Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/wPu02NffWKKARulna6SvtMI5CV4.roa
File: wPu02NffWKKARulna6SvtMI5CV4.roa (raw, json)
Hash identifier: tavn6cajhqVRme0OMZlR4d7LYixaGZvPhVMSODi/8LI=
Subject key identifier: C0:FB:B4:D8:D7:DF:58:A2:80:46:E9:67:6B:A4:AF:B4:C2:39:09:5E
Certificate issuer: /CN=7f2a32ba4219680dcdd58f6101e5c7aec1540a73
Certificate serial: 018CC94D6477B3AE903D8D33BD8BC1B5BE23
Authority key identifier: 7F:2A:32:BA:42:19:68:0D:CD:D5:8F:61:01:E5:C7:AE:C1:54:0A:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyoyukIZaA3N1Y9hAeXHrsFUCnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/wPu02NffWKKARulna6SvtMI5CV4.roa
Signing time: Tue 02 Jan 2024 08:32:21 +0000
ROA not before: Tue 02 Jan 2024 08:32:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39103
IP address blocks: 81.16.216.0/23 maxlen: 23
81.16.216.0/22 maxlen: 22
81.16.218.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/fyoyukIZaA3N1Y9hAeXHrsFUCnM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/fyoyukIZaA3N1Y9hAeXHrsFUCnM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fyoyukIZaA3N1Y9hAeXHrsFUCnM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Jun 2024 14:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:64:77:b3:ae:90:3d:8d:33:bd:8b:c1:b5:be:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2a32ba4219680dcdd58f6101e5c7aec1540a73
Validity
Not Before: Jan 2 08:32:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0fbb4d8d7df58a28046e9676ba4afb4c239095e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9b:53:ed:20:b1:77:e7:67:8d:83:54:36:8e:
9f:54:18:95:0a:c9:59:d9:f8:32:cb:82:95:d0:df:
0e:41:25:8b:fd:07:cb:9d:00:94:fc:aa:c7:02:50:
71:6c:a2:51:4c:58:7c:a7:79:e3:52:70:49:68:3c:
f3:da:d0:cc:0f:7b:88:dc:9c:85:6a:23:9a:6c:7a:
e3:39:24:0b:ba:fc:27:28:77:a5:d2:2c:1a:97:b5:
26:9d:46:de:94:54:87:16:03:68:a9:06:c1:b4:5c:
24:15:ba:a1:b8:88:24:7f:c1:6c:39:2d:7d:55:ee:
88:dc:5f:92:3c:d4:aa:66:de:b6:70:5d:db:74:c3:
3d:18:3d:c0:c8:64:4a:cb:d9:7f:25:c2:8f:80:ef:
6b:b9:99:bd:49:01:ad:91:a1:44:3c:bc:ff:1f:39:
f9:5f:75:49:b4:a2:55:1a:d9:b4:11:85:5e:de:fc:
bd:aa:16:ae:af:6a:38:ee:9a:b6:92:5d:d6:59:26:
2a:e3:4b:6d:23:9e:29:0c:c4:db:f9:6e:5f:08:ef:
78:a8:9a:0f:18:9d:77:80:b3:69:60:64:c1:5f:6f:
98:09:81:0a:97:2f:e3:b4:86:50:3a:ff:cd:b1:3b:
b8:fe:96:e1:35:f8:6d:77:6f:2f:76:59:d7:37:bd:
fb:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:FB:B4:D8:D7:DF:58:A2:80:46:E9:67:6B:A4:AF:B4:C2:39:09:5E
X509v3 Authority Key Identifier:
keyid:7F:2A:32:BA:42:19:68:0D:CD:D5:8F:61:01:E5:C7:AE:C1:54:0A:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyoyukIZaA3N1Y9hAeXHrsFUCnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/wPu02NffWKKARulna6SvtMI5CV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143e9e-96e6-474e-ad2c-22e6df4584af/1/fyoyukIZaA3N1Y9hAeXHrsFUCnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.216.0/22
Signature Algorithm: sha256WithRSAEncryption
45:2c:24:8b:3f:2f:0b:6b:69:6f:c0:8f:c0:aa:18:10:ff:cd:
76:df:9b:74:56:50:cb:16:d1:93:1f:42:df:9c:53:7b:b1:d1:
5b:93:fb:16:b6:51:7d:11:86:e5:84:de:37:a6:8d:37:cc:c0:
e7:63:2a:67:ad:00:46:56:c5:d5:e2:db:7a:7f:83:37:91:fd:
ba:b0:87:99:83:ed:fa:c3:a2:81:8f:61:17:ee:4c:7e:8b:c2:
d1:1e:bf:8e:e8:87:9c:25:e9:71:b2:5d:aa:e2:bd:9b:f4:15:
a8:c9:61:ba:c8:a8:6b:78:28:de:13:05:e6:9d:2d:82:40:fa:
9b:31:3c:d6:89:53:fa:dd:e0:8c:71:16:1d:7a:0f:a1:5e:44:
d9:ef:f7:7f:59:b6:c9:17:0c:8d:81:41:76:d0:32:46:c4:af:
c8:52:49:69:36:58:c0:55:5c:4f:b9:32:63:ce:91:19:8f:44:
6c:b0:74:fd:6c:01:83:fd:69:db:7f:67:ea:b3:a7:de:5c:c9:
44:ff:97:8c:56:75:38:64:52:49:ac:46:31:fa:57:b5:16:58:
a7:56:58:89:d1:cb:c9:c3:80:14:b3:e6:4a:b9:d5:32:56:95:
84:40:95:ee:f4:30:38:31:5a:68:cb:b0:42:4c:b1:e9:87:1d:
06:a0:1d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 21:28:37 2024 by rpki-client on console-fra.rpki-client.org