Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wWCg3z6XVqMrQQbsVO8JnfZA8wY.roa
File: wWCg3z6XVqMrQQbsVO8JnfZA8wY.roa (raw, json)
Hash identifier: 9QsApssq7Z+SyA7fXcABtcThH2KMDqsOFgvzEHq8my0=
Subject key identifier: C1:60:A0:DF:3E:97:56:A3:2B:41:06:EC:54:EF:09:9D:F6:40:F3:06
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01927B552C79996FB9FF4341504E1563380F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wWCg3z6XVqMrQQbsVO8JnfZA8wY.roa
Signing time: Fri 11 Oct 2024 11:27:12 +0000
ROA not before: Fri 11 Oct 2024 11:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59475
IP address blocks: 31.148.26.0/23 maxlen: 24
92.38.0.0/23 maxlen: 24
95.46.112.0/23 maxlen: 24
2a02:128:13::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7b:55:2c:79:99:6f:b9:ff:43:41:50:4e:15:63:38:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Oct 11 11:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c160a0df3e9756a32b4106ec54ef099df640f306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e8:8e:fe:4a:25:de:4c:5d:6f:0a:c9:7d:d4:
71:6f:cc:51:a2:9e:d9:c2:8c:6b:60:e0:f2:4f:02:
83:02:99:69:b0:0f:a7:b5:cb:2c:6d:bc:e2:f8:cc:
8b:e0:83:52:8a:73:41:1a:4d:a5:25:6d:64:1c:6a:
1d:dc:3f:79:78:97:7f:40:fe:78:73:2c:a3:b2:af:
b2:4d:05:43:d3:30:55:c6:63:af:2e:91:14:9d:fd:
c6:11:f4:62:59:d7:fa:1e:83:3a:47:d3:e1:02:01:
50:21:4c:cc:e9:51:2c:ae:bf:68:8a:71:75:5b:7f:
4c:94:ec:57:07:ad:57:c0:b2:10:d2:d9:bf:af:5b:
89:d4:17:6b:71:cb:dc:aa:70:29:ef:25:b5:17:46:
f6:95:61:a5:49:70:66:fd:4e:4b:4e:03:3b:95:89:
2e:6e:51:34:d5:42:f0:75:e0:1a:72:e0:5b:4a:c5:
1c:0f:73:b7:c0:0e:a3:de:05:9c:f3:dd:dd:ed:8d:
36:c0:03:76:99:52:c7:02:d8:5a:a5:e0:19:93:49:
82:14:8c:94:5e:a4:17:7c:97:18:b1:d6:86:2b:d5:
d3:bc:bb:04:0b:03:b8:9f:76:e0:6f:9a:d1:d9:ce:
30:16:1b:fc:6e:af:9c:c8:2d:30:67:dc:5c:83:f8:
ef:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:60:A0:DF:3E:97:56:A3:2B:41:06:EC:54:EF:09:9D:F6:40:F3:06
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wWCg3z6XVqMrQQbsVO8JnfZA8wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.26.0/23
92.38.0.0/23
95.46.112.0/23
IPv6:
2a02:128:13::/48
Signature Algorithm: sha256WithRSAEncryption
3e:ea:c4:59:8c:84:f1:3b:8b:59:7d:5c:02:16:19:87:d1:85:
45:45:18:a8:c8:e0:68:13:e1:95:f5:7c:35:d5:f1:37:4a:91:
a8:8c:01:07:85:dc:12:aa:63:9d:54:47:21:08:ed:8e:d8:e9:
78:a4:e3:bd:61:ea:ca:df:25:29:21:3c:07:52:87:e6:be:99:
5e:1e:e1:d3:bd:fd:af:a7:93:e4:7a:ef:75:59:c7:17:b0:45:
0b:2c:e1:12:88:bd:e5:21:ab:ca:3e:b7:6a:d0:f2:cc:cd:60:
b1:bf:64:69:3f:9f:1d:7a:45:fc:21:26:99:7e:00:a6:3b:e5:
e9:af:d6:71:68:09:2e:89:14:8c:4a:ec:1c:c5:26:e8:85:9c:
8d:82:65:e9:fc:ba:1e:47:9a:b3:43:96:eb:09:df:71:f4:ad:
1b:c4:ed:66:88:c1:e4:9d:11:4b:39:c1:3e:a5:78:43:e6:17:
8c:03:e3:dc:7c:0b:e3:a2:cf:26:3a:c4:cc:82:7e:5c:02:c3:
7b:76:a4:e5:a9:e3:29:cc:5e:d1:40:28:4e:e5:67:32:f0:a9:
9c:60:a1:f5:9d:71:b5:39:8f:d0:f0:60:c8:26:e1:60:ed:8a:
96:fb:aa:5e:0c:21:4a:7c:fd:e2:cf:b7:d9:77:3c:c7:ef:0d:
61:0e:2e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:30:08 2024 by rpki-client on console-fra.rpki-client.org