Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/WJOWgADMywzT4YE2FBxTsV4U6sM.roa
File: WJOWgADMywzT4YE2FBxTsV4U6sM.roa (raw, json)
Hash identifier: 2bNKkF+ZigEW44yc2ZtKq9/Lw7elP6aazeHCG+SbhTM=
Subject key identifier: 58:93:96:80:00:CC:CB:0C:D3:E1:81:36:14:1C:53:B1:5E:14:EA:C3
Certificate issuer: /CN=1ab8f8fbea49baf59fcec22e48a9fe2157d86483
Certificate serial: 018D46698F4F8703865800B99B807172EE81
Authority key identifier: 1A:B8:F8:FB:EA:49:BA:F5:9F:CE:C2:2E:48:A9:FE:21:57:D8:64:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Grj4--pJuvWfzsIuSKn-IVfYZIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/WJOWgADMywzT4YE2FBxTsV4U6sM.roa
Signing time: Fri 26 Jan 2024 15:35:39 +0000
ROA not before: Fri 26 Jan 2024 15:35:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 193.104.169.0/24 maxlen: 24
195.200.230.0/23 maxlen: 23
2001:67c:b4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/Grj4--pJuvWfzsIuSKn-IVfYZIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/Grj4--pJuvWfzsIuSKn-IVfYZIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Grj4--pJuvWfzsIuSKn-IVfYZIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:46:69:8f:4f:87:03:86:58:00:b9:9b:80:71:72:ee:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ab8f8fbea49baf59fcec22e48a9fe2157d86483
Validity
Not Before: Jan 26 15:35:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5893968000cccb0cd3e18136141c53b15e14eac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8c:d3:a4:09:d3:7e:58:39:05:97:00:47:c2:
51:3a:e7:e3:e4:b3:d0:33:ee:30:ab:c5:35:e5:f6:
29:3b:f1:e6:0c:f1:81:4e:9f:f5:d6:95:5b:77:b4:
b4:c6:33:34:74:cf:9c:79:aa:13:1f:59:1e:6c:50:
5d:44:b5:58:c9:ca:69:7c:58:4f:d4:f7:1a:51:b3:
26:73:81:6f:e8:dc:9b:d6:e5:a9:42:32:c5:de:66:
8c:8f:93:0a:c4:6e:20:86:16:e7:f3:e9:80:27:f2:
54:cd:2a:af:66:cb:e4:07:c7:10:f7:b4:bf:f8:7e:
8c:43:59:f0:2d:5b:3f:09:c6:2e:f7:b9:32:32:f7:
72:0b:1a:af:3d:2f:e1:21:64:80:89:0b:65:77:d2:
bc:a1:cc:a5:9e:d9:38:f3:c5:b3:ea:54:9a:ca:62:
64:8d:95:f8:e9:f1:48:91:62:ad:33:47:af:43:ee:
6d:c0:e9:ff:b0:da:cd:47:a9:19:ca:01:18:ab:d1:
93:43:38:4f:8d:05:32:a8:94:63:c8:38:bc:40:8e:
5f:13:e7:94:f0:47:e2:2c:6c:84:a3:53:50:e5:37:
cd:f2:76:48:98:0a:8a:9a:7e:ea:a7:ea:ad:3e:c3:
fc:5d:4b:d4:06:48:21:5a:57:f0:fc:4e:80:ed:5e:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:93:96:80:00:CC:CB:0C:D3:E1:81:36:14:1C:53:B1:5E:14:EA:C3
X509v3 Authority Key Identifier:
keyid:1A:B8:F8:FB:EA:49:BA:F5:9F:CE:C2:2E:48:A9:FE:21:57:D8:64:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Grj4--pJuvWfzsIuSKn-IVfYZIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/WJOWgADMywzT4YE2FBxTsV4U6sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ecc102-ad7e-4101-a727-58018a03330a/1/Grj4--pJuvWfzsIuSKn-IVfYZIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.169.0/24
195.200.230.0/23
IPv6:
2001:67c:b4::/48
Signature Algorithm: sha256WithRSAEncryption
59:e2:83:29:45:2c:90:0c:8b:68:95:f1:5c:a4:23:33:03:01:
aa:bf:57:0c:c5:d1:45:9e:3f:69:1b:9f:57:8d:60:90:29:54:
d9:cd:4d:1a:17:f2:fd:a2:0b:5a:d8:a4:af:99:a1:24:40:a7:
8e:be:40:aa:bf:76:78:82:4e:8a:a3:40:d3:6b:e0:25:28:d5:
8b:e6:43:21:6b:90:bf:64:dd:77:a3:7d:67:c4:b6:87:02:d9:
32:7b:e1:7d:4a:22:e5:00:42:42:7e:05:c2:95:e6:3a:e3:1b:
e3:53:81:3b:63:04:c9:fc:89:4b:ca:36:24:97:8c:98:83:90:
d7:ed:4b:05:b1:7b:cc:07:25:7d:df:f9:b4:84:60:c7:a4:52:
a9:db:4d:e6:bc:ca:b7:3c:ad:23:53:70:9e:db:5d:b7:18:5b:
37:7a:49:bf:20:cd:b1:ca:e4:10:aa:72:bb:b8:81:e7:d9:8f:
41:1d:c9:24:7b:1d:e0:91:6f:f5:14:8e:7c:da:a5:af:a3:5b:
0d:55:83:b9:3e:26:99:03:d4:cb:97:b9:ce:0e:92:20:92:a4:
6b:81:ec:cd:63:b1:a3:2a:91:96:92:73:a0:d5:06:52:a5:b0:
f7:d9:00:df:29:ea:85:3b:c7:63:8c:8e:31:63:95:7e:44:c7:
67:e7:07:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:50:07 2024 by rpki-client on console-fra.rpki-client.org