Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wom-8qDQA4wjwHNmgk7wrGuWMOo.roa
File: wom-8qDQA4wjwHNmgk7wrGuWMOo.roa (raw, json)
Hash identifier: Tv5xXdKHhNOiuMDoBIs3gpzRS9JYxrldTx6PUjlA1mE=
Subject key identifier: C2:89:BE:F2:A0:D0:03:8C:23:C0:73:66:82:4E:F0:AC:6B:96:30:EA
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018CCA29D37704A8A3BB58E196E744F5932F
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wom-8qDQA4wjwHNmgk7wrGuWMOo.roa
Signing time: Tue 02 Jan 2024 12:33:07 +0000
ROA not before: Tue 02 Jan 2024 12:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51765
IP address blocks: 185.77.218.0/23 maxlen: 24
185.77.217.0/24 maxlen: 24
77.83.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:d3:77:04:a8:a3:bb:58:e1:96:e7:44:f5:93:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 12:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c289bef2a0d0038c23c07366824ef0ac6b9630ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8d:ad:8e:0b:aa:a9:11:85:64:00:bc:8f:e8:
2e:b3:78:79:bb:88:26:cf:83:9f:da:e2:8a:a1:f1:
50:10:15:3d:cb:64:80:74:ce:5d:89:2a:21:5b:02:
25:4f:65:5b:aa:59:d1:ca:5a:4f:6a:97:75:13:f2:
ef:40:15:d0:13:de:93:ce:12:2b:38:f7:51:1e:fb:
f7:0f:61:00:66:06:9e:f1:8d:a0:cb:21:16:18:2c:
e1:e0:f3:3b:e9:09:ec:c3:2e:36:04:73:39:62:48:
0e:ca:73:25:cc:d0:b6:95:c7:ac:b5:9d:97:cc:d0:
5d:89:f4:c5:94:e4:d4:a5:bd:38:ea:10:d5:f0:56:
00:b9:3e:7a:82:ce:4a:a6:62:16:08:9b:ad:35:7f:
b9:eb:f0:00:96:dc:0d:6a:82:32:a4:3f:64:8d:c8:
7f:5f:5d:f0:90:6b:f4:81:2b:35:7c:2f:64:ad:ab:
55:ae:71:14:9f:c4:1f:bc:33:b3:53:8e:33:fe:1c:
b1:25:99:78:96:8c:38:06:b8:36:03:92:74:b5:21:
b2:ea:28:0e:b5:cc:9f:7a:fb:65:c4:07:e8:24:03:
ea:4d:f3:dd:b2:e3:48:8a:2e:a8:5a:9a:85:3b:69:
b9:94:53:ec:c1:f8:48:5f:e7:37:19:f8:dd:a7:94:
26:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:89:BE:F2:A0:D0:03:8C:23:C0:73:66:82:4E:F0:AC:6B:96:30:EA
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wom-8qDQA4wjwHNmgk7wrGuWMOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.247.0/24
185.77.217.0-185.77.219.255
Signature Algorithm: sha256WithRSAEncryption
47:83:ec:ca:50:3d:81:f4:8a:6e:40:38:db:d8:ec:06:82:31:
18:20:3d:35:05:71:67:ae:23:14:da:df:d0:87:d9:0d:7f:79:
73:c6:0d:62:f7:23:31:39:26:9e:c8:06:f2:68:8d:c3:74:51:
86:0b:cc:fb:78:42:2a:e9:e1:1d:ff:5a:b7:06:6c:47:6b:8a:
3e:fe:d0:d7:27:a9:f6:6b:b5:2f:d5:61:ff:1f:7f:a5:cc:b9:
79:2c:f5:b5:38:6b:b1:fb:4e:45:4e:cb:56:ab:a8:b6:37:c2:
29:d2:14:3f:66:89:43:06:af:ca:a9:95:46:a8:56:8d:64:de:
79:b3:44:da:74:9a:e5:35:d9:4f:c4:27:3c:88:24:03:39:19:
24:aa:11:e5:a9:02:d8:81:c4:2c:c4:b6:41:8f:65:82:ac:50:
66:04:04:ac:dc:6d:c7:ef:9d:6d:6d:1f:a2:de:56:00:13:40:
6b:e5:d9:08:04:38:39:86:9f:a1:eb:02:a7:f5:74:d6:78:a1:
28:ea:11:ca:2e:dc:46:27:29:0e:aa:68:8a:ba:1d:ba:50:00:
2c:22:1d:19:06:7f:95:9a:56:84:a4:47:45:1e:91:a4:74:c8:
f4:75:d9:13:2c:8b:5c:4a:35:c1:a4:f0:bf:1a:ae:b1:83:5b:
2c:fd:7b:d3
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYzKKdN3BKiju1jhludE9ZMvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjQwMTAyMTIzMzA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjg5YmVmMmEwZDAwMzhjMjNjMDczNjY4MjRlZjBhYzZiOTYzMGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjY2tjguqqRGFZAC8j+gus3h5u4gm
z4Of2uKKofFQEBU9y2SAdM5diSohWwIlT2VbqlnRylpPapd1E/LvQBXQE96TzhIr
OPdRHvv3D2EAZgae8Y2gyyEWGCzh4PM76Qnswy42BHM5YkgOynMlzNC2lcestZ2X
zNBdifTFlOTUpb046hDV8FYAuT56gs5KpmIWCJutNX+56/AAltwNaoIypD9kjch/
X13wkGv0gSs1fC9kratVrnEUn8QfvDOzU44z/hyxJZl4low4Brg2A5J0tSGy6igO
tcyfevtlxAfoJAPqTfPdsuNIii6oWpqFO2m5lFPswfhIX+c3Gfjdp5QmgQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFMKJvvKg0AOMI8BzZoJO8KxrljDqMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvd29tLThxRFFBNHdqd0hObWdrN3dyR3VXTU9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQATVP3MAwD
BAC5TdkDBAK5TdgwDQYJKoZIhvcNAQELBQADggEBAEeD7MpQPYH0im5AONvY7AaC
MRggPTUFcWeuIxTa39CH2Q1/eXPGDWL3IzE5Jp7IBvJojcN0UYYLzPt4Qirp4R3/
WrcGbEdrij7+0NcnqfZrtS/VYf8ff6XMuXks9bU4a7H7TkVOy1arqLY3winSFD9m
iUMGr8qplUaoVo1k3nmzRNp0muU12U/EJzyIJAM5GSSqEeWpAtiBxCzEtkGPZYKs
UGYEBKzcbcfvnW1tH6LeVgATQGvl2QgEODmGn6HrAqf1dNZ4oSjqEcou3EYnKQ6q
aIq6HbpQACwiHRkGf5WaVoSkR0UekaR0yPR12RMsi1xKNcGk8L8arrGDWyz9e9M=
-----END CERTIFICATE-----
Generated at Fri May 17 04:50:50 2024 by rpki-client on console-fra.rpki-client.org