Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/WZqjijoqaKdorJiX3pa4VTU8ko0.roa
File: WZqjijoqaKdorJiX3pa4VTU8ko0.roa (raw, json)
Hash identifier: 3Kg4kD+wNahb009RpQY3Q6LBsz5JNK0pM8jrdBW3qGc=
Subject key identifier: 59:9A:A3:8A:3A:2A:68:A7:68:AC:98:97:DE:96:B8:55:35:3C:92:8D
Certificate issuer: /CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Certificate serial: 018E05B542425AA73C5D45F8A2111ECDF21C
Authority key identifier: FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/WZqjijoqaKdorJiX3pa4VTU8ko0.roa
Signing time: Sun 03 Mar 2024 19:05:48 +0000
ROA not before: Sun 03 Mar 2024 19:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51020
IP address blocks: 212.126.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 13:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:05:b5:42:42:5a:a7:3c:5d:45:f8:a2:11:1e:cd:f2:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Validity
Not Before: Mar 3 19:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=599aa38a3a2a68a768ac9897de96b855353c928d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:80:94:aa:70:bf:6c:3c:4e:b5:06:57:15:62:
46:84:09:ca:5f:a2:ec:a3:32:df:ae:c2:90:0d:62:
1d:4f:c4:55:ae:52:e3:b3:df:e4:c6:06:7e:c2:b3:
b8:f7:78:96:f4:18:b6:76:6f:77:3f:14:fd:dd:4e:
b8:2c:aa:bd:91:df:9b:58:1e:ea:fc:a0:51:2f:56:
b3:bf:40:fa:d5:8d:3e:76:0b:06:f0:99:c5:95:ca:
9c:5d:ee:38:e9:55:22:6d:8d:19:14:b2:1d:8e:1e:
c7:c1:d0:6c:78:da:0a:1a:74:f7:63:db:6c:0b:4e:
0a:21:a1:43:c9:dd:1a:d6:24:e4:f7:a1:c0:13:d6:
43:42:a9:86:f2:13:a8:b2:fd:a8:91:7f:d0:8d:b7:
52:3c:3c:d4:a0:f1:d0:c7:4d:c5:41:4d:f6:74:3c:
e7:58:31:9b:57:cd:6e:b3:3d:33:a5:07:cd:83:f2:
b7:f1:b5:e9:a4:14:bf:bc:8d:dc:75:4a:d8:cf:d0:
85:18:8c:ab:96:de:dd:32:b1:88:ae:e7:7f:27:32:
04:82:4a:8e:89:17:4d:d2:de:b6:37:d1:73:91:63:
f7:44:50:7f:9c:16:3a:c6:74:a3:b8:a2:13:48:9f:
db:82:ec:30:31:06:97:57:e4:52:f2:33:1f:36:9a:
1f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9A:A3:8A:3A:2A:68:A7:68:AC:98:97:DE:96:B8:55:35:3C:92:8D
X509v3 Authority Key Identifier:
keyid:FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/WZqjijoqaKdorJiX3pa4VTU8ko0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.126.115.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a9:db:e2:39:77:de:b4:92:b6:6b:77:fd:93:18:d0:77:5e:
17:d0:99:d7:cc:b1:d3:25:f9:9c:5a:67:22:16:a8:7a:a7:6c:
25:fb:5e:06:74:26:cd:f5:19:8f:6e:fc:e6:f1:75:12:a4:37:
ef:fc:96:68:4a:25:63:28:f6:1a:5f:55:12:7a:a8:2b:b9:c9:
af:4e:8d:a7:9f:f2:55:ed:0f:59:57:8a:06:cf:83:a2:79:11:
ed:a2:a0:7a:bd:5a:b6:98:b4:74:97:36:24:5a:ef:8a:5e:0d:
7c:7e:3b:24:79:cf:29:89:0c:eb:d0:66:bc:14:c6:39:4b:c9:
a2:5e:da:bb:6a:f0:75:67:96:44:ad:b8:26:b8:89:f6:20:95:
2e:0f:c8:8c:c1:04:52:6c:07:8d:ac:9b:1b:f3:7a:f5:37:21:
b7:5a:fb:82:f7:51:68:aa:55:45:50:44:40:86:be:56:38:38:
ce:d1:a6:a9:bc:2d:94:26:de:33:f6:a7:5f:80:1d:c5:94:51:
49:43:bc:0a:2f:e6:9b:cc:31:19:d7:c9:57:a1:47:16:f3:12:
30:4b:27:c7:43:10:b3:b0:09:ea:2b:5f:d5:ce:7b:45:a9:19:
b6:a4:73:d6:1c:37:35:6b:66:a8:44:9d:1e:c3:97:67:27:72:
4c:b9:a5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 20:42:51 2024 by rpki-client on console-ams.rpki-client.org