Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/W3foxkznU27gdbAIvCDdksgRneI.roa
File: W3foxkznU27gdbAIvCDdksgRneI.roa (raw, json)
Hash identifier: 2K+K9Ux3ePc4XVJlTqVAmIKO3Z59ECndjujKuGnXxDk=
Subject key identifier: 5B:77:E8:C6:4C:E7:53:6E:E0:75:B0:08:BC:20:DD:92:C8:11:9D:E2
Certificate issuer: /CN=405d645741215677b7748d1fdefd416207adb12d
Certificate serial: 018CC56E417D8A23B207EC21A2F97F4158AD
Authority key identifier: 40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/W3foxkznU27gdbAIvCDdksgRneI.roa
Signing time: Mon 01 Jan 2024 14:29:46 +0000
ROA not before: Mon 01 Jan 2024 14:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206123
IP address blocks: 193.8.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/QF1kV0EhVne3dI0f3v1BYgetsS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/QF1kV0EhVne3dI0f3v1BYgetsS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 11:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:41:7d:8a:23:b2:07:ec:21:a2:f9:7f:41:58:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405d645741215677b7748d1fdefd416207adb12d
Validity
Not Before: Jan 1 14:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b77e8c64ce7536ee075b008bc20dd92c8119de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dd:31:49:d9:2f:08:80:f7:28:27:0d:a5:2a:
36:ee:15:5d:c7:64:dd:c9:8e:5d:cf:a5:db:f6:97:
88:f2:89:13:cb:86:16:c2:3b:6e:c0:fb:8f:f0:5e:
b4:34:52:45:2a:79:41:b2:5e:7d:19:b3:a1:1b:1b:
1f:f3:8a:a4:b0:19:f2:93:4a:2a:a9:74:78:83:9e:
e5:00:a3:f9:2e:51:e2:fe:ef:28:62:2e:cc:d4:24:
8b:ce:0b:aa:60:9b:49:50:06:56:f3:80:ae:f8:50:
9e:b4:31:7d:98:47:b7:02:8b:5c:83:05:2c:93:23:
4d:96:9b:6c:17:ad:cf:99:23:cb:21:75:45:e1:4f:
6f:a9:57:e1:83:dc:73:86:f0:1c:f2:af:d1:cc:69:
5e:86:53:aa:1f:3c:e6:bf:a4:92:79:d4:70:12:95:
b8:7f:28:07:be:72:89:9f:ee:62:57:6c:d9:71:f8:
be:b6:68:02:bc:30:36:53:32:ff:6f:7b:32:2a:9a:
ef:86:d4:29:d9:de:ef:a7:f4:b9:ef:82:22:47:a8:
58:1a:58:44:6c:36:06:4d:1f:12:70:76:25:f5:10:
10:87:00:82:0f:a8:3f:63:77:06:56:f6:7a:74:bb:
56:c8:82:fa:73:36:32:c7:31:a7:a1:e9:62:e9:3c:
1f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:77:E8:C6:4C:E7:53:6E:E0:75:B0:08:BC:20:DD:92:C8:11:9D:E2
X509v3 Authority Key Identifier:
keyid:40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/W3foxkznU27gdbAIvCDdksgRneI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/QF1kV0EhVne3dI0f3v1BYgetsS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.76.0/24
Signature Algorithm: sha256WithRSAEncryption
74:05:6c:9c:14:4a:ba:4d:27:87:a8:c1:d7:b8:62:3d:f4:b8:
aa:8f:a9:d8:bd:74:a4:3d:1a:b5:01:bc:71:e7:cb:32:ca:74:
11:4f:a9:23:4a:7d:d0:4e:c9:35:ce:90:d3:7d:c6:19:5d:0a:
c3:ec:c9:ed:e5:4c:1a:5e:bc:07:26:61:ca:ad:73:91:56:aa:
4d:13:bb:6b:bf:74:0e:da:f8:42:b2:5f:74:10:d9:1d:a1:36:
0b:bf:a9:eb:2e:08:6d:85:e1:eb:44:2b:d2:c1:87:1f:c9:1c:
f9:f9:ba:74:91:d3:ac:40:e8:46:fb:02:1e:33:2d:e7:a8:4f:
39:62:21:76:1b:3f:81:77:19:9e:3a:cd:0c:f9:c5:eb:54:d8:
85:80:ed:00:c1:43:37:a8:60:8c:63:5a:24:94:4f:c3:a5:a6:
91:43:34:37:f8:66:25:24:8a:8f:6b:43:35:09:99:45:12:ae:
f9:55:8e:49:09:6d:c1:eb:c5:a0:a4:a6:c9:f9:8a:96:83:4d:
61:73:49:70:62:ac:5d:72:a1:1c:a7:40:fe:a5:f1:9c:84:32:
76:c5:54:fb:e8:c7:a0:28:36:87:78:d1:51:b5:40:e0:5a:99:
40:f0:bf:18:63:49:b9:97:77:1b:e4:82:ae:ac:c0:17:a5:4a:
fb:33:4c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:45:48 2024 by rpki-client on console-ams.rpki-client.org