Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/5wgx31QhmM1k0aq7NaaNgssXSYw.roa
File: 5wgx31QhmM1k0aq7NaaNgssXSYw.roa (raw, json)
Hash identifier: 75D4gcrdKJa/wFo0FJr6FMhL6s5coFZuXCOc9Jcs804=
Subject key identifier: E7:08:31:DF:54:21:98:CD:64:D1:AA:BB:35:A6:8D:82:CB:17:49:8C
Certificate issuer: /CN=c1461dbd7744837b8f9a3eacf60ed79d66980474
Certificate serial: 018CC9BCF5F0F2FD45EA841996365F6734C5
Authority key identifier: C1:46:1D:BD:77:44:83:7B:8F:9A:3E:AC:F6:0E:D7:9D:66:98:04:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/5wgx31QhmM1k0aq7NaaNgssXSYw.roa
Signing time: Tue 02 Jan 2024 10:34:13 +0000
ROA not before: Tue 02 Jan 2024 10:34:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42675
IP address blocks: 45.148.16.0/24 maxlen: 24
45.148.16.0/22 maxlen: 22
46.227.64.0/21 maxlen: 21
193.187.88.0/22 maxlen: 22
2a0c:dd40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:f5:f0:f2:fd:45:ea:84:19:96:36:5f:67:34:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1461dbd7744837b8f9a3eacf60ed79d66980474
Validity
Not Before: Jan 2 10:34:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e70831df542198cd64d1aabb35a68d82cb17498c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:69:93:cf:44:a4:04:25:59:52:62:79:1b:
65:00:cc:dc:c8:01:26:3f:88:78:11:cf:29:2c:bd:
43:64:80:90:7d:77:79:54:80:43:71:bd:b2:27:5c:
c7:a2:1d:f6:fa:2b:9f:df:7b:b9:e8:99:73:6c:98:
65:76:bf:17:0d:b9:1a:7f:24:7a:58:a8:42:34:e9:
8c:d9:37:cb:77:af:f6:d3:81:68:b7:70:d7:52:94:
40:d4:1c:01:8e:6e:aa:f5:04:93:43:90:83:95:15:
84:2d:6c:e0:49:e7:42:19:af:ac:f6:32:b1:d9:82:
fb:5a:a4:29:9e:34:8a:b5:12:84:cd:f1:80:7b:af:
d0:c5:38:87:59:75:8c:60:81:a7:74:5a:79:c8:76:
98:34:4f:b6:2e:36:90:cb:56:49:bd:93:fd:5a:e9:
1d:ac:59:a6:00:07:22:c4:cf:ab:e5:fc:fd:a1:64:
f7:cb:af:20:fd:07:e3:f3:aa:b7:02:fe:50:57:c4:
05:d1:af:7f:9c:a6:b4:01:f7:5a:01:fe:61:87:16:
4d:39:ed:cc:cf:fa:8c:47:6f:99:59:d6:c1:10:80:
31:9a:2c:33:c0:6b:f3:30:84:a4:85:90:cc:ce:f4:
aa:1d:e3:da:74:71:d9:26:93:26:20:d4:0a:46:a4:
96:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:08:31:DF:54:21:98:CD:64:D1:AA:BB:35:A6:8D:82:CB:17:49:8C
X509v3 Authority Key Identifier:
keyid:C1:46:1D:BD:77:44:83:7B:8F:9A:3E:AC:F6:0E:D7:9D:66:98:04:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/5wgx31QhmM1k0aq7NaaNgssXSYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/55fdf3-4d6a-4582-b9b8-4f8cfeb210d9/1/wUYdvXdEg3uPmj6s9g7XnWaYBHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.16.0/22
46.227.64.0/21
193.187.88.0/22
IPv6:
2a0c:dd40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:d7:de:7f:e1:08:7c:9c:72:b8:65:c3:d3:0d:80:c8:b4:66:
67:11:79:d5:ed:e8:de:03:1b:68:18:6a:28:95:58:dd:30:bb:
39:2a:d7:9b:81:b4:92:6b:b9:b9:87:27:04:09:2a:f1:5a:b9:
98:f5:24:3d:f5:da:48:d9:88:4f:4e:41:3d:18:6d:7f:90:5a:
78:9d:74:1e:be:cf:e6:10:97:c1:e5:32:22:b6:8e:f6:47:f9:
c4:96:09:8b:9a:4a:96:7f:d1:96:16:81:58:49:41:b7:3b:65:
6d:f4:72:9f:38:a7:93:5e:3d:f8:5c:88:f9:55:c5:ce:5c:b2:
68:e6:50:14:65:b4:fe:70:52:90:42:f7:36:24:0b:85:52:a5:
ca:9a:2c:77:66:ff:e8:fb:27:ba:1a:e7:16:21:3e:a1:cf:32:
60:3f:df:eb:b2:a5:98:02:4a:d5:a7:89:cc:26:aa:be:b7:91:
86:36:2a:70:08:ec:37:4b:57:1c:a2:b8:cf:9f:8f:9a:e2:e3:
fe:2e:81:39:a9:62:e6:00:de:f8:70:bf:0b:dc:bc:af:2f:04:
ad:94:26:1d:7b:14:9a:88:84:8d:ae:95:31:0d:92:2a:89:c6:
af:6d:9f:c0:52:5a:74:f8:16:64:b0:61:9b:ff:d4:3c:76:47:
f7:62:ae:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:23:01 2024 by rpki-client on console-fra.rpki-client.org