Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/Wi9xPleSVPld-_T6rvbdTH6XPEY.roa
File: Wi9xPleSVPld-_T6rvbdTH6XPEY.roa (raw, json)
Hash identifier: O8RFL0TsG4Vu0BnTr+lVac7yUEI6bwHQMNoRRA4UVdI=
Subject key identifier: 5A:2F:71:3E:57:92:54:F9:5D:FB:F4:FA:AE:F6:DD:4C:7E:97:3C:46
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 019368EB4BFCE6E4F19B76F54CD1CFF67419
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/Wi9xPleSVPld-_T6rvbdTH6XPEY.roa
Signing time: Tue 26 Nov 2024 14:41:11 +0000
ROA not before: Tue 26 Nov 2024 14:41:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.152.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 04:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:eb:4b:fc:e6:e4:f1:9b:76:f5:4c:d1:cf:f6:74:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Nov 26 14:41:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a2f713e579254f95dfbf4faaef6dd4c7e973c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f3:f2:eb:aa:31:1a:61:c4:e7:30:4e:c7:b2:
bb:7d:8e:23:8e:79:17:2f:cb:1f:75:9d:80:01:84:
88:3e:56:48:66:83:37:8d:3d:19:d6:70:e8:0e:3a:
6a:c4:7f:ce:5a:3e:ab:c3:75:9d:5f:2e:42:f0:79:
fb:dd:d9:18:d1:16:ff:4a:75:9a:4b:12:c2:4c:25:
4a:69:fd:c2:a6:65:8a:10:a9:23:74:d3:11:ad:cb:
74:d8:96:c4:02:a6:16:ef:72:70:1c:cc:49:80:01:
d2:24:78:52:c8:15:63:a4:6b:13:c0:5e:f2:c4:02:
45:e9:52:e1:84:06:98:66:a5:9d:4f:fb:d1:9c:48:
6c:df:b9:55:80:42:92:35:2a:e9:35:34:d9:f1:7d:
95:1e:8d:b3:db:cc:5f:eb:a3:86:0f:53:d5:f9:b5:
b1:11:8c:42:f2:28:75:44:9d:c7:c9:e7:75:da:b1:
1c:f9:88:a5:3f:c5:5d:e7:e8:2e:bb:89:b7:1a:39:
b5:2e:a9:56:46:c5:be:04:09:83:15:93:c1:6a:94:
3a:fb:32:ee:85:e3:23:92:11:65:f8:06:96:07:d0:
e3:05:98:64:2b:10:92:e0:5f:ee:39:5c:58:3f:3d:
f3:ea:8c:fe:78:1d:c6:ef:f9:0d:8f:56:60:26:88:
3c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2F:71:3E:57:92:54:F9:5D:FB:F4:FA:AE:F6:DD:4C:7E:97:3C:46
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/Wi9xPleSVPld-_T6rvbdTH6XPEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.178.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:8e:1e:14:fc:6a:50:93:cc:e1:ed:45:c6:7a:2d:b8:08:f5:
7f:f5:dd:79:ab:62:30:b2:6d:b1:82:a1:33:24:b1:f2:ef:05:
fc:38:c7:bc:ab:8f:4b:31:e7:79:73:af:25:c1:ef:1d:4d:51:
73:69:8f:2e:cd:26:9a:e8:c3:4a:e8:81:cb:36:c4:c2:47:7b:
b4:56:91:28:03:e2:bb:0e:e7:a5:0e:c5:f9:3f:ad:cf:e9:ad:
2e:86:cd:d0:d5:1e:2b:35:fc:42:ac:7b:3d:c9:95:ec:4d:c6:
89:a2:eb:a5:db:6f:f6:a9:da:20:a4:34:a8:6a:94:9d:36:e0:
57:9f:7f:99:37:06:29:f9:53:a5:fc:93:65:08:02:f7:ce:7e:
1b:d9:e2:81:11:ff:37:18:aa:45:7f:92:5f:61:59:c9:b0:4a:
f3:ff:fc:8e:c9:04:ab:09:78:90:30:1a:af:f4:26:f1:e9:c7:
b0:f3:0e:16:fa:61:f9:fb:a6:9d:80:49:e1:d6:8c:ae:b3:c4:
ec:f9:6d:d5:1c:8f:78:b8:82:f4:db:24:3d:22:30:4e:b4:7d:
c2:a4:51:be:ab:96:3f:72:b0:14:3d:1b:6d:7c:9b:ff:0b:4b:
ad:a0:15:70:2c:ca:57:1b:e6:ad:77:78:b6:91:2b:98:f9:0d:
81:b5:f0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 08:55:30 2024 by rpki-client on console-fra.rpki-client.org