Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/W55eSvc_gsSvENsDF6ynBmxVclw.roa
File: W55eSvc_gsSvENsDF6ynBmxVclw.roa (raw, json)
Hash identifier: FDImxjK7BvdDtilI5hb0jqt/j+ES8h3hjWvTvGzDRXc=
Subject key identifier: 5B:9E:5E:4A:F7:3F:82:C4:AF:10:DB:03:17:AC:A7:06:6C:55:72:5C
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 018CC6B93FF9EB337EF3274B8F1B3983056A
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/W55eSvc_gsSvENsDF6ynBmxVclw.roa
Signing time: Mon 01 Jan 2024 20:31:18 +0000
ROA not before: Mon 01 Jan 2024 20:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200964
IP address blocks: 193.226.197.0/24 maxlen: 24
193.226.235.0/24 maxlen: 24
195.184.5.0/24 maxlen: 24
195.184.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:3f:f9:eb:33:7e:f3:27:4b:8f:1b:39:83:05:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 20:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b9e5e4af73f82c4af10db0317aca7066c55725c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:23:24:45:fe:22:52:b1:21:74:fd:20:32:9e:
b3:4e:ae:5f:c9:f0:97:32:ea:76:41:d7:59:12:41:
f3:47:69:99:e1:a8:4e:d1:04:7b:2d:c7:03:65:b2:
e1:e9:70:38:94:e3:06:18:c3:51:70:67:9c:63:ab:
da:f6:62:8d:c5:dc:5d:44:8c:d8:12:d7:09:93:72:
76:79:83:27:5b:6d:83:04:f7:48:79:7d:f5:53:7a:
71:82:e5:a7:ca:b9:95:e0:23:4c:93:eb:8a:2d:96:
59:3e:4a:0f:11:c2:92:01:ea:de:3b:1b:50:e9:ef:
88:d5:55:e7:d2:30:4d:d9:02:4f:77:c9:ad:8b:52:
81:5b:78:a1:d3:d1:ba:50:14:38:d7:c1:0e:a2:67:
b3:8a:5f:9e:63:be:1e:f8:6c:e9:e7:bf:b9:95:58:
18:7c:71:46:d2:fe:08:f6:06:3b:b8:d7:6a:37:02:
e6:bf:e0:97:49:90:4b:9b:a3:50:19:c4:a7:5a:1a:
de:c3:0e:32:bc:04:51:68:86:71:46:28:57:97:dd:
a3:94:5a:b4:07:5a:1f:70:8b:7c:81:2c:1c:d1:69:
73:bf:ff:da:08:23:ad:95:4c:c5:10:c5:66:81:f6:
e1:ea:b0:01:ce:cc:a5:ab:8b:86:aa:b4:52:8a:f9:
98:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9E:5E:4A:F7:3F:82:C4:AF:10:DB:03:17:AC:A7:06:6C:55:72:5C
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/W55eSvc_gsSvENsDF6ynBmxVclw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.226.197.0/24
193.226.235.0/24
195.184.5.0/24
195.184.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d6:0e:82:90:d6:e9:80:4b:9a:f1:1e:55:c1:df:cb:9c:a8:
88:d8:7b:c4:ae:9c:f1:4e:c6:59:16:88:2a:53:f5:ed:20:af:
25:ae:de:31:43:64:f1:3d:8e:5f:99:12:8a:3f:26:f6:47:08:
ec:44:cb:fa:73:70:4a:87:64:07:f4:10:4c:3b:ab:c0:50:5a:
9e:0d:64:e3:d7:8a:ef:af:b2:97:a1:b2:38:24:6b:35:f4:1d:
9c:4d:d8:84:56:4b:2c:20:96:cb:c5:33:4d:17:33:2f:bb:b6:
3a:d8:55:5d:5f:66:9b:a0:10:a3:f2:4c:cb:96:65:e9:1b:fd:
1f:58:82:27:49:9c:44:3c:8a:1e:ca:cb:b4:f8:47:e7:26:0f:
12:b3:bf:e4:33:ce:ca:57:27:6d:09:8a:23:cc:ff:95:3c:15:
33:79:35:c5:33:f2:3c:7f:0f:51:23:64:9f:59:92:01:49:4d:
8e:b5:79:53:0b:9c:5e:ad:d6:29:dd:2a:c1:f6:47:fc:6c:05:
b5:c3:91:51:d0:be:76:68:61:90:df:66:91:b7:24:c0:27:f1:
d9:43:77:c7:29:25:f2:8e:94:24:29:4a:72:e0:c8:a8:c4:38:
e5:e8:5d:03:b6:7a:f1:1e:7a:89:d1:47:2c:3c:b2:f9:5f:e9:
12:f5:ea:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:41:27 2024 by rpki-client on console-ams.rpki-client.org