Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/8WZLUZmCKL1ic-gKYfmbZdmJPDw.roa
File: 8WZLUZmCKL1ic-gKYfmbZdmJPDw.roa (raw, json)
Hash identifier: 0GL8jSwIXYbZ0+UQ5zas4daoEmk2HrsagildnvmSAfw=
Subject key identifier: F1:66:4B:51:99:82:28:BD:62:73:E8:0A:61:F9:9B:65:D9:89:3C:3C
Certificate issuer: /CN=374c2617a372e466e98d42532dd0bd8e5cdd993d
Certificate serial: 018CC64A9A5BD0EFA92FE5BD34828680143B
Authority key identifier: 37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/8WZLUZmCKL1ic-gKYfmbZdmJPDw.roa
Signing time: Mon 01 Jan 2024 18:30:27 +0000
ROA not before: Mon 01 Jan 2024 18:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41960
IP address blocks: 80.73.246.0/24 maxlen: 24
185.73.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:03:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:9a:5b:d0:ef:a9:2f:e5:bd:34:82:86:80:14:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374c2617a372e466e98d42532dd0bd8e5cdd993d
Validity
Not Before: Jan 1 18:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1664b51998228bd6273e80a61f99b65d9893c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4a:52:28:d9:62:74:f1:db:a0:51:44:25:df:
27:a7:34:6a:dc:d2:a6:1c:40:41:d9:42:bf:02:49:
6c:a8:dc:69:14:97:9e:a5:7a:71:a9:7b:70:22:d9:
85:1b:1d:15:11:6b:15:3f:c4:53:42:80:2d:8b:e8:
3c:b8:67:c4:e0:af:e9:2c:a8:d6:3c:dd:97:ec:3a:
cd:7d:1e:f4:a5:c0:af:9f:b4:dc:b5:12:50:24:85:
e4:9c:dd:0a:fd:ae:8d:36:9d:5e:e7:ee:6f:94:d0:
83:1d:e8:57:e6:14:f5:34:b8:b6:26:48:fe:47:34:
3e:0a:a7:02:0e:96:f1:82:27:5a:0c:a1:5e:0c:e8:
a7:36:fb:1b:46:d5:e6:4d:f5:ca:e4:2f:6b:ae:2e:
82:1d:06:0a:e1:10:de:13:62:aa:9f:8c:d6:0e:03:
2e:16:8e:95:b0:65:a8:46:c9:c2:42:39:ff:d7:51:
b3:0b:ac:2d:de:6e:28:dc:65:71:0e:77:ee:84:bb:
2c:7d:5a:06:a8:3f:04:ae:76:a0:3b:8f:da:08:4e:
8f:a9:31:c7:e7:e2:d2:52:7d:59:6c:ba:6b:c9:a1:
89:5e:1e:35:66:6b:39:6c:99:58:55:d5:f8:67:c9:
c1:a1:52:e2:14:f5:66:25:a4:83:14:f5:85:f1:45:
07:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:66:4B:51:99:82:28:BD:62:73:E8:0A:61:F9:9B:65:D9:89:3C:3C
X509v3 Authority Key Identifier:
keyid:37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/8WZLUZmCKL1ic-gKYfmbZdmJPDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.246.0/24
185.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
80:db:34:ad:a7:3c:14:72:45:a1:3f:cc:5c:29:d1:ed:bc:bc:
51:45:7d:68:b9:72:15:3a:73:8a:c3:30:bb:9e:58:05:de:eb:
28:fd:dd:bf:dc:ad:f2:3f:af:44:01:a6:37:c7:c1:11:21:07:
17:88:39:1c:da:3b:57:a8:0d:95:5b:12:54:d4:85:b6:b4:b4:
5e:31:91:08:7f:38:cd:0f:6e:03:9f:2f:d4:9a:df:6c:98:89:
fa:31:76:4c:78:d8:fb:03:eb:af:f0:c0:46:cb:c7:d4:34:e2:
b8:65:3a:aa:51:dd:c2:c9:0a:e9:9e:48:9b:45:a7:c9:5b:86:
06:e1:2a:57:66:6d:e7:f1:f1:79:ad:56:34:08:4e:bc:db:e1:
87:40:6e:5b:3c:56:4e:09:0d:ce:27:fe:29:9f:1d:41:27:a8:
cc:a4:8f:94:6a:16:38:10:4e:c9:cc:eb:b2:15:ed:6e:e1:50:
78:49:3c:f3:fa:cc:e5:11:4a:1c:9f:55:9c:a7:d5:fa:4c:56:
dd:c0:1a:e8:8a:cf:21:e5:45:83:05:f7:5c:7a:4e:42:ce:e1:
5a:3c:6a:8f:ae:87:69:81:8b:ef:dd:2f:42:86:a8:34:81:b1:
3e:a7:d9:b3:10:04:ae:23:70:f4:e3:98:e0:1e:22:b6:0b:fe:
27:ee:ca:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:51:17 2024 by rpki-client on console-ams.rpki-client.org