Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/Wed5u8TC0a5_XWSJS6lsNrlMS4o.roa
File: Wed5u8TC0a5_XWSJS6lsNrlMS4o.roa (raw, json)
Hash identifier: MQ7CXiyMMFqyaADiY3/tPXFf/ibv3hPgw2NTj/FzpwM=
Subject key identifier: 59:E7:79:BB:C4:C2:D1:AE:7F:5D:64:89:4B:A9:6C:36:B9:4C:4B:8A
Certificate issuer: /CN=bd92eae9e11699e4ce710580519776c300296162
Certificate serial: 018CC801BF6E6CF1590E8A4413445BAA3C4C
Authority key identifier: BD:92:EA:E9:E1:16:99:E4:CE:71:05:80:51:97:76:C3:00:29:61:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZLq6eEWmeTOcQWAUZd2wwApYWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/Wed5u8TC0a5_XWSJS6lsNrlMS4o.roa
Signing time: Tue 02 Jan 2024 02:30:06 +0000
ROA not before: Tue 02 Jan 2024 02:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12986
IP address blocks: 194.153.128.0/24 maxlen: 24
193.26.27.0/24 maxlen: 24
2001:67c:218c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/vZLq6eEWmeTOcQWAUZd2wwApYWI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/vZLq6eEWmeTOcQWAUZd2wwApYWI.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZLq6eEWmeTOcQWAUZd2wwApYWI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:bf:6e:6c:f1:59:0e:8a:44:13:44:5b:aa:3c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd92eae9e11699e4ce710580519776c300296162
Validity
Not Before: Jan 2 02:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59e779bbc4c2d1ae7f5d64894ba96c36b94c4b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d6:e8:40:ec:88:29:5f:dd:b0:b2:ad:b1:de:
2b:3d:3b:ba:ca:a8:f6:e0:28:32:9d:ed:b3:c1:93:
90:2b:72:a2:5f:b0:d8:11:7d:c9:cd:60:3c:20:a8:
22:b0:97:9b:e9:15:80:29:8a:46:6e:16:a0:a4:d4:
41:9b:bd:2c:2b:87:54:8b:8f:b7:71:00:15:e9:ff:
2b:65:c6:d0:33:29:f5:38:7c:28:b3:5c:8e:4a:27:
e0:f4:01:9e:af:89:c6:25:22:a9:94:de:63:31:60:
d1:48:32:65:d1:7a:42:bc:d6:b2:16:93:ad:11:d9:
ab:d2:70:3f:02:e8:ad:6d:f1:2c:ce:9b:7a:e6:12:
f4:25:34:81:d6:3e:7b:47:30:6d:0e:5f:f5:ea:31:
fe:b2:39:1e:b9:aa:a1:ec:d0:10:fd:08:51:25:d5:
81:56:91:c8:34:e4:04:2d:49:15:f5:af:d2:13:50:
b8:25:bb:0b:7c:ef:4b:18:ef:8f:bd:13:bc:2f:00:
87:9c:f4:ae:e3:dc:9b:bf:a9:e2:14:2e:ac:87:76:
8b:5e:9e:81:3e:bc:81:ba:9e:e7:9c:a0:2d:c2:d2:
2b:a2:0b:93:d5:9e:0a:85:49:4e:cb:5f:99:7f:de:
3e:18:64:9e:33:1c:45:a8:28:61:96:18:71:13:b3:
7c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E7:79:BB:C4:C2:D1:AE:7F:5D:64:89:4B:A9:6C:36:B9:4C:4B:8A
X509v3 Authority Key Identifier:
keyid:BD:92:EA:E9:E1:16:99:E4:CE:71:05:80:51:97:76:C3:00:29:61:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZLq6eEWmeTOcQWAUZd2wwApYWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/Wed5u8TC0a5_XWSJS6lsNrlMS4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47d213-26da-471a-96cd-c8a9caa3bbe9/1/vZLq6eEWmeTOcQWAUZd2wwApYWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.27.0/24
194.153.128.0/24
IPv6:
2001:67c:218c::/48
Signature Algorithm: sha256WithRSAEncryption
11:69:36:83:53:2c:b2:be:10:74:d5:5d:0a:aa:1f:53:ff:8d:
0e:58:fc:b8:90:5f:1d:7b:c5:92:77:ba:d2:76:b3:74:5b:46:
2f:1d:76:27:33:d5:2b:c9:62:1f:d2:7f:c5:20:1d:14:7e:84:
1f:c1:7b:91:57:ff:cf:26:e6:6a:6e:01:55:af:23:e8:ca:14:
c4:af:be:23:39:1e:63:e9:aa:f0:bf:ec:95:d0:2c:c4:d4:2f:
78:9e:31:d9:c7:e1:b9:e3:0e:25:ef:79:96:60:10:ed:4b:3b:
c2:30:10:cb:cb:73:ad:09:bd:99:cc:eb:60:11:75:60:30:74:
c5:c2:54:7e:fd:5d:09:a5:7b:70:30:2b:da:00:14:08:a9:94:
52:38:d2:ef:10:93:b1:d0:7f:9f:2c:65:7b:db:05:f0:50:01:
62:d9:fb:c6:ff:37:d9:9a:36:be:24:46:be:f8:8e:ef:6d:dc:
3a:b2:b2:73:0f:bc:c5:c3:5f:8e:90:39:62:a9:85:1f:0a:e3:
ce:27:6e:fe:0a:94:81:7d:ef:c6:8f:6d:c4:35:da:5f:b3:36:
6f:5f:04:df:be:3f:80:e8:95:f8:63:20:ec:77:a5:8a:b6:ba:
07:6f:5a:ce:e0:bb:5a:93:e3:99:72:80:66:13:85:85:39:f1:
34:a8:46:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:09 2024 by rpki-client on console-fra.rpki-client.org