Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/wj_EheMramg881EItdEv3vuyW5A.roa
File: wj_EheMramg881EItdEv3vuyW5A.roa (raw, json)
Hash identifier: twki4QK/rJLCoQSYpRxOKMMjGGuFs2xd1MC5fV9V/bo=
Subject key identifier: C2:3F:C4:85:E3:2B:6A:68:3C:F3:51:08:B5:D1:2F:DE:FB:B2:5B:90
Certificate issuer: /CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Certificate serial: 018CC801143DAA7889F2DFE3BABFA98E60E3
Authority key identifier: AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/wj_EheMramg881EItdEv3vuyW5A.roa
Signing time: Tue 02 Jan 2024 02:29:23 +0000
ROA not before: Tue 02 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25358
IP address blocks: 185.25.40.0/22 maxlen: 24
109.70.168.0/21 maxlen: 24
193.189.104.0/23 maxlen: 24
195.140.148.0/22 maxlen: 24
2a00:14e8::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:14:3d:aa:78:89:f2:df:e3:ba:bf:a9:8e:60:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Validity
Not Before: Jan 2 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c23fc485e32b6a683cf35108b5d12fdefbb25b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:28:8d:1a:5f:68:6a:0c:89:e4:bf:96:07:4a:
29:ab:71:e1:c5:85:a1:c4:b8:50:51:81:20:19:b2:
27:f0:38:72:e8:bb:0c:45:c4:c1:5d:8e:04:09:9d:
fb:a3:87:67:83:db:82:82:7b:05:b0:13:68:ec:5f:
15:54:48:c9:21:fd:5b:87:9b:95:ea:be:81:50:38:
7a:09:68:4e:6c:ef:aa:5b:24:fb:a1:f0:2a:e2:f2:
de:8c:b3:51:e2:98:e1:8f:98:6a:f3:62:da:0b:8d:
a4:be:cf:ee:06:bb:4b:ba:87:96:51:29:50:c1:5e:
31:39:df:f6:b5:fb:89:06:d2:71:33:b9:2a:12:18:
dc:9b:84:db:24:c8:f8:2e:3b:f6:4b:c8:e4:67:b4:
f0:1d:2e:3c:e8:53:33:db:8a:03:49:d1:f7:6d:d4:
4e:f3:8f:4e:d8:19:38:38:9e:4e:2c:b9:4d:3e:61:
d1:35:f8:cf:78:b3:31:1e:08:46:87:51:f0:03:ec:
60:40:ff:d3:63:a8:ee:64:54:d2:92:71:be:4d:81:
5a:9d:db:94:5c:49:7e:5c:41:0f:f6:45:22:e4:b1:
cf:6d:71:d5:f5:d0:35:fa:95:9a:33:f3:b2:5e:e2:
7e:2d:c0:ac:ed:3d:b3:ab:fc:7a:53:2e:a3:c7:e7:
cd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3F:C4:85:E3:2B:6A:68:3C:F3:51:08:B5:D1:2F:DE:FB:B2:5B:90
X509v3 Authority Key Identifier:
keyid:AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/wj_EheMramg881EItdEv3vuyW5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.168.0/21
185.25.40.0/22
193.189.104.0/23
195.140.148.0/22
IPv6:
2a00:14e8::/29
Signature Algorithm: sha256WithRSAEncryption
4a:25:37:f2:d3:a1:79:b3:ec:84:2d:1d:c0:43:c5:6a:0a:89:
f8:b8:6d:0e:34:a0:5f:1e:2f:18:ac:b9:e8:4d:9f:11:99:d8:
e7:1a:13:6b:1e:2b:e8:41:18:41:1a:1f:50:d6:2e:28:ee:e9:
a5:ef:8a:8d:8f:54:0f:c0:a9:4a:40:2c:9a:f3:f9:e0:11:86:
1b:f5:1d:5f:83:8d:7c:9f:ca:b1:8f:65:6e:fc:e6:ea:87:b9:
1f:cc:d8:b5:2f:39:1a:a5:12:9f:4c:19:63:88:93:a0:e4:3a:
c7:cd:8a:78:13:51:94:9b:b1:65:c9:ed:ec:d0:d1:bc:a5:3d:
d9:26:4d:dc:7e:d6:79:ca:e4:f3:0c:5b:10:a8:95:a0:48:02:
37:a1:3b:c7:08:89:ac:74:46:26:31:fb:0b:8a:d9:86:ef:cc:
8a:37:d2:2b:81:6e:91:15:82:fe:d7:10:e1:d1:d9:09:0b:60:
05:9d:b9:c5:24:15:ed:2f:3c:53:46:af:0c:9f:b6:72:03:11:
e9:cf:9a:59:dd:b7:64:8e:bc:c5:91:90:03:bb:fe:91:3e:e7:
41:78:f2:74:8c:2b:1e:e2:a9:13:74:28:89:e5:be:4e:36:fe:
1a:a3:75:ca:3c:15:b4:cf:6d:8a:9f:ee:eb:ef:0e:9b:cf:34:
f8:53:ed:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:19:30 2024 by rpki-client on console-ams.rpki-client.org