Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/wlXZcfbgaUM2PYuisO8YcHINkJQ.roa
File: wlXZcfbgaUM2PYuisO8YcHINkJQ.roa (raw, json)
Hash identifier: S+LSHXvxo6KlckfIODawRCHSxlQ6zA5PqijHvP1T7IA=
Subject key identifier: C2:55:D9:71:F6:E0:69:43:36:3D:8B:A2:B0:EF:18:70:72:0D:90:94
Certificate issuer: /CN=463f917077f8f3d0e338c742ea21d64358d19d52
Certificate serial: 019056A650B0F1F2B4C7E2B3D0F87305420C
Authority key identifier: 46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/wlXZcfbgaUM2PYuisO8YcHINkJQ.roa
Signing time: Wed 26 Jun 2024 22:24:18 +0000
ROA not before: Wed 26 Jun 2024 22:24:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44196
IP address blocks: 195.2.202.0/23 maxlen: 23
195.2.202.0/24 maxlen: 24
195.2.203.0/24 maxlen: 24
195.93.132.0/23 maxlen: 23
195.93.132.0/24 maxlen: 24
195.93.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:56:a6:50:b0:f1:f2:b4:c7:e2:b3:d0:f8:73:05:42:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463f917077f8f3d0e338c742ea21d64358d19d52
Validity
Not Before: Jun 26 22:24:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c255d971f6e06943363d8ba2b0ef1870720d9094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:df:e8:55:20:1e:ef:82:22:6e:fb:87:b8:
8f:d8:47:02:04:e3:8a:c3:3d:ab:f7:d6:ed:f5:c9:
75:c5:96:3d:06:38:a4:81:cc:4f:ed:aa:df:9d:8a:
58:4a:49:8f:60:47:bf:0e:b4:ab:78:8a:97:ab:9e:
07:6b:d7:f6:5a:2e:a8:ce:44:eb:64:21:99:43:08:
cc:57:87:7e:82:60:c2:df:c8:4b:0d:24:b0:77:9f:
17:10:79:d4:b5:ea:f9:bc:6f:84:b0:fb:37:45:48:
e2:1b:e8:a9:b0:51:99:92:d3:9e:64:d8:7a:c8:29:
ab:5e:a5:90:1c:bb:2c:73:0c:91:18:d2:25:d0:08:
a4:24:b8:a2:2d:47:ee:9f:59:00:f1:2b:5b:f1:ff:
88:ce:b5:44:5b:3d:6d:2e:17:1c:78:31:7e:35:0e:
27:85:38:0a:32:02:34:00:96:e2:04:04:ee:a3:53:
4e:02:1a:38:c5:67:82:2c:3a:9d:4a:ee:4a:9b:87:
33:8b:3d:56:c7:34:56:b7:bb:0c:a3:a1:61:b0:94:
8d:5e:93:17:12:ec:1b:da:85:8c:0f:dd:d9:ab:20:
66:a2:f6:c2:fa:67:72:d4:3c:1c:ae:56:3f:b2:d5:
5c:4f:d9:a6:b5:62:f1:21:85:aa:4d:12:31:75:b7:
40:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:55:D9:71:F6:E0:69:43:36:3D:8B:A2:B0:EF:18:70:72:0D:90:94
X509v3 Authority Key Identifier:
keyid:46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/wlXZcfbgaUM2PYuisO8YcHINkJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
195.93.132.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:2d:ea:27:65:51:4a:47:5e:da:30:b1:9f:5e:55:cb:dc:5b:
72:67:2f:36:24:6c:cf:48:42:ab:e3:3c:68:e7:49:bf:bb:8d:
6e:e4:39:3e:46:20:10:7d:8f:ed:4f:6d:84:88:19:47:1b:2b:
b0:64:66:a1:e9:cb:55:12:cd:f2:40:c6:2b:fd:03:d0:32:b6:
83:2b:30:c5:88:56:29:56:e0:fa:45:cf:0c:b6:6d:08:6d:de:
60:50:8c:9c:0a:93:ee:e3:56:40:19:22:d9:96:26:c9:15:07:
a6:1d:d4:3a:2d:c3:b3:8d:fd:fb:3e:1d:35:90:81:c0:05:45:
80:b4:d2:c8:ad:29:3e:ab:77:b2:83:81:d4:3c:f1:63:4d:4d:
91:d1:66:3b:7d:c9:53:1f:5a:9e:75:32:21:b1:57:3e:90:59:
a0:38:30:4d:d5:29:f4:ca:db:34:3a:af:8d:2c:9d:2a:05:c3:
b4:88:87:1e:2f:6d:19:0f:1f:92:3d:33:97:e5:5d:6d:ea:3c:
23:06:6f:6b:8b:7e:91:90:f4:dc:62:ba:d7:bc:5f:08:43:d1:
ff:38:94:a0:f8:e7:98:35:b6:fb:32:2e:65:17:f6:46:62:b7:
7e:bf:4a:40:d7:d6:2a:1c:2e:31:07:e1:80:4c:04:f8:09:f5:
2a:9a:0a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:37:39 2024 by rpki-client on console-ams.rpki-client.org