Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/wbyWLhgbjRCDs4MGZpKfSwSwntc.roa
File: wbyWLhgbjRCDs4MGZpKfSwSwntc.roa (raw, json)
Hash identifier: Y9nm60qQucGX9HyvQ8IahpDcCG+xEpP8zq3V24NBTBY=
Subject key identifier: C1:BC:96:2E:18:1B:8D:10:83:B3:83:06:66:92:9F:4B:04:B0:9E:D7
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 018EE0BA425741755407E0E74DD9ED91530C
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/wbyWLhgbjRCDs4MGZpKfSwSwntc.roa
Signing time: Mon 15 Apr 2024 07:48:06 +0000
ROA not before: Mon 15 Apr 2024 07:48:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 46.6.48.0/21 maxlen: 21
46.6.56.0/21 maxlen: 21
178.237.224.0/21 maxlen: 21
178.237.232.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e0:ba:42:57:41:75:54:07:e0:e7:4d:d9:ed:91:53:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Apr 15 07:48:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1bc962e181b8d1083b3830666929f4b04b09ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cf:b6:97:77:60:cd:c8:cf:8e:d5:0a:ee:d3:
42:96:eb:d2:ad:59:26:0d:06:86:ae:70:de:0f:7c:
8d:b0:07:e6:05:bc:7a:5d:d7:5c:d6:e8:8f:f2:84:
a3:a1:49:20:ef:f0:2b:74:1f:38:52:a4:b1:c9:6c:
99:69:eb:f0:a2:ec:e7:36:f8:61:bf:0d:ed:01:e2:
32:6f:92:2c:1f:b5:de:41:3a:87:73:b8:15:35:c1:
8e:04:11:ab:3c:f4:a2:67:4c:e3:a1:0b:b9:24:38:
1d:52:5b:dd:3a:6c:1c:b0:c7:68:a6:db:30:63:e0:
f6:07:8c:ea:90:ac:89:57:22:a7:24:78:cc:e6:a7:
f4:40:9b:33:cc:a0:37:20:c3:95:30:41:cc:09:7f:
75:25:0a:36:27:66:2e:50:89:bc:33:98:6c:dd:43:
51:be:4f:86:b3:4b:6d:0b:de:fc:06:a9:2f:3d:9b:
21:9a:22:99:5c:f3:52:30:a4:ac:4d:a3:97:85:15:
f7:65:fb:0c:25:de:96:be:d5:a4:e3:3d:c2:58:1d:
e2:f4:ed:d9:77:0b:8d:73:31:07:c4:31:35:3e:e2:
2d:8e:9a:bb:ba:7a:f9:20:06:1f:e4:4e:6e:09:af:
a6:e6:cf:3d:38:e7:cd:bf:17:ce:ed:a5:e0:40:2e:
26:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BC:96:2E:18:1B:8D:10:83:B3:83:06:66:92:9F:4B:04:B0:9E:D7
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/wbyWLhgbjRCDs4MGZpKfSwSwntc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.6.48.0/20
178.237.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:ab:f7:da:41:bd:bb:1c:7f:65:ea:bd:d9:9b:a8:96:ad:84:
eb:6d:a7:45:35:67:c2:1a:31:da:66:09:5e:c3:cf:14:64:d7:
49:94:af:4b:b2:d4:4d:c7:71:f7:d6:02:92:59:4c:44:53:b0:
da:08:13:d8:4d:71:76:ef:34:ae:1b:34:ab:69:55:ba:d0:3b:
a7:fc:24:f6:89:bb:55:34:86:5b:8e:90:b5:78:9f:dd:c5:5b:
8c:78:1a:fe:54:58:55:b1:a2:0a:fb:c8:7c:af:f4:4a:7f:4b:
01:41:ec:4a:89:3a:6c:c6:61:c6:f4:e1:ef:02:9c:55:61:7e:
89:a9:97:43:77:d1:1a:e9:bd:62:2e:ee:c2:01:d9:7c:a1:58:
05:71:08:14:c9:ad:b2:42:56:af:93:c1:a1:f4:fc:ca:6c:da:
20:66:3d:8f:c5:2d:b0:45:ee:42:37:94:01:3b:50:97:f0:f6:
65:04:24:4f:94:45:6a:ef:79:ac:f8:4b:da:22:4c:78:11:e6:
df:5f:11:67:86:21:53:35:45:28:4e:0c:a3:05:bb:ba:22:90:
29:a2:74:96:5b:4c:d4:1c:43:b0:0e:32:22:8f:7c:db:dd:01:
04:ec:e0:88:a5:ed:03:f7:ec:54:6d:08:6d:ba:82:f8:3d:3e:
bf:43:95:22
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY7gukJXQXVUB+DnTdntkVMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhOTM5YjBjZWQzOGQ3NWNjNjNlZDUwZDZlNWNlNzJiYmI1
YjRiMTAwHhcNMjQwNDE1MDc0ODA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWJjOTYyZTE4MWI4ZDEwODNiMzgzMDY2NjkyOWY0YjA0YjA5ZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAms+2l3dgzcjPjtUK7tNCluvSrVkm
DQaGrnDeD3yNsAfmBbx6Xddc1uiP8oSjoUkg7/ArdB84UqSxyWyZaevwouznNvhh
vw3tAeIyb5IsH7XeQTqHc7gVNcGOBBGrPPSiZ0zjoQu5JDgdUlvdOmwcsMdoptsw
Y+D2B4zqkKyJVyKnJHjM5qf0QJszzKA3IMOVMEHMCX91JQo2J2YuUIm8M5hs3UNR
vk+Gs0ttC978BqkvPZshmiKZXPNSMKSsTaOXhRX3ZfsMJd6WvtWk4z3CWB3i9O3Z
dwuNczEHxDE1PuItjpq7unr5IAYf5E5uCa+m5s89OOfNvxfO7aXgQC4mQwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFMG8li4YG40Qg7ODBmaSn0sEsJ7XMB8GA1UdIwQY
MBaAFFqTmwztONdcxj7VDW5c5yu7W0sQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgt
ZDYwYjNiNmNjYTZlLzEvd2J5V0xoZ2JqUkNEczRNR1pwS2ZTd1N3bnRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgtZDYwYjNiNmNjYTZl
LzEvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQELgYwAwQE
su3gMA0GCSqGSIb3DQEBCwUAA4IBAQCmq/faQb27HH9l6r3Zm6iWrYTrbadFNWfC
GjHaZglew88UZNdJlK9LstRNx3H31gKSWUxEU7DaCBPYTXF27zSuGzSraVW60Dun
/CT2ibtVNIZbjpC1eJ/dxVuMeBr+VFhVsaIK+8h8r/RKf0sBQexKiTpsxmHG9OHv
ApxVYX6JqZdDd9Ea6b1iLu7CAdl8oVgFcQgUya2yQlavk8Gh9PzKbNogZj2PxS2w
Re5CN5QBO1CX8PZlBCRPlEVq73ms+EvaIkx4EebfXxFnhiFTNUUoTgyjBbu6IpAp
onSWW0zUHEOwDjIij3zb3QEE7OCIpe0D9+xUbQhtuoL4PT6/Q5Ui
-----END CERTIFICATE-----
Generated at Sun Apr 21 04:45:28 2024 by rpki-client on console-ams.rpki-client.org