Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/WupchqI_JmUGBo-hD7Af9a6v4Js.roa
File: WupchqI_JmUGBo-hD7Af9a6v4Js.roa (raw, json)
Hash identifier: EEEjxKttJlSfO6JUArRfLRyFHftRcmLqmKs9Vx/NrnU=
Subject key identifier: 5A:EA:5C:86:A2:3F:26:65:06:06:8F:A1:0F:B0:1F:F5:AE:AF:E0:9B
Certificate issuer: /CN=07ead29889dbf62f398f64bc614916673056d45e
Certificate serial: 018CC64B7267B215A0D1C9E715F6CA07F493
Authority key identifier: 07:EA:D2:98:89:DB:F6:2F:39:8F:64:BC:61:49:16:67:30:56:D4:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-rSmInb9i85j2S8YUkWZzBW1F4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/WupchqI_JmUGBo-hD7Af9a6v4Js.roa
Signing time: Mon 01 Jan 2024 18:31:22 +0000
ROA not before: Mon 01 Jan 2024 18:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44668
IP address blocks: 193.168.55.0/24 maxlen: 24
176.122.88.0/21 maxlen: 21
91.202.104.0/22 maxlen: 22
193.194.112.0/22 maxlen: 22
77.87.40.0/21 maxlen: 21
195.18.28.0/22 maxlen: 22
185.255.48.0/22 maxlen: 22
195.5.126.0/24 maxlen: 24
193.168.51.0/24 maxlen: 24
2a0c:5940::/48 maxlen: 48
2a0c:5940::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/B-rSmInb9i85j2S8YUkWZzBW1F4.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/B-rSmInb9i85j2S8YUkWZzBW1F4.mft
rsync://rpki.ripe.net/repository/DEFAULT/B-rSmInb9i85j2S8YUkWZzBW1F4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:72:67:b2:15:a0:d1:c9:e7:15:f6:ca:07:f4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ead29889dbf62f398f64bc614916673056d45e
Validity
Not Before: Jan 1 18:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5aea5c86a23f266506068fa10fb01ff5aeafe09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:33:72:5d:ea:3e:5d:c1:39:c5:16:56:6b:c4:
95:62:2a:5c:af:51:7d:dd:49:4b:17:d5:a0:f2:50:
16:e3:fe:4e:af:32:cc:32:eb:66:96:b6:cf:ff:c7:
7e:c5:18:f6:b2:25:4f:16:68:7a:2d:da:d2:a1:f5:
15:6d:70:cb:53:8f:8a:b1:2a:4f:54:71:7c:aa:b0:
ed:8e:6d:b8:a0:df:e0:cc:22:b5:29:78:2c:68:9d:
ac:1d:53:fc:99:b0:38:f4:ea:34:af:61:81:53:5d:
58:38:84:15:52:f6:44:f6:8d:c2:1f:dc:62:98:0e:
73:ab:b9:c2:7a:1a:7f:8d:27:da:a5:63:f3:43:e5:
47:24:b4:d6:9c:c9:4b:6d:73:cc:9c:6b:83:54:29:
24:a6:09:63:67:3f:fc:74:b6:2d:19:0d:a6:75:0e:
0e:c7:e5:ed:99:c8:27:dc:82:38:e5:d2:dd:fb:83:
81:9a:be:15:58:26:86:85:c3:62:27:57:e5:26:39:
e7:13:a4:9b:db:65:0b:77:c6:3b:e9:a5:ca:de:f0:
1d:11:5c:bb:63:05:b2:c9:80:7f:77:f2:8a:b8:40:
a9:3e:de:15:e2:a4:c6:e6:2a:60:71:34:31:ad:15:
e8:48:f9:fb:db:23:1c:af:74:97:0f:33:e7:94:d2:
f8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:EA:5C:86:A2:3F:26:65:06:06:8F:A1:0F:B0:1F:F5:AE:AF:E0:9B
X509v3 Authority Key Identifier:
keyid:07:EA:D2:98:89:DB:F6:2F:39:8F:64:BC:61:49:16:67:30:56:D4:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-rSmInb9i85j2S8YUkWZzBW1F4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/WupchqI_JmUGBo-hD7Af9a6v4Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6abcd1-eeee-46d5-9f6c-df6871e2f735/1/B-rSmInb9i85j2S8YUkWZzBW1F4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.40.0/21
91.202.104.0/22
176.122.88.0/21
185.255.48.0/22
193.168.51.0/24
193.168.55.0/24
193.194.112.0/22
195.5.126.0/24
195.18.28.0/22
IPv6:
2a0c:5940::/29
Signature Algorithm: sha256WithRSAEncryption
55:65:49:22:37:79:3b:85:a4:c1:a2:16:b9:5b:e3:af:75:0e:
f3:a0:63:7c:2e:c8:03:bb:30:08:62:04:4f:14:23:88:5c:f5:
15:20:f4:9d:3c:48:8d:b6:e1:d2:53:bc:7d:9d:f1:58:a4:27:
2b:8d:ac:74:3b:9a:73:2e:34:94:ca:e9:6e:1e:b7:df:74:11:
fa:55:60:3b:37:7b:42:a0:5a:5c:c6:fe:92:89:6c:5c:1f:a9:
ed:d5:4f:43:ed:a6:d4:40:9f:bf:9d:bb:e6:1a:4a:e6:31:48:
76:33:6f:16:27:e2:55:35:5b:d3:21:01:93:4e:28:d9:a6:f1:
cd:ac:d0:9c:e0:6d:40:a6:38:09:8f:b2:af:0e:c3:3a:84:78:
aa:ab:56:7c:a4:e4:52:0f:52:63:4f:7b:4d:c1:ef:1c:fa:5d:
e6:20:bc:a1:ee:f1:54:bf:60:96:92:11:8b:a1:3e:6b:52:0f:
9e:e3:85:f6:be:c5:af:16:48:68:27:0d:df:13:15:ff:9e:e9:
ab:86:3e:51:ef:ea:53:64:cf:2e:99:58:b3:d7:82:31:9e:80:
0f:68:e1:6a:68:23:38:e1:cf:ad:55:18:b1:06:c3:4d:44:73:
ad:5c:87:52:30:65:a1:55:d5:84:47:a3:db:0c:b8:3e:92:c0:
8a:c6:b5:36
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYzGS3JnshWg0cnnFfbKB/STMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZWFkMjk4ODlkYmY2MmYzOThmNjRiYzYxNDkxNjY3MzA1
NmQ0NWUwHhcNMjQwMTAxMTgzMTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWVhNWM4NmEyM2YyNjY1MDYwNjhmYTEwZmIwMWZmNWFlYWZlMDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzNyXeo+XcE5xRZWa8SVYipcr1F9
3UlLF9Wg8lAW4/5OrzLMMutmlrbP/8d+xRj2siVPFmh6LdrSofUVbXDLU4+KsSpP
VHF8qrDtjm24oN/gzCK1KXgsaJ2sHVP8mbA49Oo0r2GBU11YOIQVUvZE9o3CH9xi
mA5zq7nCehp/jSfapWPzQ+VHJLTWnMlLbXPMnGuDVCkkpgljZz/8dLYtGQ2mdQ4O
x+Xtmcgn3II45dLd+4OBmr4VWCaGhcNiJ1flJjnnE6Sb22ULd8Y76aXK3vAdEVy7
YwWyyYB/d/KKuECpPt4V4qTG5ipgcTQxrRXoSPn72yMcr3SXDzPnlNL4yQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFFrqXIaiPyZlBgaPoQ+wH/Wur+CbMB8GA1UdIwQY
MBaAFAfq0piJ2/YvOY9kvGFJFmcwVtReMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQi1yU21JbmI5aTg1ajJTOFlVa1daekJXMUY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC82YWJjZDEtZWVlZS00NmQ1LTlmNmMt
ZGY2ODcxZTJmNzM1LzEvV3VwY2hxSV9KbVVHQm8taEQ3QWY5YTZ2NEpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC82YWJjZDEtZWVlZS00NmQ1LTlmNmMtZGY2ODcxZTJmNzM1
LzEvQi1yU21JbmI5aTg1ajJTOFlVa1daekJXMUY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQDTVcoAwQC
W8poAwQDsHpYAwQCuf8wAwQAwagzAwQAwag3AwQCwcJwAwQAwwV+AwQCwxIcMA0E
AgACMAcDBQMqDFlAMA0GCSqGSIb3DQEBCwUAA4IBAQBVZUkiN3k7haTBoha5W+Ov
dQ7zoGN8LsgDuzAIYgRPFCOIXPUVIPSdPEiNtuHSU7x9nfFYpCcrjax0O5pzLjSU
yuluHrffdBH6VWA7N3tCoFpcxv6SiWxcH6nt1U9D7abUQJ+/nbvmGkrmMUh2M28W
J+JVNVvTIQGTTijZpvHNrNCc4G1ApjgJj7KvDsM6hHiqq1Z8pORSD1JjT3tNwe8c
+l3mILyh7vFUv2CWkhGLoT5rUg+e44X2vsWvFkhoJw3fExX/numrhj5R7+pTZM8u
mViz14IxnoAPaOFqaCM44c+tVRixBsNNRHOtXIdSMGWhVdWER6PbDLg+ksCKxrU2
-----END CERTIFICATE-----
Generated at Sat May 18 20:03:01 2024 by rpki-client on console-fra.rpki-client.org