9:2f:e2:52:be:ad:f9:6d:0b:bb:
ca:2e:df:22:6d:b6:ae:01:68:e3:c0:57:02:a6:13:13:f7:55:
13:da:86:8a:ff:0b:e5:15:9d:b3:d2:37:ec:42:63:8a:0c:35:
b4:f4:73:8b:ee:ea:04:20:84:44:48:a5:bf:12:36:9b:e9:52:
7a:5b:58:d9:e4:c5:27:81:b6:94:35:53:9f:b5:db:c5:59:24:
9c:70:94:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:20:09 2024 by rpki-client on console-fra.rpki-client.org