Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/woX2g61_RG1vf9a7PZ6bLYDnMt8.roa
File: woX2g61_RG1vf9a7PZ6bLYDnMt8.roa (raw, json)
Hash identifier: 5snYYemO6TlDDk3fW4ies5wd4G6onkGpVq5s4+6X98U=
Subject key identifier: C2:85:F6:83:AD:7F:44:6D:6F:7F:D6:BB:3D:9E:9B:2D:80:E7:32:DF
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBD0992FD3BF0557A02F67EC0879CD
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/woX2g61_RG1vf9a7PZ6bLYDnMt8.roa
Signing time: Tue 02 Jan 2024 10:32:58 +0000
ROA not before: Tue 02 Jan 2024 10:32:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47979
IP address blocks: 91.120.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d0:99:2f:d3:bf:05:57:a0:2f:67:ec:08:79:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c285f683ad7f446d6f7fd6bb3d9e9b2d80e732df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:d2:87:44:9b:fa:a8:fe:5b:56:20:91:7e:
00:1a:94:b2:44:12:78:af:27:b0:e3:0d:bd:69:05:
0a:6e:14:97:40:44:ef:bf:c7:43:ae:61:a4:cc:c0:
8c:3d:04:d1:1d:6b:be:b9:bb:39:3c:42:dd:05:ca:
2b:0e:00:b0:46:0e:1e:a2:be:4f:b5:af:fd:8c:fa:
e9:aa:1e:d2:3f:ae:77:90:fa:f1:8d:5c:b7:e4:b0:
42:09:13:80:37:67:19:48:46:da:ae:12:74:f5:b2:
c5:7a:9b:49:04:e9:5f:d4:b9:8e:4b:84:a4:b0:48:
15:5e:67:4b:a0:53:67:a9:6b:b6:1c:a6:8a:52:2a:
14:13:6f:b7:7f:97:5d:0a:11:b3:a4:ad:aa:b3:31:
06:8b:35:1a:f9:05:17:a8:32:04:b0:39:7b:91:0d:
fb:36:f7:5b:53:1e:e2:02:5e:d3:e8:78:38:22:4c:
6a:b0:42:c9:f7:d7:e6:a5:5f:e3:e6:a8:fd:ab:bc:
00:1e:6a:61:af:49:40:3b:f3:fd:46:37:e8:e0:0f:
49:cd:5e:ca:d6:8f:cb:01:dc:fe:fb:7b:d0:a4:7f:
f1:04:5c:93:a8:f6:da:ea:2c:07:4b:e1:37:6c:db:
e7:1b:70:11:ad:c3:64:9e:3a:e0:ad:81:a2:b5:49:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:85:F6:83:AD:7F:44:6D:6F:7F:D6:BB:3D:9E:9B:2D:80:E7:32:DF
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/woX2g61_RG1vf9a7PZ6bLYDnMt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.44.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c0:54:06:0a:45:83:6f:fc:c0:24:92:4c:93:8e:48:0f:55:
b3:c4:03:28:d0:9c:9e:b3:88:87:dd:04:d6:5c:73:58:7b:4c:
0c:e5:f3:e4:c3:91:0c:3f:fd:35:df:88:9b:c3:45:74:52:4b:
4c:d1:10:f8:5a:1d:1d:90:3e:ec:44:2d:de:b7:0b:1d:39:05:
df:f2:2e:26:8c:4e:e3:24:1a:39:73:60:b9:48:b3:8b:4e:bb:
21:13:ef:d6:4b:20:8d:69:c2:63:66:7b:62:5f:e8:ee:cf:a6:
e6:6e:c5:16:05:39:a3:08:5e:f9:28:f5:65:0c:a0:bf:99:0d:
dc:dd:bf:cd:6b:d7:3a:4d:4f:94:54:b0:62:0b:e9:3d:84:3d:
75:31:b1:cc:b1:d2:4f:8f:34:7c:ee:3c:da:d9:7c:88:28:2d:
46:1b:a3:32:ed:25:10:40:82:4e:a8:da:3c:ee:dd:9c:85:de:
ee:9d:17:36:f7:11:83:63:7c:d6:00:6c:ca:93:d2:13:c3:a6:
a0:94:78:07:30:44:06:cd:4f:8f:0d:0e:7e:c6:70:2e:65:10:
27:2a:55:9a:e8:db:5b:9a:21:63:8b:96:4f:61:d3:e2:11:e7:
0d:01:c1:9d:ee:49:73:76:3a:5a:08:22:06:f9:c2:29:e7:1d:
0d:d4:25:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:08 2024 by rpki-client on console-ams.rpki-client.org