Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WpkijitNrcK2yjgMlU4t3EeJGNg.roa
File: WpkijitNrcK2yjgMlU4t3EeJGNg.roa (raw, json)
Hash identifier: +Frm3uy+wbG/ccIax5fadl9XB42s4p+cFHNpJJ34BTg=
Subject key identifier: 5A:99:22:8E:2B:4D:AD:C2:B6:CA:38:0C:95:4E:2D:DC:47:89:18:D8
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 0192EE836561A66FDF20B5DD92290D62BA00
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WpkijitNrcK2yjgMlU4t3EeJGNg.roa
Signing time: Sat 02 Nov 2024 20:14:01 +0000
ROA not before: Sat 02 Nov 2024 20:14:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 91.147.119.0/24 maxlen: 24
91.147.123.0/24 maxlen: 24
91.147.124.0/23 maxlen: 23
91.147.126.0/23 maxlen: 24
212.116.244.0/24 maxlen: 24
212.116.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ee:83:65:61:a6:6f:df:20:b5:dd:92:29:0d:62:ba:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Nov 2 20:14:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a99228e2b4dadc2b6ca380c954e2ddc478918d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7f:46:cc:9e:48:67:a9:b3:e8:69:21:9f:17:
d1:45:f3:dc:ad:49:66:5b:ff:d7:e5:8e:7b:33:e6:
3a:03:36:84:56:3b:a7:01:d0:88:47:60:14:05:41:
28:5e:2f:02:0a:06:79:f8:73:65:f2:f9:93:a9:12:
35:0e:b1:04:83:63:d4:da:6b:af:52:69:c7:cc:f9:
5b:ea:de:df:0e:94:25:19:66:db:de:ed:31:9c:17:
cf:d0:37:2e:d5:cb:6f:12:41:ad:62:34:1f:46:26:
c2:63:12:c9:76:bc:c9:ed:4f:d8:ac:8f:27:29:11:
7e:83:79:e8:f5:d6:53:79:36:61:01:8a:30:02:7d:
09:fa:4c:0a:2e:d4:14:ac:ea:68:95:76:15:97:99:
53:fb:7a:59:51:79:4e:a6:ae:e9:17:03:5c:19:f4:
fe:5f:1f:b2:7e:63:e8:03:1d:7b:39:06:83:41:35:
ab:19:dd:da:3e:61:18:c9:5e:c1:86:1a:d0:79:24:
ac:db:bf:c7:f0:83:ed:c4:fa:7e:86:01:e4:6e:4b:
b0:c3:00:09:3e:44:4f:b5:56:36:0b:f3:a1:23:c4:
73:2e:13:84:34:f5:70:b7:48:2c:f5:56:50:f8:29:
b1:a7:f9:d1:b9:9b:5d:12:43:74:cc:42:cd:71:49:
55:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:99:22:8E:2B:4D:AD:C2:B6:CA:38:0C:95:4E:2D:DC:47:89:18:D8
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WpkijitNrcK2yjgMlU4t3EeJGNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.119.0/24
91.147.123.0-91.147.127.255
212.116.244.0/24
212.116.246.0/24
Signature Algorithm: sha256WithRSAEncryption
09:58:f4:ce:de:ac:21:54:98:8c:9a:04:94:28:fc:14:4c:48:
04:62:1e:0a:ad:30:e1:ae:51:f1:db:da:d0:16:33:d6:15:80:
d8:81:7c:a3:7b:1f:09:00:16:b9:58:6f:c0:f8:41:8d:92:25:
92:5c:48:c9:ba:8d:b5:9b:e9:d2:a0:0f:30:01:97:88:3a:25:
99:96:33:3a:de:7a:4d:30:7a:3b:c8:d7:2e:d0:93:e2:05:55:
9b:3e:85:e5:10:42:56:a2:9a:d9:80:fe:b4:f7:e3:4f:c1:c6:
b8:3d:06:b1:ae:b8:3f:e4:74:83:3e:b6:0b:76:79:80:cd:93:
9b:56:a0:9a:cf:ad:8e:bd:ae:89:64:4d:b2:a8:f3:82:30:97:
9c:f0:f1:0a:f3:1f:6d:0f:fa:6c:d7:d0:ec:cc:8d:12:29:82:
f6:ea:5e:b7:6a:a6:dc:3b:5e:76:b7:9a:cf:91:56:cc:10:e7:
cf:a0:e3:03:4e:01:79:92:94:9f:cf:43:5f:36:98:e8:9d:64:
c6:96:53:7a:c4:77:6b:d1:91:c4:6a:9e:83:62:36:2b:2f:10:
a5:79:2f:cb:2f:98:60:14:2e:55:f1:49:6e:63:34:a2:fc:50:
84:f7:b4:40:41:02:92:1b:9d:fc:ed:2e:b2:64:bb:83:9c:01:
ff:5c:a0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:48 2024 by rpki-client on console-ams.rpki-client.org