Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/WQeBwosOSRn-LJVtQmY3LGYKkNQ.roa
File: WQeBwosOSRn-LJVtQmY3LGYKkNQ.roa (raw, json)
Hash identifier: 9NG05NL2fM1WiqYYzsb6GD5g8H6uYdVSRzijEk52Q2k=
Subject key identifier: 59:07:81:C2:8B:0E:49:19:FE:2C:95:6D:42:66:37:2C:66:0A:90:D4
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018CC801B16ACEBDB8E1BB5790D2624E69B0
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/WQeBwosOSRn-LJVtQmY3LGYKkNQ.roa
Signing time: Tue 02 Jan 2024 02:30:03 +0000
ROA not before: Tue 02 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209720
IP address blocks: 92.118.134.0/24 maxlen: 24
31.40.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b1:6a:ce:bd:b8:e1:bb:57:90:d2:62:4e:69:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 2 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=590781c28b0e4919fe2c956d4266372c660a90d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7f:58:30:60:3d:2f:5c:6a:fa:0c:56:f4:49:
93:41:62:e3:0c:d3:51:e9:29:d0:f7:ce:17:67:e1:
d3:10:1f:f5:2b:39:9c:8c:d9:eb:51:de:71:0a:2d:
f0:d1:b6:4a:98:c6:53:94:d3:12:53:f6:55:3d:8b:
8e:a1:a8:c5:46:ad:ca:7f:25:83:2a:76:d9:0f:fa:
33:bb:5a:4d:e5:ff:36:fe:84:e5:fb:7a:45:39:d8:
05:12:d0:24:ab:a0:ce:79:9b:38:2a:4b:73:b5:b2:
e5:69:cf:68:44:97:24:96:3c:01:d3:10:23:17:8b:
ae:46:d9:63:19:31:74:c4:a0:7d:bb:e9:33:d1:74:
e7:d3:b6:97:36:ee:13:84:83:c6:62:7f:4a:be:94:
5b:20:cd:f6:ac:c1:0d:84:c5:15:d7:ab:0b:5c:1c:
f7:e4:92:c7:d8:50:32:a5:81:bb:4e:24:a5:16:57:
25:e3:5b:9e:a0:d6:44:2a:4b:a9:a1:a6:3f:59:a0:
b8:0e:3e:ca:23:23:cf:59:72:d9:ac:c3:87:f3:2d:
74:60:ec:74:9e:4a:5f:d7:3e:27:6f:a1:a5:24:51:
0f:e7:d6:db:c6:19:76:b6:08:59:e4:4a:14:ff:57:
a0:df:9b:6b:6b:31:d8:08:6e:1d:22:1c:72:2c:dc:
60:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:07:81:C2:8B:0E:49:19:FE:2C:95:6D:42:66:37:2C:66:0A:90:D4
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/WQeBwosOSRn-LJVtQmY3LGYKkNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.166.0/24
92.118.134.0/24
Signature Algorithm: sha256WithRSAEncryption
65:45:3d:ef:f3:5d:7f:3e:a3:7f:ba:b6:e7:3e:c3:dd:ca:94:
58:91:98:e1:66:5c:5c:ad:a5:91:ab:4e:c0:27:65:b2:7a:68:
0c:dc:66:ea:5d:1e:61:9f:c5:c5:3b:62:ef:58:02:e9:47:d9:
a8:9f:60:cb:a9:ee:d5:44:e4:76:77:af:55:d7:08:54:55:5a:
45:ee:71:ed:3a:dc:c6:a7:09:16:dc:5e:3b:16:ee:ba:77:19:
f5:95:4b:99:8c:40:f4:cc:1c:fc:47:77:aa:2d:fa:cf:fa:90:
e9:13:a0:1a:da:ff:d3:1e:dd:ac:63:2f:a1:2a:c6:c9:01:55:
a9:ee:b2:88:3e:de:a2:34:0f:bc:cd:75:39:0a:d2:90:d7:c6:
4b:ed:72:e2:a5:47:59:0c:b2:25:ac:3f:54:27:89:9d:42:75:
27:01:d7:ce:6a:00:a4:3c:15:89:55:11:1a:56:3c:c9:79:fd:
5a:5a:32:f3:06:ed:9e:a6:c5:d4:9a:c9:ec:3c:df:94:6c:c5:
f8:12:88:9e:fc:51:5c:d0:75:58:9d:7d:22:ec:b6:e7:ef:d5:
c5:19:c4:2d:a9:1e:4a:f4:6b:78:43:2a:88:46:0c:5b:5c:e0:
6e:8a:9a:88:42:ea:75:db:1a:26:33:32:1b:53:2e:05:df:d3:
3c:ef:80:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:23:21 2024 by rpki-client on console-fra.rpki-client.org