Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/WInQl_ZRE80l03zrH3OT5_lrYbw.roa
File: WInQl_ZRE80l03zrH3OT5_lrYbw.roa (raw, json)
Hash identifier: 5QyQ7nuNyFS7mHvYYlUp1LO/bf+TDfDnTgBf0IuIBT8=
Subject key identifier: 58:89:D0:97:F6:51:13:CD:25:D3:7C:EB:1F:73:93:E7:F9:6B:61:BC
Certificate issuer: /CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Certificate serial: 018CC6B7B7E9DF1803831F5897F95500685C
Authority key identifier: 7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/WInQl_ZRE80l03zrH3OT5_lrYbw.roa
Signing time: Mon 01 Jan 2024 20:29:38 +0000
ROA not before: Mon 01 Jan 2024 20:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31727
IP address blocks: 46.175.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ejYteDKEZZ3ATu2vi4pv5ukwvSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ejYteDKEZZ3ATu2vi4pv5ukwvSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:b7:e9:df:18:03:83:1f:58:97:f9:55:00:68:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Validity
Not Before: Jan 1 20:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5889d097f65113cd25d37ceb1f7393e7f96b61bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:56:be:8c:60:08:ae:59:2a:d1:71:b2:93:
50:8e:dd:b5:23:0d:31:66:7e:bc:62:80:24:aa:59:
65:db:d4:0b:41:07:3d:42:de:ec:4f:37:1f:84:5e:
57:88:83:c5:93:02:8a:8f:f1:3e:eb:ea:ab:89:0c:
08:2a:7b:8f:ce:7d:b9:31:84:d9:22:10:4b:bf:1e:
7f:d2:13:1b:a6:12:60:91:4a:da:cb:87:78:ad:16:
a3:13:67:86:0c:81:25:24:db:a6:20:f6:49:19:b1:
e4:95:62:2a:94:88:ec:ec:db:1c:49:f7:cf:73:64:
70:54:92:2a:c4:e9:80:7f:ec:6b:4a:fa:87:8e:96:
a2:d8:1e:5c:b7:f9:98:1a:3c:24:40:af:c4:da:9f:
83:17:de:1d:f2:95:94:fd:4f:a1:7d:43:fc:eb:44:
a9:67:39:0c:16:a5:63:c6:aa:5b:49:8d:6e:18:f4:
db:e5:ae:8f:2f:2c:44:a1:18:0f:82:a0:85:f5:52:
f1:8c:6c:f0:6e:5f:2e:42:27:cc:ba:a0:64:21:55:
b1:9b:cc:3e:f1:3e:cd:cd:37:1f:ca:5c:ec:c0:42:
c8:29:aa:85:b4:ea:54:e9:9f:28:0c:18:ce:26:15:
82:05:e2:30:41:f3:07:aa:88:2a:c3:a6:59:d5:eb:
43:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:89:D0:97:F6:51:13:CD:25:D3:7C:EB:1F:73:93:E7:F9:6B:61:BC
X509v3 Authority Key Identifier:
keyid:7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/WInQl_ZRE80l03zrH3OT5_lrYbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ejYteDKEZZ3ATu2vi4pv5ukwvSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.50.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c8:f2:c4:dd:62:60:55:83:01:29:b2:67:b5:39:96:35:4d:
e4:bf:ac:f0:66:31:54:0f:81:8f:53:08:b1:69:86:7b:44:39:
a7:a0:cd:9b:7b:d0:66:3e:65:fa:d0:a2:a5:0a:d0:c3:56:89:
28:5c:1d:d5:4d:8d:1c:66:5f:77:a4:f1:31:89:48:2b:63:e9:
3f:81:77:15:35:67:cf:9f:1c:c6:ca:b8:3f:58:76:8f:df:59:
b2:5d:56:71:24:4c:52:a4:1a:55:95:6a:81:b0:e1:5c:cc:8a:
e9:c0:b5:eb:c9:a3:de:85:1d:16:e1:4b:56:2b:08:16:f8:58:
32:59:53:94:d7:0a:38:33:1b:05:48:c6:f4:db:dd:77:be:ee:
78:8e:3f:3b:c7:aa:a0:1d:52:a3:72:17:f6:f7:0b:c6:82:81:
a1:96:80:63:39:6a:04:7c:88:ab:16:cb:ce:97:ba:e9:81:7a:
12:04:d8:76:66:4a:b3:a4:8a:e5:8f:e3:b5:03:17:73:dd:26:
8c:7d:c4:70:f4:b4:ab:05:c7:94:e8:f9:bd:f8:12:27:d7:46:
6f:fd:6f:97:da:f7:09:0b:97:7f:eb:8e:38:c7:8a:55:b3:b5:
56:66:b8:e4:10:23:c2:d8:dc:4f:db:25:e6:ae:a1:3e:07:c5:
2a:f4:bb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:05:34 2024 by rpki-client on console-fra.rpki-client.org