Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/WNBYWn0LIlkzLSWjeP5zgHyTuL0.roa
File: WNBYWn0LIlkzLSWjeP5zgHyTuL0.roa (raw, json)
Hash identifier: MPiHfGme1N+ptxn19drb0sDwhgEeX9K0rcvcCI4VlMY=
Subject key identifier: 58:D0:58:5A:7D:0B:22:59:33:2D:25:A3:78:FE:73:80:7C:93:B8:BD
Certificate issuer: /CN=b74eb4b20bc594ac2ba3aa5aef30e74e25e156e1
Certificate serial: 018CC26D0DF582628724CB0D0785975538F0
Authority key identifier: B7:4E:B4:B2:0B:C5:94:AC:2B:A3:AA:5A:EF:30:E7:4E:25:E1:56:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t060sgvFlKwro6pa7zDnTiXhVuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/WNBYWn0LIlkzLSWjeP5zgHyTuL0.roa
Signing time: Mon 01 Jan 2024 00:29:35 +0000
ROA not before: Mon 01 Jan 2024 00:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60781
IP address blocks: 185.46.183.0/24 maxlen: 24
185.46.182.0/23 maxlen: 23
185.46.180.0/24 maxlen: 24
185.46.182.0/24 maxlen: 24
185.46.180.0/23 maxlen: 23
185.46.181.0/24 maxlen: 24
2a04:8140::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/t060sgvFlKwro6pa7zDnTiXhVuE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/t060sgvFlKwro6pa7zDnTiXhVuE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t060sgvFlKwro6pa7zDnTiXhVuE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:0d:f5:82:62:87:24:cb:0d:07:85:97:55:38:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b74eb4b20bc594ac2ba3aa5aef30e74e25e156e1
Validity
Not Before: Jan 1 00:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58d0585a7d0b2259332d25a378fe73807c93b8bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:94:73:e5:07:a8:8e:30:82:f5:38:85:49:b6:
db:a3:a7:5d:88:12:fa:67:ee:0e:97:18:d7:d3:f9:
2b:99:94:db:a9:5c:bf:38:23:9a:de:2f:ac:6e:69:
87:ec:8c:36:30:b0:78:49:af:71:73:e0:82:d8:be:
32:33:fa:94:05:1b:20:f8:7b:41:2b:8e:5b:50:6f:
6c:5d:e2:6b:36:ea:fa:35:11:20:d8:71:08:6f:5a:
21:a3:ad:42:3f:f5:27:fa:22:13:4f:3e:73:1f:bf:
ba:e7:bb:01:c2:9e:e8:cb:04:81:eb:eb:e2:42:9b:
04:3c:72:6b:34:65:ea:28:df:5b:00:b8:d2:d7:72:
16:c6:27:d1:bf:87:4b:c4:4c:6c:ca:b1:fd:e3:7c:
3b:1f:f7:18:72:15:85:6b:36:ea:fe:0c:f1:ae:98:
42:05:d4:bf:f7:c5:f0:5c:fb:80:22:3a:1b:81:40:
9c:52:e8:75:6f:78:92:a0:57:77:d0:eb:4c:7f:68:
aa:9f:ec:52:f9:e8:5a:c0:de:e1:aa:c4:ba:98:cd:
38:da:ac:b8:71:2a:61:fc:e4:2c:6e:bf:84:f4:26:
f4:00:84:4b:dd:5f:70:e5:5c:e5:76:4d:d0:83:69:
d3:6d:4d:73:fb:82:d8:cf:d5:ad:13:72:38:c8:9a:
76:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D0:58:5A:7D:0B:22:59:33:2D:25:A3:78:FE:73:80:7C:93:B8:BD
X509v3 Authority Key Identifier:
keyid:B7:4E:B4:B2:0B:C5:94:AC:2B:A3:AA:5A:EF:30:E7:4E:25:E1:56:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t060sgvFlKwro6pa7zDnTiXhVuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/WNBYWn0LIlkzLSWjeP5zgHyTuL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/dcd512-0cb7-49a0-a618-6fbb19483287/1/t060sgvFlKwro6pa7zDnTiXhVuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.180.0/22
IPv6:
2a04:8140::/48
Signature Algorithm: sha256WithRSAEncryption
1f:29:51:75:6b:47:dd:f4:f4:a8:e0:03:87:54:84:06:3d:c9:
6c:67:a4:9c:fc:3b:b9:e6:13:eb:03:4e:b7:b0:e1:fc:e6:e4:
7c:43:29:15:80:34:f0:52:54:de:e8:f8:fc:89:1e:23:35:ae:
f6:72:87:d4:69:fe:c8:ac:26:24:72:f8:33:ff:25:24:73:af:
94:ed:3e:59:d2:97:41:a6:95:50:ad:88:f3:47:5b:18:14:aa:
01:54:ae:01:96:a8:29:a8:05:fa:10:cb:d0:2a:2d:43:d0:db:
e2:b0:7c:79:11:3c:43:98:0c:f4:c6:b7:b8:e3:96:e5:11:49:
bc:31:fc:5d:18:ba:c5:3f:e3:c1:cb:42:03:7d:1c:92:3f:40:
f2:e4:e7:c2:93:27:13:26:5a:e7:a5:0f:bd:48:3d:9a:18:93:
17:a6:b5:98:fb:bc:13:d4:c5:2f:b3:ce:86:17:4b:d4:8a:2f:
35:b2:ac:0d:e0:8a:ab:90:53:53:2d:57:2c:c0:6b:75:03:61:
e2:5d:8f:73:42:0c:b7:92:fe:57:03:46:70:a2:42:28:22:d7:
20:f8:30:9b:dd:e4:61:4a:1f:f4:51:f2:7b:e6:e7:d1:5c:cb:
38:ed:37:ca:d1:44:9e:17:fe:19:b2:c6:21:ce:42:c0:ae:9d:
af:bc:28:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:39:02 2024 by rpki-client on console-fra.rpki-client.org