Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/WLXqCKuFnqufZYdZj60QibY4G48.roa
File: WLXqCKuFnqufZYdZj60QibY4G48.roa (raw, json)
Hash identifier: 4Wx0qkod104FJ547BpIFqNvyKh3NPj1nkFq89JzA2PY=
Subject key identifier: 58:B5:EA:08:AB:85:9E:AB:9F:65:87:59:8F:AD:10:89:B6:38:1B:8F
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018CC56DF622713D48E1C283686052368B46
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/WLXqCKuFnqufZYdZj60QibY4G48.roa
Signing time: Mon 01 Jan 2024 14:29:27 +0000
ROA not before: Mon 01 Jan 2024 14:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48716
IP address blocks: 45.8.98.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
94.198.220.0/23 maxlen: 23
94.198.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f6:22:71:3d:48:e1:c2:83:68:60:52:36:8b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 1 14:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58b5ea08ab859eab9f6587598fad1089b6381b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9a:38:92:09:be:87:c8:c8:0f:04:97:7e:23:
c5:b4:64:f5:d8:39:42:af:e3:52:48:3a:7a:ce:0e:
39:17:40:72:c2:55:37:b5:5a:51:63:e8:3b:2f:66:
8f:2a:34:73:9c:c4:f9:7e:2d:a0:02:25:d6:79:88:
45:b9:0c:23:fe:54:31:18:ee:d7:ff:db:2f:f3:44:
5d:d9:d4:fd:62:b2:34:e4:31:29:ae:47:7a:f7:9c:
8c:9f:3d:c5:9c:9d:8e:bb:51:76:45:db:44:59:cf:
ea:52:d7:37:75:08:ae:ac:70:51:d3:5a:00:d7:da:
76:c8:3e:29:e5:6a:ae:66:d6:75:30:2f:c3:c4:61:
c2:22:04:f8:9b:76:8a:de:b6:cf:0c:bc:ea:ba:79:
fa:34:fe:76:19:a3:b8:82:96:81:f7:23:86:89:e2:
36:23:f9:1e:40:8c:65:d5:5e:be:8e:37:00:eb:8b:
85:f2:d6:35:36:a0:99:22:37:fd:d7:c6:33:04:c0:
af:9b:b4:a9:1c:92:f9:77:a6:45:c3:68:68:2a:c7:
b9:32:ac:c9:0a:91:30:eb:7b:ce:32:e0:1f:57:72:
04:a6:31:ef:11:8e:92:cb:ff:1b:76:23:ba:9c:05:
56:15:56:9c:b5:b2:86:bb:93:20:d9:6c:a3:20:73:
c4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B5:EA:08:AB:85:9E:AB:9F:65:87:59:8F:AD:10:89:B6:38:1B:8F
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/WLXqCKuFnqufZYdZj60QibY4G48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.98.0/24
92.118.115.0/24
94.198.220.0/23
Signature Algorithm: sha256WithRSAEncryption
28:67:1e:18:f4:26:41:3d:a9:34:82:cb:64:a5:12:a6:73:a6:
ec:f4:7a:ad:94:6d:b0:b4:fe:30:b5:8a:36:5b:a6:bf:7d:91:
65:bd:ab:47:d7:f0:c4:30:00:12:04:cc:63:9d:ca:b2:22:8c:
a4:ab:80:57:8e:c4:bc:aa:48:d7:87:bd:4d:dd:be:38:eb:6f:
df:9d:28:1f:ac:c5:1b:5f:52:d0:4e:47:e7:4e:56:b8:59:75:
cf:ed:f5:3f:be:b0:09:f4:1b:e5:d6:45:47:25:60:0d:bd:e0:
97:81:8a:52:c9:82:3e:4b:82:03:d6:35:8e:ce:52:27:94:b8:
95:e9:fa:0e:fe:b7:08:cc:ba:fd:21:47:ec:7f:5a:33:06:95:
e0:d1:c1:56:a0:cb:c2:18:c1:09:38:44:ec:85:b3:03:3d:2c:
b9:f9:83:21:d7:90:e9:d7:b3:90:32:a3:3b:9f:cb:3d:4d:78:
e5:a1:81:f5:07:69:4e:6c:4a:69:cc:aa:e7:dc:f2:8f:bf:34:
66:2b:2c:f8:23:17:4b:b9:ee:89:4d:5c:35:ab:9c:82:a4:d5:
2e:63:3d:14:a8:ea:a6:64:e2:a6:f8:ae:cc:7d:c3:10:a0:d7:
4f:51:f2:dd:a8:a2:fc:4a:34:2b:c0:63:8b:f0:cf:fd:f4:fb:
0a:6c:2d:f6
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzFbfYicT1I4cKDaGBSNotGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2
NGIyMGYwHhcNMjQwMTAxMTQyOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGI1ZWEwOGFiODU5ZWFiOWY2NTg3NTk4ZmFkMTA4OWI2MzgxYjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZo4kgm+h8jIDwSXfiPFtGT12DlC
r+NSSDp6zg45F0BywlU3tVpRY+g7L2aPKjRznMT5fi2gAiXWeYhFuQwj/lQxGO7X
/9sv80Rd2dT9YrI05DEprkd695yMnz3FnJ2Ou1F2RdtEWc/qUtc3dQiurHBR01oA
19p2yD4p5WquZtZ1MC/DxGHCIgT4m3aK3rbPDLzqunn6NP52GaO4gpaB9yOGieI2
I/keQIxl1V6+jjcA64uF8tY1NqCZIjf918YzBMCvm7SpHJL5d6ZFw2hoKse5MqzJ
CpEw63vOMuAfV3IEpjHvEY6Sy/8bdiO6nAVWFVactbKGu5Mg2WyjIHPErQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFFi16girhZ6rn2WHWY+tEIm2OBuPMB8GA1UdIwQY
MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct
NDkwNTI0M2JjODI4LzEvV0xYcUNLdUZucXVmWllkWmo2MFFpYlk0RzQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4
LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALQhiAwQA
XHZzAwQBXsbcMA0GCSqGSIb3DQEBCwUAA4IBAQAoZx4Y9CZBPak0gstkpRKmc6bs
9HqtlG2wtP4wtYo2W6a/fZFlvatH1/DEMAASBMxjncqyIoykq4BXjsS8qkjXh71N
3b4462/fnSgfrMUbX1LQTkfnTla4WXXP7fU/vrAJ9Bvl1kVHJWANveCXgYpSyYI+
S4ID1jWOzlInlLiV6foO/rcIzLr9IUfsf1ozBpXg0cFWoMvCGMEJOETshbMDPSy5
+YMh15Dp17OQMqM7n8s9TXjloYH1B2lObEppzKrn3PKPvzRmKyz4IxdLue6JTVw1
q5yCpNUuYz0UqOqmZOKm+K7MfcMQoNdPUfLdqKL8SjQrwGOL8M/99PsKbC32
-----END CERTIFICATE-----
Generated at Fri Nov 22 20:23:10 2024 by rpki-client on console-ams.rpki-client.org