Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/WZkVOTdYQ7gzSzQx92g9ij8bNn8.roa
File: WZkVOTdYQ7gzSzQx92g9ij8bNn8.roa (raw, json)
Hash identifier: mK5D4xpCGINES5QAK85hJ8E7JosvYtAQVQRBZCr2rpY=
Subject key identifier: 59:99:15:39:37:58:43:B8:33:4B:34:31:F7:68:3D:8A:3F:1B:36:7F
Certificate issuer: /CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Certificate serial: 0190FEFBF9BD6C05DF955892F9A3797881CD
Authority key identifier: 65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/WZkVOTdYQ7gzSzQx92g9ij8bNn8.roa
Signing time: Mon 29 Jul 2024 14:54:04 +0000
ROA not before: Mon 29 Jul 2024 14:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28730
IP address blocks: 93.95.202.0/24 maxlen: 24
93.95.203.0/24 maxlen: 24
93.95.206.0/24 maxlen: 24
185.176.44.0/24 maxlen: 24
185.176.45.0/24 maxlen: 24
185.176.46.0/24 maxlen: 24
185.176.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/ZctPbNhIn93Rc5cKDvRNThVHpAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/ZctPbNhIn93Rc5cKDvRNThVHpAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fe:fb:f9:bd:6c:05:df:95:58:92:f9:a3:79:78:81:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Validity
Not Before: Jul 29 14:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59991539375843b8334b3431f7683d8a3f1b367f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:e0:55:09:3c:d7:2a:58:d3:22:76:1f:50:
71:b8:c0:2e:04:58:41:e1:df:51:78:af:fb:46:0d:
d2:ee:8f:20:1a:d1:a2:88:bd:ec:23:9a:e3:17:86:
e1:4e:a5:97:5a:b2:81:e2:dc:b5:4a:18:8b:59:8d:
49:7b:48:99:28:e8:10:24:85:fe:d6:07:30:1c:fd:
e5:0a:64:7c:73:ab:19:1c:ca:a7:2b:cc:54:0d:d3:
59:ad:89:47:10:c2:6d:3a:d0:18:a6:35:6f:97:b9:
75:ad:f8:01:e6:2e:52:b7:b3:12:76:83:6f:72:05:
57:cb:b2:03:5a:98:b5:3d:18:84:49:4f:75:34:fa:
eb:dc:80:b7:78:fd:bd:c7:4b:a9:66:1e:b6:08:89:
0b:fa:9c:09:0e:99:b7:c4:b5:91:65:55:30:3f:08:
b4:3d:af:06:8c:c1:72:ca:d1:f4:f8:5b:b8:d9:84:
a6:a6:82:63:fc:71:72:2a:4f:bd:89:04:1a:13:48:
9f:ac:83:db:91:b2:c1:44:8f:39:ff:b6:84:aa:82:
ca:39:f4:e3:8d:57:c3:9b:6b:11:4f:36:b4:ee:9f:
6a:be:b0:dd:8b:a7:df:6c:28:8d:d1:2a:72:2e:0d:
54:4e:23:2b:3e:11:cd:70:ac:ef:14:f3:a3:d8:b4:
cc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:99:15:39:37:58:43:B8:33:4B:34:31:F7:68:3D:8A:3F:1B:36:7F
X509v3 Authority Key Identifier:
keyid:65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/WZkVOTdYQ7gzSzQx92g9ij8bNn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/ZctPbNhIn93Rc5cKDvRNThVHpAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.202.0/23
93.95.206.0/24
185.176.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:06:79:3b:18:71:20:3a:26:f9:61:09:28:1f:5d:13:49:ab:
6a:64:29:68:ca:e6:a0:ce:6b:86:33:b4:27:03:4b:e2:73:f1:
17:48:ae:ab:41:e6:b9:f5:a4:01:32:2a:24:41:f8:40:db:a5:
27:30:f7:d4:fb:2c:91:ed:3b:82:f2:b7:23:9a:a9:f4:36:3c:
4f:36:0f:95:dd:2d:c4:ab:2b:c4:2c:6f:ff:3f:c2:56:f5:ad:
e2:2b:e7:3c:72:26:23:0f:60:a0:1c:54:39:34:3b:0d:6a:91:
d4:bc:74:3d:79:7b:ed:90:72:0e:9e:be:11:b2:70:71:eb:d3:
54:4a:92:18:f6:2d:20:9c:47:90:e5:d6:1f:28:a3:2e:14:48:
8f:72:c1:f0:12:99:61:9d:59:a3:0c:8d:54:e8:28:38:86:ea:
8c:37:d3:71:08:59:1f:26:83:13:ed:fc:f3:7b:03:3f:74:8b:
e9:c3:78:23:52:fb:b2:6d:33:61:3b:b8:bd:86:56:98:06:56:
2c:e9:56:6b:73:18:db:a2:49:6c:11:0a:07:01:1f:b4:b5:09:
b2:4f:2b:38:bc:46:d4:8a:61:46:85:f5:54:bf:5d:bb:84:3d:
5f:bc:ef:45:28:b8:af:a6:2e:24:3b:d5:9e:09:76:d2:f6:dd:
58:02:f6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 06:36:46 2024 by rpki-client on console-fra.rpki-client.org