Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wlk809CcUV-W8BHTzMogMAweYeI.roa
File: Wlk809CcUV-W8BHTzMogMAweYeI.roa (raw, json)
Hash identifier: xvAHBJpLjjRYIm5yU8kOVNZs7Ulxg2SfnYCjTFlSjV4=
Subject key identifier: 5A:59:3C:D3:D0:9C:51:5F:96:F0:11:D3:CC:CA:20:30:0C:1E:61:E2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019306DC4EA0B3A90A852079DB10168CE8C6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wlk809CcUV-W8BHTzMogMAweYeI.roa
Signing time: Thu 07 Nov 2024 13:42:01 +0000
ROA not before: Thu 07 Nov 2024 13:42:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211750
IP address blocks: 31.56.157.0/24 maxlen: 24
31.57.101.0/24 maxlen: 24
31.57.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:06:dc:4e:a0:b3:a9:0a:85:20:79:db:10:16:8c:e8:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 7 13:42:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a593cd3d09c515f96f011d3ccca20300c1e61e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:bb:e3:cd:4b:fe:91:07:a4:ed:e9:06:ae:
6a:92:f6:7c:26:fd:e2:68:bc:78:ff:cb:c4:79:11:
47:b4:36:02:84:6f:ab:d2:53:7a:08:a1:a9:01:a4:
29:16:a0:73:bb:f8:2b:c0:83:3d:90:e7:63:f5:93:
10:fc:fb:07:ca:ef:25:7a:b3:c3:45:49:b6:2a:00:
54:1c:fd:b9:a5:5a:b8:c0:27:1c:78:86:f0:e0:cf:
d1:05:73:48:78:c5:f5:02:09:69:36:ec:5f:b6:52:
a4:81:de:3d:a8:a8:28:aa:df:92:d1:c4:b2:6e:bd:
5a:96:f4:28:92:8c:79:1e:4a:a5:73:29:8f:41:7d:
88:11:71:53:a9:56:e5:01:25:d7:c2:9f:68:e8:32:
00:13:bb:8e:df:a9:24:85:3a:a2:b9:3a:3c:bf:95:
5b:42:bc:56:a3:57:c6:72:e1:3e:1f:2b:93:1c:39:
ca:67:b0:e1:2b:ed:35:94:ec:5d:e2:fb:5c:b3:93:
32:2f:c6:11:aa:0e:30:c8:38:0f:7d:52:fb:2d:c5:
85:04:83:99:3b:c4:2c:22:e5:97:36:44:49:a2:8f:
1f:28:ae:9e:36:04:78:19:b3:86:ce:02:28:48:e8:
b1:23:fb:aa:24:51:f5:67:cb:8d:f2:1d:7b:af:04:
3b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:59:3C:D3:D0:9C:51:5F:96:F0:11:D3:CC:CA:20:30:0C:1E:61:E2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wlk809CcUV-W8BHTzMogMAweYeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.157.0/24
31.57.101.0/24
31.57.245.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f1:f7:bb:c7:6a:c2:cb:bf:47:39:19:b8:60:de:16:e3:3e:
d6:f5:16:a1:52:e6:6a:16:ac:ba:53:cd:41:62:a8:6c:0a:4c:
d0:c0:cb:23:0d:e6:88:1c:59:87:c4:8b:b8:b9:98:f4:4b:07:
ed:5d:11:0f:f1:a2:2c:b5:4d:ad:83:36:4f:dd:d4:4a:15:6d:
df:ab:9f:3a:22:74:74:42:ca:ee:4f:78:c5:a5:03:ef:29:04:
ac:4a:00:5f:81:b2:65:6a:57:44:3e:05:af:37:d9:b1:9d:80:
64:b9:8d:0e:4c:fc:90:42:6f:4e:f8:74:4f:4d:23:b4:0b:bb:
df:ca:f0:04:ad:28:e0:16:0d:da:cd:18:fc:7c:7d:2f:b8:3f:
66:94:c2:cc:ed:3f:c3:a1:3d:9d:b9:e2:c6:1d:7d:97:6d:71:
20:04:c0:9a:5a:04:07:50:34:22:cc:5d:04:aa:b4:84:ae:db:
f0:3d:b0:5b:2e:b8:e1:30:86:7b:f7:ad:d2:bd:1e:f5:85:04:
12:bf:85:25:d4:81:16:53:aa:00:3b:78:5f:d4:b9:f4:3f:f6:
e5:53:77:16:97:55:4e:14:26:59:3c:c0:64:6e:c6:e7:35:1f:
0a:d9:28:4c:7c:26:88:49:de:38:0d:d8:17:64:bb:52:62:02:
39:e4:58:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:30:55 2024 by rpki-client on console-ams.rpki-client.org