Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WNeqiE6VCc7MLcTYwMhfSRnUWc4.roa
File: WNeqiE6VCc7MLcTYwMhfSRnUWc4.roa (raw, json)
Hash identifier: rim237dksDtnarFyl9IuM+8Gg1rZhUebzB8VUdWGMUc=
Subject key identifier: 58:D7:AA:88:4E:95:09:CE:CC:2D:C4:D8:C0:C8:5F:49:19:D4:59:CE
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 018CC26D47EDBD9343EABB4B0224C612D6D6
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WNeqiE6VCc7MLcTYwMhfSRnUWc4.roa
Signing time: Mon 01 Jan 2024 00:29:50 +0000
ROA not before: Mon 01 Jan 2024 00:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51456
IP address blocks: 212.107.248.0/21 maxlen: 21
212.107.248.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:47:ed:bd:93:43:ea:bb:4b:02:24:c6:12:d6:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 00:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58d7aa884e9509cecc2dc4d8c0c85f4919d459ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:09:d5:1d:09:0f:ef:82:43:f1:ba:63:64:
1b:ae:c3:d0:25:e1:ea:d3:52:49:05:8d:73:c7:8a:
95:bb:9b:c5:95:a8:1d:d3:cb:fa:bb:a1:81:b4:3a:
e0:a4:00:b4:ef:e2:38:09:11:48:b9:d8:e0:1a:79:
a2:9d:85:3e:1d:14:55:ec:34:07:62:55:e7:bc:1c:
47:ac:69:2d:4e:84:32:d2:e7:2f:12:a8:00:ad:67:
3b:37:c7:21:ce:5e:22:1d:e6:4f:c4:e3:90:df:6a:
d8:e9:cf:66:a6:db:37:4b:88:22:f8:3a:a3:b2:a6:
4e:2c:92:80:04:36:37:41:9d:28:65:96:7a:6c:77:
8e:c4:e5:fa:57:23:0d:e1:38:7a:be:04:09:23:b1:
8d:88:58:1d:c4:3e:20:c8:c2:06:fd:6d:b3:98:c8:
df:0e:51:f4:a4:3d:11:e9:67:9a:7e:c3:2d:d9:15:
17:fc:0e:91:9e:27:f7:0f:aa:09:62:e1:25:26:1a:
c4:66:05:ba:4a:04:8d:68:ac:5a:f8:4f:d0:d7:64:
a3:84:52:1f:c8:35:94:e6:b7:ef:ab:0d:9f:c6:1a:
47:ca:8a:3f:f5:45:27:ed:3d:4d:93:07:5d:4a:ea:
21:bc:8d:66:0f:6b:35:6b:10:85:77:b2:77:6d:aa:
af:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D7:AA:88:4E:95:09:CE:CC:2D:C4:D8:C0:C8:5F:49:19:D4:59:CE
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WNeqiE6VCc7MLcTYwMhfSRnUWc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.107.248.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:c3:2e:95:cd:14:bd:f8:e3:de:fe:3d:66:ee:2e:76:9a:82:
cf:c9:d3:05:b4:11:20:9e:fc:e1:38:e4:33:6f:0c:64:65:9e:
ba:ed:00:fe:bf:27:0d:75:01:32:b1:be:b5:5b:51:54:21:22:
c9:4e:60:f8:d7:9e:0a:cf:de:ca:bd:19:64:c3:af:e7:f3:ca:
f4:e4:f2:b8:cb:b5:cd:49:b8:dd:9e:11:3a:18:af:48:5b:05:
c4:7b:bc:11:b3:06:1f:f6:5c:16:f5:4c:49:6a:0e:a1:6c:f6:
56:f3:d2:47:59:65:45:b2:35:16:2d:e9:cd:e5:65:85:93:71:
7a:58:f2:80:d1:4c:53:65:e0:e9:06:75:b0:dd:02:ad:3a:34:
8e:f7:06:06:35:97:5f:8c:8a:5b:2e:a8:30:34:72:2d:1c:9f:
d1:f2:74:b3:41:b2:ec:3d:fc:ef:3b:11:57:e5:3d:7e:5b:38:
10:23:af:96:58:b6:b4:96:c5:15:de:88:0a:64:0a:55:86:af:
e6:4b:e7:56:29:96:c3:38:2a:f0:c1:61:19:b8:de:0e:a5:04:
00:57:6e:ea:38:9c:28:a7:e9:6a:c6:0c:78:d1:ed:4f:c1:08:
5a:99:1b:e2:b6:36:ea:75:b4:d7:6d:94:ed:de:d4:0f:77:b9:
b4:29:e5:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbUftvZND6rtLAiTGEtbWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NTNlNjVhMzA4N2I0Y2E4NWM4ODAyYjYwZmYwZjAyYjQx
MDZkOTcwHhcNMjQwMTAxMDAyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGQ3YWE4ODRlOTUwOWNlY2MyZGM0ZDhjMGM4NWY0OTE5ZDQ1OWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwsJ1R0JD++CQ/G6Y2QbrsPQJeHq
01JJBY1zx4qVu5vFlagd08v6u6GBtDrgpAC07+I4CRFIudjgGnminYU+HRRV7DQH
YlXnvBxHrGktToQy0ucvEqgArWc7N8chzl4iHeZPxOOQ32rY6c9mpts3S4gi+Dqj
sqZOLJKABDY3QZ0oZZZ6bHeOxOX6VyMN4Th6vgQJI7GNiFgdxD4gyMIG/W2zmMjf
DlH0pD0R6WeafsMt2RUX/A6Rnif3D6oJYuElJhrEZgW6SgSNaKxa+E/Q12SjhFIf
yDWU5rfvqw2fxhpHyoo/9UUn7T1NkwddSuohvI1mD2s1axCFd7J3baqvzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFjXqohOlQnOzC3E2MDIX0kZ1FnOMB8GA1UdIwQY
MBaAFFhT5lowh7TKhciAK2D/DwK0EG2XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQt
ZTE4NjAyNzM5Y2Q1LzEvV05lcWlFNlZDYzdNTGNUWXdNaGZTUm5VV2M0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQtZTE4NjAyNzM5Y2Q1
LzEvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD1Gv4MA0G
CSqGSIb3DQEBCwUAA4IBAQCiwy6VzRS9+OPe/j1m7i52moLPydMFtBEgnvzhOOQz
bwxkZZ667QD+vycNdQEysb61W1FUISLJTmD4154Kz97KvRlkw6/n88r05PK4y7XN
SbjdnhE6GK9IWwXEe7wRswYf9lwW9UxJag6hbPZW89JHWWVFsjUWLenN5WWFk3F6
WPKA0UxTZeDpBnWw3QKtOjSO9wYGNZdfjIpbLqgwNHItHJ/R8nSzQbLsPfzvOxFX
5T1+WzgQI6+WWLa0lsUV3ogKZApVhq/mS+dWKZbDOCrwwWEZuN4OpQQAV27qOJwo
p+lqxgx40e1PwQhamRvitjbqdbTXbZTt3tQPd7m0KeWP
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:18 2024 by rpki-client on console-ams.rpki-client.org