Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/_WBT9S5VbTP_n4MhENCltAzcwH0.roa
File: _WBT9S5VbTP_n4MhENCltAzcwH0.roa (raw, json)
Hash identifier: 1LpCVRf4hKkyw8RSXemMpfmFlRj6pNSr2hgNJDe9VTg=
Subject key identifier: FD:60:53:F5:2E:55:6D:33:FF:9F:83:21:10:D0:A5:B4:0C:DC:C0:7D
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 018CC7266540565BCE67CD6977435D2D5181
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/_WBT9S5VbTP_n4MhENCltAzcwH0.roa
Signing time: Mon 01 Jan 2024 22:30:31 +0000
ROA not before: Mon 01 Jan 2024 22:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204791
IP address blocks: 185.135.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:65:40:56:5b:ce:67:cd:69:77:43:5d:2d:51:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 22:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd6053f52e556d33ff9f832110d0a5b40cdcc07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c4:b7:a0:6b:6f:e2:b7:d9:41:0d:e6:48:bf:
4a:36:86:5e:8c:ee:03:18:e1:87:e0:93:13:e9:2e:
2a:97:db:c7:1a:1c:80:93:29:64:18:48:6d:de:47:
1f:a7:a0:5f:de:2f:5d:53:62:83:6d:47:6b:53:cf:
92:df:9c:93:39:d5:9a:0a:71:76:1f:57:aa:b5:9b:
21:5f:c9:7d:33:49:5f:83:a4:cd:5b:7c:11:0a:fd:
db:6f:8c:e2:41:24:c0:2a:c6:b8:e0:65:4e:f0:91:
38:8d:f6:3a:a5:30:04:ca:57:cf:6a:fa:5f:0f:2f:
87:87:02:3e:f8:65:5c:e6:a6:33:30:04:12:39:61:
c6:d7:0c:c7:bc:30:34:78:e5:22:bc:52:04:b0:c4:
6d:b2:65:fe:23:53:da:b9:ea:8f:00:b7:e9:1b:00:
d5:db:44:55:f2:05:24:31:23:37:91:7c:c5:e6:37:
b0:da:0c:1f:b4:cd:04:ae:a6:e2:8a:5c:73:78:2e:
8b:35:5d:f1:6e:a1:f6:2e:36:38:1b:18:42:b8:16:
4a:1f:b9:a2:e3:d8:8c:ce:e1:54:1c:43:fc:06:e4:
e3:a5:3e:02:45:9f:fa:cf:03:e3:ee:a8:f5:81:71:
dd:39:24:85:ac:f2:f4:30:12:ac:69:66:1a:f4:9d:
12:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:60:53:F5:2E:55:6D:33:FF:9F:83:21:10:D0:A5:B4:0C:DC:C0:7D
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/_WBT9S5VbTP_n4MhENCltAzcwH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.182.0/24
Signature Algorithm: sha256WithRSAEncryption
09:f7:8c:b9:cf:2d:73:17:27:51:2d:c0:44:ff:e9:2b:84:18:
c5:4b:31:fd:31:fa:35:c7:0a:0c:81:34:31:fb:84:0d:39:c3:
0f:c8:50:d0:a9:d0:a0:a2:4c:13:be:7e:a0:ee:1e:6b:dc:3d:
7f:38:b3:e4:a4:df:3a:b1:08:65:04:8e:02:5a:de:07:d3:17:
8a:88:94:cb:7e:1d:69:0c:67:3d:1b:b1:af:e2:27:33:60:c8:
8b:f6:94:7e:81:b9:b2:80:4e:8c:bb:e4:81:77:d7:8c:3a:84:
74:a3:e6:89:5c:fe:40:0b:9c:7c:63:af:fb:8e:df:5b:c8:8f:
09:44:c2:0c:3b:0e:98:6d:82:75:83:bd:94:2f:f1:d0:28:1a:
64:b1:35:8f:16:96:8f:a6:3b:84:1e:43:09:f1:49:e9:d0:16:
5d:18:91:28:5d:91:36:79:0f:64:85:e5:4d:fa:2a:f8:25:e1:
33:79:df:25:de:6b:52:70:76:f0:54:21:61:7e:f9:76:6f:dd:
e8:9c:34:d7:3b:d4:62:f7:ba:0b:ba:8d:9b:05:8a:74:f7:a3:
6b:c9:1b:d7:33:76:6d:c5:14:57:71:5b:6c:94:e0:4c:3b:81:
9d:ba:18:92:8a:70:16:c5:0e:2b:d6:d3:d0:32:39:76:e1:7a:
67:f8:4b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:40:58 2024 by rpki-client on console-ams.rpki-client.org