Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/wgyjhCNshYCcVKomHzpklsvPA24.roa
File: wgyjhCNshYCcVKomHzpklsvPA24.roa (raw, json)
Hash identifier: WY5/3Vd1DR7DnGQ/aFI6KDnRe6d8eyBfGEEn6RIVOdw=
Subject key identifier: C2:0C:A3:84:23:6C:85:80:9C:54:AA:26:1F:3A:64:96:CB:CF:03:6E
Certificate issuer: /CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Certificate serial: 018CC34960B0DC73990269ADDE9DAA503740
Authority key identifier: 2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/wgyjhCNshYCcVKomHzpklsvPA24.roa
Signing time: Mon 01 Jan 2024 04:30:15 +0000
ROA not before: Mon 01 Jan 2024 04:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212698
IP address blocks: 37.208.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:60:b0:dc:73:99:02:69:ad:de:9d:aa:50:37:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Validity
Not Before: Jan 1 04:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c20ca384236c85809c54aa261f3a6496cbcf036e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:8f:8a:72:3f:dd:c6:a3:4a:5a:cf:7b:09:
f7:a7:e9:5c:18:9c:c5:5b:26:71:25:5f:84:3a:25:
52:82:5f:c1:0d:64:ca:f5:70:22:b1:14:4a:23:d2:
b8:2d:0c:83:29:a3:b2:7e:0b:0f:a3:88:86:db:84:
82:aa:ab:64:03:c4:ff:4b:fe:b7:f1:8e:a5:e4:64:
48:2d:60:a9:a0:16:31:16:23:69:66:fe:67:a9:04:
f8:b5:2b:cb:52:2b:96:7e:7c:7e:60:27:02:b6:af:
b6:64:23:f1:a2:1f:a7:a6:32:99:74:e0:8b:f5:ab:
e2:5b:8c:09:44:9d:70:ab:6a:7f:3b:33:6e:17:e6:
d5:47:4a:1c:08:4f:86:27:8a:7e:b2:96:ec:fe:20:
c7:88:66:96:7c:c6:c2:a2:3d:30:21:fb:a8:38:70:
3e:13:71:a8:04:4a:0f:15:01:1f:80:37:c7:ca:c0:
7c:32:df:f6:8d:3e:30:3f:d8:8f:95:e5:41:f2:17:
92:c4:bd:c5:d8:6a:57:d9:5e:1b:2d:fd:04:d4:39:
41:9d:f7:7d:ce:36:d0:da:bd:94:35:3b:67:90:ab:
b1:df:5c:55:fc:5e:ad:16:11:d1:b9:44:2f:0a:dc:
b7:5a:40:41:1e:bc:ca:ff:be:74:ed:81:a7:a9:d4:
84:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0C:A3:84:23:6C:85:80:9C:54:AA:26:1F:3A:64:96:CB:CF:03:6E
X509v3 Authority Key Identifier:
keyid:2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/wgyjhCNshYCcVKomHzpklsvPA24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.67.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d0:8e:cf:26:fa:bd:d0:44:58:ea:cd:d4:a5:b5:e9:3e:ab:
f7:f6:45:eb:a6:dd:9b:1a:8b:cd:77:c2:f6:78:21:2e:2f:df:
e7:d9:47:1d:f4:bd:e3:8b:18:7b:dc:a9:38:e4:c2:a6:33:c3:
63:fd:4a:88:10:07:6d:20:cd:2e:00:4a:e2:7c:96:a4:49:bb:
6e:35:80:c7:0f:2c:fb:6a:6b:60:dc:3e:41:67:78:62:7d:ac:
6c:fb:a9:09:c2:cb:6c:be:92:e2:3d:a2:8a:29:ea:d3:09:5b:
7b:2d:c6:bc:4a:4b:95:01:a4:cc:b0:c1:18:84:4c:f5:a4:25:
4a:f9:47:69:81:12:03:de:f0:67:70:ed:79:6c:22:44:4a:a8:
b4:f0:a1:95:bb:f2:85:05:6f:2b:34:6e:86:75:ea:e5:d8:04:
0f:5c:04:ea:96:d0:be:03:b5:fc:ab:4a:9a:cd:0d:32:89:d7:
de:88:51:21:34:32:d4:b0:cb:22:d6:1f:d9:69:eb:63:24:f3:
c7:cc:be:32:d5:98:4f:df:d2:30:56:23:be:c3:44:9c:a7:05:
17:08:ef:f5:9d:3d:67:cb:76:04:2e:d3:9b:54:a8:c9:15:3a:
12:db:e2:1f:e5:8c:ce:76:1f:e3:13:66:d0:6c:64:ee:6d:c7:
4a:5f:cd:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 05:25:17 2024 by rpki-client on console-fra.rpki-client.org