Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/WUyHXNk8elupgQ-zrHq_JRH4PH4.roa
File: WUyHXNk8elupgQ-zrHq_JRH4PH4.roa (raw, json)
Hash identifier: urEilPjL+GvZiNss5/aL2jeUkMWwdamqmtb2/V2ViBY=
Subject key identifier: 59:4C:87:5C:D9:3C:7A:5B:A9:81:0F:B3:AC:7A:BF:25:11:F8:3C:7E
Certificate issuer: /CN=ef7dd1ebee513ffa318cdc88b81ac18cfe726b30
Certificate serial: 018FCA0D6AAA08873AF6E3AA5DB4C0E8DADB
Authority key identifier: EF:7D:D1:EB:EE:51:3F:FA:31:8C:DC:88:B8:1A:C1:8C:FE:72:6B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/733R6-5RP_oxjNyIuBrBjP5yazA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/WUyHXNk8elupgQ-zrHq_JRH4PH4.roa
Signing time: Thu 30 May 2024 15:10:27 +0000
ROA not before: Thu 30 May 2024 15:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30972
IP address blocks: 141.138.88.0/21 maxlen: 24
185.97.184.0/22 maxlen: 24
193.22.143.0/24 maxlen: 24
193.242.217.0/24 maxlen: 24
195.88.194.0/23 maxlen: 24
2a01:a580::/29 maxlen: 32
2a01:a580::/32 maxlen: 32
2a0a:21c0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/733R6-5RP_oxjNyIuBrBjP5yazA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/733R6-5RP_oxjNyIuBrBjP5yazA.mft
rsync://rpki.ripe.net/repository/DEFAULT/733R6-5RP_oxjNyIuBrBjP5yazA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:0d:6a:aa:08:87:3a:f6:e3:aa:5d:b4:c0:e8:da:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7dd1ebee513ffa318cdc88b81ac18cfe726b30
Validity
Not Before: May 30 15:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=594c875cd93c7a5ba9810fb3ac7abf2511f83c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:86:6f:df:31:09:27:08:53:42:0c:54:6b:
51:ba:05:99:48:20:54:72:92:b4:33:62:02:eb:94:
3c:12:41:2a:ec:6b:63:c6:2d:2f:6c:cb:fb:59:5d:
34:a8:6b:90:89:0c:67:77:6c:d5:4b:20:d2:8a:47:
d1:ca:49:23:10:b8:59:6c:ab:48:36:04:fd:27:a5:
0b:70:82:98:e6:ff:06:c7:73:3b:dd:98:04:39:07:
21:ce:c0:e9:6c:56:1c:25:47:e5:ef:d8:e3:42:32:
8a:83:48:87:2b:5d:4e:8d:36:23:f1:97:b5:20:8a:
06:9a:33:e0:43:bb:fa:da:f5:ae:42:a8:83:ca:c8:
72:25:f9:27:07:dc:d0:b4:92:78:7b:4b:19:2d:1c:
fc:75:89:d4:9b:ae:b1:dd:2b:ef:fc:65:47:b9:bf:
c0:a9:6d:2c:96:c2:f6:6b:94:4c:80:36:79:19:5a:
c0:b1:9e:a1:70:2f:c7:11:51:f9:ab:59:14:cb:b6:
16:b8:1f:21:bc:42:66:97:1a:f9:c5:9a:54:fe:02:
5e:e8:68:cf:8f:55:08:25:8a:ed:9c:85:28:24:72:
45:96:12:d6:ab:4d:ea:12:fb:5c:d7:29:c0:0f:21:
fd:5c:0f:b1:83:6e:00:03:57:5c:40:47:ad:1f:7f:
a0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4C:87:5C:D9:3C:7A:5B:A9:81:0F:B3:AC:7A:BF:25:11:F8:3C:7E
X509v3 Authority Key Identifier:
keyid:EF:7D:D1:EB:EE:51:3F:FA:31:8C:DC:88:B8:1A:C1:8C:FE:72:6B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/733R6-5RP_oxjNyIuBrBjP5yazA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/WUyHXNk8elupgQ-zrHq_JRH4PH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f9ee6d-7640-4e3d-9b45-e56feca612e7/1/733R6-5RP_oxjNyIuBrBjP5yazA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.138.88.0/21
185.97.184.0/22
193.22.143.0/24
193.242.217.0/24
195.88.194.0/23
IPv6:
2a01:a580::/29
2a0a:21c0::/29
Signature Algorithm: sha256WithRSAEncryption
5c:96:72:4a:84:78:e0:cf:39:4a:74:71:64:50:11:4f:bf:94:
f7:fa:a9:7e:e7:fd:cf:a5:33:82:0e:0c:8c:f6:d9:6f:bb:2e:
bd:a2:b0:29:02:4d:fe:4b:6b:a5:53:67:b9:47:58:5a:49:d4:
ad:e8:1d:ee:37:64:c2:18:c4:92:d9:14:61:52:f4:08:d8:ba:
7c:32:0e:62:52:26:0f:8a:b3:08:ba:e5:01:21:aa:5e:42:a0:
89:aa:93:bb:84:c9:1a:7f:45:34:fd:05:f4:24:a6:f3:f7:e7:
23:9b:ab:c7:8e:68:b5:4f:c9:36:be:90:d0:57:22:28:2d:7e:
dd:b2:43:11:12:ba:27:04:7d:2b:9c:be:7e:48:e2:2a:fa:0b:
34:c4:68:bb:8b:55:6d:5f:db:ef:b2:9f:78:96:d3:99:6e:3f:
5b:c1:79:01:d5:bc:85:a1:00:b7:65:42:5b:c1:c4:41:c1:80:
de:77:22:6e:74:29:f5:4a:b6:d1:bb:14:b3:d7:5a:73:d0:9b:
eb:64:0b:ff:fd:e4:ca:6d:c9:1f:a1:44:63:6a:57:b6:71:ab:
64:f2:5b:1e:f3:f0:0e:85:ab:a1:98:d6:ff:fa:db:a7:41:b2:
4a:fc:9f:fc:11:1c:fd:8c:4f:85:56:63:05:47:1b:37:51:64:
b7:a5:26:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:00 2024 by rpki-client on console-ams.rpki-client.org