Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/w2NtMKTN7UcOwzHf8R8dM1r90DM.roa
File: w2NtMKTN7UcOwzHf8R8dM1r90DM.roa (raw, json)
Hash identifier: YYP1xsmbV5jeFO79hZc4eP8zPY0HrNZypKbUD1KBFHY=
Subject key identifier: C3:63:6D:30:A4:CD:ED:47:0E:C3:31:DF:F1:1F:1D:33:5A:FD:D0:33
Certificate issuer: /CN=58788f38426e0362b34dd567343fe8461a58babe
Certificate serial: 018CC649AEC0C5C229303EE802CEF6B59553
Authority key identifier: 58:78:8F:38:42:6E:03:62:B3:4D:D5:67:34:3F:E8:46:1A:58:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WHiPOEJuA2KzTdVnND_oRhpYur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/w2NtMKTN7UcOwzHf8R8dM1r90DM.roa
Signing time: Mon 01 Jan 2024 18:29:26 +0000
ROA not before: Mon 01 Jan 2024 18:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205837
IP address blocks: 185.203.162.0/24 maxlen: 24
185.203.161.0/24 maxlen: 24
185.203.160.0/24 maxlen: 24
185.203.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/WHiPOEJuA2KzTdVnND_oRhpYur4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/WHiPOEJuA2KzTdVnND_oRhpYur4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WHiPOEJuA2KzTdVnND_oRhpYur4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:ae:c0:c5:c2:29:30:3e:e8:02:ce:f6:b5:95:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58788f38426e0362b34dd567343fe8461a58babe
Validity
Not Before: Jan 1 18:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3636d30a4cded470ec331dff11f1d335afdd033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ba:fb:ad:51:34:13:67:52:27:75:ac:a7:ef:
90:62:b0:18:08:9b:c3:92:a6:b4:6e:07:f6:e5:c9:
2d:1a:6b:b4:ad:85:60:ba:3c:b7:50:92:30:21:c1:
70:4a:bc:d5:de:a1:b8:53:36:98:42:2e:bd:a5:63:
dd:a2:99:d1:02:26:c8:d1:af:5a:d8:11:9c:bb:0e:
4d:48:63:80:95:8c:88:f8:3a:e6:fa:6b:76:76:96:
55:2d:9d:d1:0e:ce:17:28:aa:62:18:e0:01:cf:b4:
9d:96:4a:dd:66:f0:09:80:36:9a:8f:47:24:5b:84:
dc:2c:49:76:f8:81:bf:cf:0c:5a:82:a8:e6:63:7f:
48:60:86:c7:69:3a:1d:5a:a2:73:25:ed:8a:31:c8:
56:f5:b8:f6:28:9a:26:4f:71:a2:1e:09:6d:6f:0e:
ab:40:c9:ee:86:24:4b:d4:76:30:a6:40:fb:10:93:
be:65:8b:aa:32:07:1f:97:4c:ea:c1:1d:ba:ef:63:
90:4e:72:e0:d5:7a:ea:52:49:34:bd:b5:5c:c1:72:
0d:11:d3:17:09:23:3b:e6:71:d8:37:9d:f4:46:2c:
25:4e:07:55:c4:d0:32:fc:e4:55:d6:f5:c7:a1:a1:
ab:2a:5e:30:1a:b1:88:e3:28:71:f3:35:82:39:e0:
10:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:63:6D:30:A4:CD:ED:47:0E:C3:31:DF:F1:1F:1D:33:5A:FD:D0:33
X509v3 Authority Key Identifier:
keyid:58:78:8F:38:42:6E:03:62:B3:4D:D5:67:34:3F:E8:46:1A:58:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WHiPOEJuA2KzTdVnND_oRhpYur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/w2NtMKTN7UcOwzHf8R8dM1r90DM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/WHiPOEJuA2KzTdVnND_oRhpYur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.160.0/22
Signature Algorithm: sha256WithRSAEncryption
19:a9:92:ff:2b:8e:02:7a:a3:77:cf:69:58:4e:e8:ad:24:01:
01:75:46:22:58:78:5a:a8:57:68:20:d1:1c:f8:2e:ba:a1:05:
8e:73:18:b9:86:14:e3:f3:b8:94:0f:9b:73:44:ee:64:2a:e4:
3e:f1:08:c4:e9:e0:0c:08:f9:e5:4e:0e:a6:8b:74:24:85:df:
8c:c9:73:46:ac:f0:3e:6e:b4:b6:36:b1:e1:8f:aa:d5:39:4b:
40:76:bf:99:16:90:17:ab:c8:6c:30:58:3f:77:7d:90:2c:9e:
41:b7:a3:5a:f9:2b:83:e8:a2:c4:9f:48:a1:17:16:7b:c4:f6:
1d:2c:19:bf:01:42:f9:f2:da:4d:cc:af:88:ea:f7:e1:64:cc:
38:79:b2:a6:d5:af:10:07:85:db:3c:d4:4d:97:70:4b:92:56:
d3:fe:76:78:a5:3d:a7:7c:67:6c:7d:e3:fb:40:99:7e:a7:d5:
fa:c8:66:1a:76:aa:25:87:c3:ab:c9:9b:f2:1b:eb:06:42:3f:
bd:72:e8:36:4c:ef:fc:86:fa:75:be:d3:83:3b:a0:76:0d:45:
29:e4:2e:60:e4:cd:82:b7:b1:88:bc:16:06:9d:50:bf:d0:fa:
13:2f:f9:ad:75:b6:fa:2e:d2:af:0d:49:10:50:e4:0b:14:58:
ba:fc:63:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:03:52 2024 by rpki-client on console-ams.rpki-client.org