Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/WLAb8C_NPk0QuHIJMTBU8LPX2U4.roa
File: WLAb8C_NPk0QuHIJMTBU8LPX2U4.roa (raw, json)
Hash identifier: YjJuTVNraEd4sLIOFqEYIMJ62kkjzOucWkQ416vfPkg=
Subject key identifier: 58:B0:1B:F0:2F:CD:3E:4D:10:B8:72:09:31:30:54:F0:B3:D7:D9:4E
Certificate issuer: /CN=b0095ed011c94358245c32757d46bed860df4c19
Certificate serial: 018DFAC7669D15D4DB39B4882C7CCC5FAD7A
Authority key identifier: B0:09:5E:D0:11:C9:43:58:24:5C:32:75:7D:46:BE:D8:60:DF:4C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/WLAb8C_NPk0QuHIJMTBU8LPX2U4.roa
Signing time: Fri 01 Mar 2024 16:09:48 +0000
ROA not before: Fri 01 Mar 2024 16:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200209
IP address blocks: 5.63.20.0/24 maxlen: 24
185.23.109.0/24 maxlen: 24
2a13:a000:1000::/36 maxlen: 36
2a13:a000:2000::/36 maxlen: 36
2a13:a000:3000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fa:c7:66:9d:15:d4:db:39:b4:88:2c:7c:cc:5f:ad:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0095ed011c94358245c32757d46bed860df4c19
Validity
Not Before: Mar 1 16:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58b01bf02fcd3e4d10b87209313054f0b3d7d94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:12:ea:7e:6d:66:d3:2b:e8:20:a2:ab:89:6f:
91:fe:52:e4:e3:5e:92:7c:6d:e7:57:37:53:7e:30:
18:76:aa:ce:ed:89:e3:cb:35:54:ad:97:b1:94:78:
98:34:41:78:2b:c9:24:c5:59:f8:4f:a4:9f:40:9a:
8c:fd:8a:06:3c:ed:51:0a:ad:b8:8f:cb:bb:dd:64:
90:dc:b4:7c:11:c0:19:3b:7c:c4:62:ed:44:fe:65:
9e:06:40:fd:2c:f6:2a:05:ee:00:b5:f1:42:c7:13:
80:04:e3:d8:23:4f:86:d4:cb:b2:27:c9:ee:bf:1c:
6e:a6:98:1e:4a:a1:d7:5d:3a:29:b1:9e:56:e0:5d:
61:20:e8:1f:83:cf:87:91:30:4f:d9:f8:6e:28:07:
5a:ae:57:11:38:25:59:ae:89:3f:5c:c1:b1:da:dc:
a8:6c:0f:97:c3:1b:da:a9:66:95:3a:b2:74:0d:55:
68:3f:91:41:bd:c7:89:a1:4f:08:92:d1:ce:6f:3b:
ea:ed:9a:2a:ed:74:86:e6:68:79:e8:83:e4:dd:c9:
c1:9b:48:33:af:f5:8f:ae:52:44:46:ed:c5:32:1c:
0b:20:5c:34:f8:eb:24:51:76:dd:d1:63:6e:a7:1c:
ab:da:d7:e1:47:5f:81:cb:01:78:9b:07:62:32:cc:
b4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B0:1B:F0:2F:CD:3E:4D:10:B8:72:09:31:30:54:F0:B3:D7:D9:4E
X509v3 Authority Key Identifier:
keyid:B0:09:5E:D0:11:C9:43:58:24:5C:32:75:7D:46:BE:D8:60:DF:4C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/WLAb8C_NPk0QuHIJMTBU8LPX2U4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/49cdec-69f0-4540-89ba-ea45969950cc/1/sAle0BHJQ1gkXDJ1fUa-2GDfTBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.20.0/24
185.23.109.0/24
IPv6:
2a13:a000:1000::-2a13:a000:3fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4b:e7:52:a5:3e:20:36:5e:a1:a9:0b:5f:46:06:6c:d4:4f:90:
34:8f:45:09:23:2e:36:c0:fa:ba:05:6b:95:7c:55:d1:5c:1c:
7b:3a:02:24:f7:ad:b0:d3:00:44:34:dc:71:84:dd:36:a1:d2:
ff:8a:e0:42:b7:f5:9f:63:d0:98:fa:97:ad:68:e1:88:28:3e:
9a:7f:ab:a3:d6:70:22:1a:98:1d:f5:b2:ee:2f:db:a4:5c:f0:
1f:2e:6f:fb:68:7f:19:23:a2:b3:fb:05:9e:58:85:70:3a:99:
1e:da:5a:d5:ba:c5:7e:f7:be:b2:1e:ac:87:92:17:a6:44:a0:
3a:0f:dc:78:22:ae:ed:66:43:5a:d0:08:bc:75:26:1e:81:bd:
db:3f:d8:3e:18:5e:17:7d:10:5b:3e:ab:5b:ce:e6:f7:08:05:
a3:fe:db:d6:da:68:f3:40:8d:8f:92:24:5c:58:78:7e:a3:d7:
05:97:3a:d7:b9:79:fe:f4:bc:00:6b:57:e4:8c:78:2b:78:ed:
dd:3a:3a:0e:de:a5:03:91:41:45:1f:13:b0:d6:bb:fa:6d:25:
41:19:ea:09:c0:b2:ba:19:53:b6:24:8f:8d:ad:eb:14:db:ee:
35:6e:56:a1:96:11:57:fe:c9:91:64:d1:ce:7b:2b:fb:3d:a1:
af:1a:ca:29
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAY36x2adFdTbObSILHzMX616MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMDk1ZWQwMTFjOTQzNTgyNDVjMzI3NTdkNDZiZWQ4NjBk
ZjRjMTkwHhcNMjQwMzAxMTYwOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGIwMWJmMDJmY2QzZTRkMTBiODcyMDkzMTMwNTRmMGIzZDdkOTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixLqfm1m0yvoIKKriW+R/lLk416S
fG3nVzdTfjAYdqrO7YnjyzVUrZexlHiYNEF4K8kkxVn4T6SfQJqM/YoGPO1RCq24
j8u73WSQ3LR8EcAZO3zEYu1E/mWeBkD9LPYqBe4AtfFCxxOABOPYI0+G1MuyJ8nu
vxxuppgeSqHXXTopsZ5W4F1hIOgfg8+HkTBP2fhuKAdarlcROCVZrok/XMGx2tyo
bA+XwxvaqWaVOrJ0DVVoP5FBvceJoU8IktHObzvq7Zoq7XSG5mh56IPk3cnBm0gz
r/WPrlJERu3FMhwLIFw0+OskUXbd0WNupxyr2tfhR1+BywF4mwdiMsy0lQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFFiwG/AvzT5NELhyCTEwVPCz19lOMB8GA1UdIwQY
MBaAFLAJXtARyUNYJFwydX1Gvthg30wZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0FsZTBCSEpRMWdrWERKMWZVYS0yR0RmVEJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80OWNkZWMtNjlmMC00NTQwLTg5YmEt
ZWE0NTk2OTk1MGNjLzEvV0xBYjhDX05QazBRdUhJSk1UQlU4TFBYMlU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS80OWNkZWMtNjlmMC00NTQwLTg5YmEtZWE0NTk2OTk1MGNj
LzEvc0FsZTBCSEpRMWdrWERKMWZVYS0yR0RmVEJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQABT8UAwQA
uRdtMBgEAgACMBIwEAMGBCoToAAQAwYGKhOgAAAwDQYJKoZIhvcNAQELBQADggEB
AEvnUqU+IDZeoakLX0YGbNRPkDSPRQkjLjbA+roFa5V8VdFcHHs6AiT3rbDTAEQ0
3HGE3Tah0v+K4EK39Z9j0Jj6l61o4YgoPpp/q6PWcCIamB31su4v26Rc8B8ub/to
fxkjorP7BZ5YhXA6mR7aWtW6xX73vrIerIeSF6ZEoDoP3Hgiru1mQ1rQCLx1Jh6B
vds/2D4YXhd9EFs+q1vO5vcIBaP+29baaPNAjY+SJFxYeH6j1wWXOte5ef70vABr
V+SMeCt47d06Og7epQORQUUfE7DWu/ptJUEZ6gnAsroZU7Ykj42t6xTb7jVuVqGW
EVf+yZFk0c57K/s9oa8ayik=
-----END CERTIFICATE-----
Generated at Sat Nov 23 00:10:36 2024 by rpki-client on console-ams.rpki-client.org