Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/9_jreM1So22yTZlM4LDSwPyKdy0.roa
File: 9_jreM1So22yTZlM4LDSwPyKdy0.roa (raw, json)
Hash identifier: K66NUfg2wBK/9qLtq6x96mswHV1l4E7SddaXpDlC2iU=
Subject key identifier: F7:F8:EB:78:CD:52:A3:6D:B2:4D:99:4C:E0:B0:D2:C0:FC:8A:77:2D
Certificate issuer: /CN=5a2a022fed81cba608817d2a9589a5098e0a708e
Certificate serial: 018CC9BC4953F1E7508C388EDAB1E69D0060
Authority key identifier: 5A:2A:02:2F:ED:81:CB:A6:08:81:7D:2A:95:89:A5:09:8E:0A:70:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WioCL-2By6YIgX0qlYmlCY4KcI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/9_jreM1So22yTZlM4LDSwPyKdy0.roa
Signing time: Tue 02 Jan 2024 10:33:29 +0000
ROA not before: Tue 02 Jan 2024 10:33:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48918
IP address blocks: 95.215.212.0/24 maxlen: 24
95.215.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/WioCL-2By6YIgX0qlYmlCY4KcI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/WioCL-2By6YIgX0qlYmlCY4KcI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WioCL-2By6YIgX0qlYmlCY4KcI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 00:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:49:53:f1:e7:50:8c:38:8e:da:b1:e6:9d:00:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a2a022fed81cba608817d2a9589a5098e0a708e
Validity
Not Before: Jan 2 10:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7f8eb78cd52a36db24d994ce0b0d2c0fc8a772d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e1:28:79:e7:d3:3e:8d:c6:8f:f9:84:40:e8:
a2:bd:e0:ec:b7:d6:8a:18:18:e7:69:d0:5c:e1:e6:
ae:d1:a1:2b:f9:b7:b5:e1:7f:4a:c0:40:be:85:a1:
d8:be:c4:68:83:90:59:1f:e1:c9:ef:33:e7:5f:be:
b5:a3:e6:e2:46:8d:04:ca:69:d8:fa:9d:71:4e:a7:
a6:13:75:84:96:f1:21:84:ff:b3:db:02:ff:39:c2:
30:ba:62:e5:db:0a:46:89:31:da:83:b7:ca:31:cb:
1d:64:e5:e4:49:b1:b7:5c:1c:33:1f:22:1d:99:c4:
41:3e:7b:8d:46:fc:94:ab:66:38:da:c7:48:ce:bc:
89:e5:46:ce:6f:e5:3d:eb:36:06:75:bd:60:af:f8:
88:c1:a8:f4:19:b4:7c:ec:2d:f2:26:e1:ac:31:40:
01:ba:18:82:39:b3:18:93:69:d1:c5:04:4c:08:88:
22:51:92:a6:14:f1:11:19:7a:c2:97:69:8c:45:ae:
57:d6:21:6b:15:8e:be:fc:3c:67:4d:8a:72:f7:60:
2d:82:93:cd:23:d0:0f:8e:35:28:8e:67:85:76:16:
5a:2c:ce:e0:19:e7:4c:30:42:b6:29:3f:b7:7a:85:
60:86:e1:e9:33:0b:b7:b8:70:7c:83:ef:ef:f9:fb:
70:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F8:EB:78:CD:52:A3:6D:B2:4D:99:4C:E0:B0:D2:C0:FC:8A:77:2D
X509v3 Authority Key Identifier:
keyid:5A:2A:02:2F:ED:81:CB:A6:08:81:7D:2A:95:89:A5:09:8E:0A:70:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WioCL-2By6YIgX0qlYmlCY4KcI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/9_jreM1So22yTZlM4LDSwPyKdy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/WioCL-2By6YIgX0qlYmlCY4KcI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.212.0/22
Signature Algorithm: sha256WithRSAEncryption
25:60:71:59:c7:77:e4:eb:b0:dc:8a:f6:78:00:a7:68:bd:0f:
df:ab:14:10:3a:c1:cb:66:fc:9b:1a:29:3b:f4:6a:ac:3c:05:
19:d7:37:18:02:c4:8b:bf:a8:c6:56:d2:7c:e9:9d:62:2a:ef:
47:a4:7d:b1:67:51:7b:5d:42:86:52:70:af:db:2f:ca:b1:25:
a8:87:c2:43:9e:cb:6a:ef:e0:93:6c:96:a3:63:03:ad:a4:4f:
7c:86:88:b5:8d:9d:e9:62:94:e8:ef:bb:c2:fe:7a:e8:41:c9:
e9:ec:78:92:c8:53:a8:e8:a1:7e:e3:2d:24:18:a8:fe:5e:c1:
b2:ad:bb:7e:81:e9:1e:32:9d:44:2e:74:30:86:ee:ed:18:92:
c2:b4:bc:bc:33:be:ae:ce:41:16:bf:a8:a5:ef:58:97:64:0f:
4d:fa:5a:e3:01:13:fc:13:b1:7c:81:f6:d9:3c:00:e9:90:4d:
79:9f:ec:20:1c:fe:5e:3f:d9:ad:de:9a:c9:31:98:fa:3d:53:
de:fd:24:f6:e4:70:4a:42:ad:f8:55:9e:af:c4:c2:56:e7:98:
4e:9e:71:e7:0e:91:a9:4f:06:18:4e:40:61:60:a9:69:a8:33:
54:1c:6c:e2:a5:d9:75:43:46:b6:e0:3d:01:63:42:c4:b1:b5:
a4:94:76:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:11:47 2024 by rpki-client on console-ams.rpki-client.org