Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/Wqq7MOchCLQImeisA9VO-RCRes8.roa
File: Wqq7MOchCLQImeisA9VO-RCRes8.roa (raw, json)
Hash identifier: Wo+f15Q1xZv6Z5p1WFovLhjfU6jJ+hez6UOYcYgTQTM=
Subject key identifier: 5A:AA:BB:30:E7:21:08:B4:08:99:E8:AC:03:D5:4E:F9:10:91:7A:CF
Certificate issuer: /CN=9759529dd3170645d76cf6ac0659506cc649ca90
Certificate serial: 018CC94E261D7EC713805C0551B9C47A6C6B
Authority key identifier: 97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/Wqq7MOchCLQImeisA9VO-RCRes8.roa
Signing time: Tue 02 Jan 2024 08:33:11 +0000
ROA not before: Tue 02 Jan 2024 08:33:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197749
IP address blocks: 185.169.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:26:1d:7e:c7:13:80:5c:05:51:b9:c4:7a:6c:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9759529dd3170645d76cf6ac0659506cc649ca90
Validity
Not Before: Jan 2 08:33:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5aaabb30e72108b40899e8ac03d54ef910917acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:43:2e:c2:e2:1a:09:a4:8f:24:73:f6:fe:10:
06:00:f8:84:08:fb:b0:f2:53:0f:0a:fb:82:da:94:
46:16:55:81:13:af:b1:51:0d:43:fc:a5:a4:cb:ff:
1c:c6:b2:df:82:fb:38:5d:85:45:fe:ca:bd:e8:9d:
79:00:00:e8:9a:f8:b1:09:40:48:89:85:7a:fc:e8:
9d:64:40:6d:1c:45:28:ff:48:95:2d:5a:0c:3e:f7:
d0:a8:31:c7:1b:f1:4a:db:9e:2f:d1:1f:75:c3:7e:
39:b5:3d:3e:26:3d:17:2e:70:32:73:ff:d5:a6:84:
e3:69:01:9c:0d:37:eb:17:01:94:42:c9:48:62:a7:
c5:76:00:69:8c:36:ea:04:e1:ec:93:cc:1e:12:1a:
53:57:dd:49:64:f6:52:7f:45:67:31:21:69:6e:a1:
a3:83:42:f3:c6:c8:8a:93:b7:54:a7:40:92:15:c5:
d4:eb:30:c8:44:5e:ca:b7:5b:66:27:66:17:a1:65:
16:5e:87:d4:43:ac:e6:4a:47:cb:e2:1c:e8:06:b6:
16:fb:b4:c4:a9:66:2d:70:17:6a:18:af:5d:db:01:
20:4c:2a:b4:aa:5b:97:f3:64:60:00:35:8c:d6:2f:
6e:5c:c6:94:46:c8:5f:1c:9f:64:a1:ef:15:d8:15:
8d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AA:BB:30:E7:21:08:B4:08:99:E8:AC:03:D5:4E:F9:10:91:7A:CF
X509v3 Authority Key Identifier:
keyid:97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/Wqq7MOchCLQImeisA9VO-RCRes8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.27.0/24
Signature Algorithm: sha256WithRSAEncryption
73:e2:2e:d8:7e:63:23:dd:db:a5:06:39:ea:9e:b0:ef:77:6a:
6f:a0:91:19:74:39:eb:75:b9:5d:bd:3b:f2:d5:e2:8a:cb:f8:
0f:e8:34:80:b8:86:66:9f:ad:b1:12:16:15:84:ee:57:32:51:
d2:72:2d:f1:b3:b3:34:ad:d1:40:aa:c0:97:62:48:50:90:98:
33:2f:03:e6:85:75:33:c6:64:a1:ba:ca:9b:54:1b:38:fe:68:
8f:32:ba:42:97:1e:fa:65:f7:7d:95:40:f4:57:bc:98:2d:00:
0f:4d:84:57:ce:37:8a:55:86:3e:83:d3:09:98:b9:1c:28:04:
81:04:cf:57:66:41:82:4e:20:3b:b3:0e:a3:e8:a6:1e:96:65:
1a:2b:f9:c3:ff:53:86:55:53:2b:cb:e2:87:55:38:aa:80:75:
a9:ce:88:6a:fd:dc:da:ef:ed:ad:c4:38:48:09:8f:56:a0:bf:
1f:a5:9b:63:8d:02:db:12:cb:62:f3:55:92:b3:e4:b3:64:cc:
44:35:30:6d:37:43:04:d5:c4:58:9f:79:9c:bc:06:99:ce:57:
25:d7:08:5f:9e:ec:1b:44:3a:2a:de:72:00:5e:72:8b:3d:ad:
25:ea:60:89:92:a2:e8:74:0b:19:b7:78:f6:28:ab:a7:3e:ce:
ff:83:e7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 09:13:02 2024 by rpki-client on console-fra.rpki-client.org