Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/WuFy1APBIwy6JKAVQJctFZaszaA.roa
File: WuFy1APBIwy6JKAVQJctFZaszaA.roa (raw, json)
Hash identifier: O9UzF8bkJnuYItljusBcrOHzHYIIrCdeMJv6mHxJFNI=
Subject key identifier: 5A:E1:72:D4:03:C1:23:0C:BA:24:A0:15:40:97:2D:15:96:AC:CD:A0
Certificate issuer: /CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Certificate serial: 019426D9DD84A1797930B8B3637C5EF4D8D4
Authority key identifier: 7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/WuFy1APBIwy6JKAVQJctFZaszaA.roa
Signing time: Thu 02 Jan 2025 11:49:59 +0000
ROA not before: Thu 02 Jan 2025 11:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 185.135.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:dd:84:a1:79:79:30:b8:b3:63:7c:5e:f4:d8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Validity
Not Before: Jan 2 11:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5ae172d403c1230cba24a01540972d1596accda0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:96:c8:f6:96:14:46:9f:cf:69:61:ab:06:ec:
d4:2c:52:91:66:0d:ee:87:c1:e5:dc:2b:70:34:4e:
16:61:18:18:8a:98:bd:13:13:38:53:6b:f9:79:ee:
6c:5c:f1:6a:c5:48:c3:78:42:ec:ab:33:9a:a2:5c:
66:b8:17:b2:ce:56:a8:41:b3:c5:fa:19:0a:13:20:
47:fb:5c:43:62:5b:38:b0:28:c6:01:91:56:59:9c:
7b:d2:54:f9:0f:5b:b4:ce:44:5e:42:99:fa:ba:8a:
50:f7:05:91:68:6c:d2:2b:36:3c:3d:57:3d:00:dc:
db:8a:09:56:f6:77:7f:d1:3c:26:1b:2a:ec:81:39:
52:42:43:c2:79:8d:31:fd:8d:2a:05:20:ab:ad:fb:
24:13:43:79:8a:09:db:73:cc:80:ab:2d:43:81:08:
5e:56:a0:4f:21:7c:17:48:2d:e0:27:b7:cf:3e:3f:
c5:6f:e2:0a:48:bd:22:83:37:a8:74:4f:63:f7:25:
2a:89:d2:68:0e:de:0f:06:c1:8b:a7:f7:a6:97:3c:
8c:cd:93:5a:6c:9b:0f:bf:dd:58:65:d1:6e:d1:91:
0e:da:fb:fb:01:1f:48:39:93:e5:a2:c1:79:a8:61:
6a:5e:a1:35:70:3a:b8:e3:96:3a:f2:32:60:78:64:
29:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E1:72:D4:03:C1:23:0C:BA:24:A0:15:40:97:2D:15:96:AC:CD:A0
X509v3 Authority Key Identifier:
keyid:7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/WuFy1APBIwy6JKAVQJctFZaszaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.188.0/24
Signature Algorithm: sha256WithRSAEncryption
69:84:3b:f5:32:71:f0:22:9f:91:2d:59:f8:d5:4a:90:11:07:
d6:f8:c6:ed:e5:7a:2a:8f:e8:6e:4b:7a:10:30:26:fa:c3:93:
c6:db:1d:36:6f:ac:03:f7:5a:5d:a4:f4:3c:bb:2e:6a:9d:7e:
75:5d:d3:73:8a:54:39:0d:cb:d4:7e:fc:c1:72:c4:0d:f5:14:
0a:3a:09:45:78:19:b0:13:15:3c:da:cd:9a:86:dd:ee:c4:ee:
83:a5:ca:d6:ba:ee:d0:f0:28:9a:ff:77:51:90:b2:26:43:4b:
eb:cf:f8:9d:d2:de:59:d1:01:b2:53:39:22:b6:40:14:a9:78:
66:ff:fe:ec:46:02:1a:0c:c6:3a:d6:dd:0b:4f:9a:59:0b:f5:
6f:0b:04:9e:e7:52:14:3b:e7:80:e8:71:9f:c1:1c:7c:61:c3:
18:49:1f:54:52:55:38:f6:97:7c:c4:7c:c7:cf:6e:74:36:59:
95:88:a9:73:4b:10:16:af:4f:d5:24:be:e3:3c:9c:b6:8c:68:
7f:58:a8:8e:fe:45:53:b5:d5:fb:74:f0:82:d5:15:a7:70:e4:
8e:ce:8b:d4:c8:9b:12:8b:b5:9b:e6:c3:40:e0:79:2f:fa:b4:
31:04:de:35:ed:01:8d:2d:90:10:9e:24:ba:14:05:15:a3:bf:
ec:c6:b4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:33:13 2025 by rpki-client