Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/Wb8spSkXgYXC__5BWCX1pzL-udk.roa
File: Wb8spSkXgYXC__5BWCX1pzL-udk.roa (raw, json)
Hash identifier: K/nrkSw/9pYFoiwcw/h7fhCMWYZk62t9sdSW00AhSrw=
Subject key identifier: 59:BF:2C:A5:29:17:81:85:C2:FF:FE:41:58:25:F5:A7:32:FE:B9:D9
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 019351BBEA7321C3B9D755FFD495C150512A
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/Wb8spSkXgYXC__5BWCX1pzL-udk.roa
Signing time: Fri 22 Nov 2024 02:38:09 +0000
ROA not before: Fri 22 Nov 2024 02:38:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57269
IP address blocks: 79.112.0.0/15 maxlen: 24
79.116.0.0/15 maxlen: 24
79.116.0.0/16 maxlen: 24
79.117.0.0/16 maxlen: 24
86.127.224.0/19 maxlen: 24
188.26.192.0/19 maxlen: 19
188.26.192.0/21 maxlen: 24
188.26.200.0/21 maxlen: 24
188.26.208.0/21 maxlen: 24
188.26.216.0/21 maxlen: 24
188.26.218.0/24 maxlen: 24
194.55.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.mft
rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:51:bb:ea:73:21:c3:b9:d7:55:ff:d4:95:c1:50:51:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Nov 22 02:38:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59bf2ca529178185c2fffe415825f5a732feb9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:db:ff:a6:96:4f:54:dd:44:af:a8:26:01:c9:
78:bd:8c:64:cc:69:69:32:56:04:01:8d:0e:b8:6d:
ba:f7:31:32:72:12:0b:b8:35:61:07:05:cd:44:1a:
79:03:7c:cd:d7:9b:9e:06:53:c8:a1:54:3c:6c:78:
5e:17:6f:f1:54:74:98:25:47:8f:c4:c3:6d:f7:db:
93:00:0b:f6:0c:55:a1:c7:b3:1d:00:b8:73:3d:59:
f0:a0:9e:7c:03:8b:aa:f8:47:23:40:00:31:31:a2:
24:3a:cf:be:3c:13:23:0e:3a:f0:0d:d0:23:3a:56:
26:20:7b:cf:53:74:b8:ba:48:b5:ad:5d:b9:36:7d:
87:7d:c6:d8:b4:be:60:d0:2d:0f:3f:18:f9:f4:f3:
24:38:c4:1b:d7:de:d7:d0:07:0e:23:56:c6:64:3c:
e2:6b:8e:58:1e:8c:2c:42:88:b5:7e:83:71:7b:5c:
dc:e4:1d:3f:a3:73:df:51:97:fe:c8:63:12:9b:40:
39:eb:25:e8:d8:54:23:5b:82:47:ad:e9:f0:da:fe:
69:4b:82:4e:06:d2:29:9d:bf:5c:17:ff:3a:41:c4:
c7:58:cc:c5:7c:fb:7c:d7:a6:38:e5:47:17:14:8b:
b4:69:03:ac:10:75:d3:d0:cd:e1:8b:5d:7d:19:4b:
3b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BF:2C:A5:29:17:81:85:C2:FF:FE:41:58:25:F5:A7:32:FE:B9:D9
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/Wb8spSkXgYXC__5BWCX1pzL-udk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.112.0.0/15
79.116.0.0/15
86.127.224.0/19
188.26.192.0/19
194.55.169.0/24
Signature Algorithm: sha256WithRSAEncryption
25:19:01:3e:05:f0:62:8b:fc:5b:0a:ea:ea:ba:2b:a6:14:22:
48:a6:87:e0:5b:74:89:09:a5:a8:a8:60:b0:b9:94:fb:8e:4c:
1d:85:9f:08:99:0d:24:8f:77:55:b1:78:8e:a9:40:94:b3:c7:
67:03:06:08:ff:bb:2c:00:3a:96:06:dd:62:76:bc:b0:02:8f:
86:cb:d6:1a:5e:44:67:5c:c7:04:45:d2:15:3d:22:93:a6:ee:
0f:77:90:0f:87:6b:9b:26:5f:53:29:66:15:c6:ea:30:4a:89:
90:a8:01:cd:0c:32:81:8d:4c:47:a9:4f:59:37:3c:80:68:ed:
a2:ce:ca:9c:55:82:ec:e3:63:8a:e7:2c:4c:c3:fe:0f:82:d5:
bf:cf:80:44:48:b5:57:94:3c:2b:c4:66:c9:9b:03:48:3e:0f:
11:52:7d:0d:f9:29:ec:8f:87:1a:36:8f:0d:65:ea:49:35:1f:
c0:82:20:4c:38:99:b2:61:57:03:27:81:3d:91:ed:a1:be:5a:
49:5c:aa:7f:47:bb:dc:18:3b:fb:28:58:3a:bc:31:25:17:ce:
f1:e1:57:96:cf:21:d7:23:d5:0f:22:43:b9:5b:e8:b9:e1:ea:
a7:0e:fd:36:29:2b:2e:86:3b:7f:aa:61:55:28:10:4c:0f:53:
d4:d3:1f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:22:42 2024 by rpki-client on console-fra.rpki-client.org