Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/wFjn6IhiIVJzS4tGb09EvyHGwbg.roa
File: wFjn6IhiIVJzS4tGb09EvyHGwbg.roa (raw, json)
Hash identifier: TrbkVqfGUEVmNrDtTofqauuiRqiWZlmagROiGBJNEtM=
Subject key identifier: C0:58:E7:E8:88:62:21:52:73:4B:8B:46:6F:4F:44:BF:21:C6:C1:B8
Certificate issuer: /CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Certificate serial: 018CC793EC0AD77FACD249EE7BE471C9B1C9
Authority key identifier: 74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/wFjn6IhiIVJzS4tGb09EvyHGwbg.roa
Signing time: Tue 02 Jan 2024 00:30:09 +0000
ROA not before: Tue 02 Jan 2024 00:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 88.212.158.0/24 maxlen: 24
88.212.157.0/24 maxlen: 24
88.212.156.0/24 maxlen: 24
88.212.159.0/24 maxlen: 24
185.8.132.0/24 maxlen: 24
185.8.135.0/24 maxlen: 24
185.8.134.0/24 maxlen: 24
185.8.133.0/24 maxlen: 24
83.151.192.0/24 maxlen: 24
83.151.193.0/24 maxlen: 24
83.151.195.0/24 maxlen: 24
83.151.194.0/24 maxlen: 24
88.202.211.0/24 maxlen: 24
88.202.210.0/24 maxlen: 24
88.202.209.0/24 maxlen: 24
88.202.208.0/24 maxlen: 24
88.202.208.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:ec:0a:d7:7f:ac:d2:49:ee:7b:e4:71:c9:b1:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Validity
Not Before: Jan 2 00:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c058e7e888622152734b8b466f4f44bf21c6c1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:69:ff:68:16:38:36:51:03:0d:fb:5b:7d:
ad:a3:0e:3b:51:78:43:a7:1b:fb:38:99:48:9b:2a:
32:8f:c5:e3:a3:24:fb:70:3d:b1:61:c3:d3:e5:6e:
33:5c:64:34:2c:4b:14:44:20:0b:a8:09:1e:a7:ac:
23:32:82:d1:46:71:7f:5e:25:89:4c:c2:1c:51:de:
e2:32:aa:1c:27:cd:1b:d7:02:9b:7f:7b:e9:6e:5c:
1b:9e:ec:a6:3f:1b:30:01:5a:39:ab:ae:2f:7a:80:
d2:02:08:ef:14:26:2b:f5:09:89:8c:1b:16:11:3a:
de:fc:b8:d2:d9:f5:a6:c5:1e:60:53:51:bc:4c:e6:
a5:53:d4:ee:97:d4:67:f7:02:f5:1c:c9:12:c9:3a:
09:c9:d2:d5:4a:bf:36:70:f9:58:15:63:99:9e:f3:
53:72:52:8b:ae:b0:d4:bb:22:20:0e:fb:33:4f:e1:
74:b5:2e:0a:f4:08:e7:af:d6:98:0b:16:f8:c5:07:
50:d1:77:97:bd:92:74:f5:75:39:0b:cb:ab:a5:43:
49:e4:93:56:c6:f4:ea:5f:5f:e9:4e:8c:28:42:9c:
57:c9:96:82:69:55:c5:02:71:99:7a:3f:3f:10:e6:
02:09:ae:41:8b:f2:b7:b2:4d:59:6e:0c:cf:29:ba:
1b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:58:E7:E8:88:62:21:52:73:4B:8B:46:6F:4F:44:BF:21:C6:C1:B8
X509v3 Authority Key Identifier:
keyid:74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/wFjn6IhiIVJzS4tGb09EvyHGwbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.151.192.0/22
88.202.208.0/22
88.212.156.0/22
185.8.132.0/22
Signature Algorithm: sha256WithRSAEncryption
06:75:88:54:57:11:be:a0:25:c4:aa:15:37:2f:ce:ee:c9:29:
5c:4f:60:66:58:79:fd:76:ac:b7:38:c1:d3:db:7c:5e:78:34:
b2:b6:dc:b9:4c:5e:f1:6a:2f:91:cc:42:1b:41:e7:6b:d7:4e:
6a:26:1a:91:5c:36:cf:10:0a:7f:09:89:cd:41:9b:93:37:01:
5a:22:e6:28:2b:8f:16:45:75:de:5c:26:ba:56:3c:c9:15:5f:
5b:ef:25:39:91:ef:63:cc:90:22:87:e1:37:73:32:2d:8c:f8:
a2:58:b7:d6:af:26:3a:af:67:da:87:ae:a9:ce:03:a5:57:63:
b6:c5:d5:d3:49:57:59:06:5a:7b:40:48:d5:7f:a7:98:e6:6d:
2f:2a:44:bb:51:d7:7c:b3:f9:86:8c:74:b9:2f:ab:2b:d6:b7:
e9:36:48:99:07:ca:9f:d6:80:11:3a:4d:af:5d:28:68:b5:dc:
68:38:a0:07:39:3f:20:d7:8b:1b:37:d3:fb:7a:8f:8b:04:c3:
25:41:09:ed:f3:4c:1d:98:91:66:dd:34:f9:20:c9:3e:79:73:
89:45:7e:61:20:35:09:01:6c:5c:2f:96:95:9e:cd:11:3c:40:
01:15:ce:0c:23:68:df:b2:d3:95:bb:7d:e2:15:fe:b5:ae:10:
60:13:ef:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:50:31 2024 by rpki-client on console-ams.rpki-client.org