Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/wPhbwILfPxjNQD91e0UqMScKofI.roa
File: wPhbwILfPxjNQD91e0UqMScKofI.roa (raw, json)
Hash identifier: U/YiXdZDpEFoVAvuoOWpYJ+7FjR/1+011nkiST7k0q0=
Subject key identifier: C0:F8:5B:C0:82:DF:3F:18:CD:40:3F:75:7B:45:2A:31:27:0A:A1:F2
Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Certificate serial: 01904F7F80E0A9ED16B2E9FA1866875FA98D
Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/wPhbwILfPxjNQD91e0UqMScKofI.roa
Signing time: Tue 25 Jun 2024 13:04:34 +0000
ROA not before: Tue 25 Jun 2024 13:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49902
IP address blocks: 5.57.96.0/19 maxlen: 20
5.57.110.0/24 maxlen: 24
109.122.128.0/18 maxlen: 19
185.147.224.0/22 maxlen: 22
213.55.0.0/18 maxlen: 19
2a00:a080::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:7f:80:e0:a9:ed:16:b2:e9:fa:18:66:87:5f:a9:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Validity
Not Before: Jun 25 13:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0f85bc082df3f18cd403f757b452a31270aa1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:ed:93:ab:b1:52:05:ed:e9:34:f1:f0:33:
c9:a0:d7:f5:6a:bc:3d:91:bd:29:51:88:7c:d1:d5:
10:33:b5:03:32:4d:7a:0e:a5:46:e8:bb:23:89:01:
d9:fd:a4:87:68:26:be:c4:2c:92:f3:6a:b1:ef:c3:
83:7e:20:02:04:a0:7b:c3:9d:59:ba:c6:e8:d9:80:
3b:d1:1a:c6:c1:7b:04:df:a9:6d:4d:23:11:76:4d:
89:59:6f:d5:58:dc:5f:15:ca:19:51:a6:ad:5a:7f:
3a:1a:d7:0b:5c:3d:98:2b:73:94:c8:06:56:64:a8:
66:78:10:26:c5:f8:fd:70:9e:b7:46:10:1b:0e:a9:
e8:9d:4d:05:c3:3a:e7:96:ce:42:1d:02:72:36:81:
ab:3f:a8:82:34:db:36:62:db:80:10:9d:92:a4:a2:
5d:6b:ad:bb:c8:ee:bd:9d:99:e6:fb:66:67:56:f5:
ea:8c:a0:9b:0b:a8:37:12:1d:c0:d8:07:fc:51:a0:
e3:63:5d:1d:ee:bf:0d:4d:b7:7e:77:48:d8:86:6a:
3f:bb:7c:fd:1c:5c:9d:ae:b1:4c:8c:d4:bb:ea:05:
bc:7e:f2:d0:41:2e:0a:0e:94:c9:f3:a1:30:99:79:
85:ef:a9:f4:c4:72:60:0f:b1:af:79:73:8a:1e:e8:
4f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F8:5B:C0:82:DF:3F:18:CD:40:3F:75:7B:45:2A:31:27:0A:A1:F2
X509v3 Authority Key Identifier:
keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/wPhbwILfPxjNQD91e0UqMScKofI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.96.0/19
109.122.128.0/18
185.147.224.0/22
213.55.0.0/18
IPv6:
2a00:a080::/32
Signature Algorithm: sha256WithRSAEncryption
28:e6:b3:70:db:a2:ee:27:b9:75:49:27:3e:97:d3:d7:8a:89:
89:d5:6a:90:f3:93:8c:b8:4f:92:48:e0:e0:12:83:63:2c:e6:
7d:6f:c8:c6:d8:0a:2a:b3:03:fb:c3:de:75:a3:91:38:80:38:
a5:dd:e0:94:41:b8:85:01:d0:ed:14:d4:88:17:e0:e5:aa:ee:
f1:08:df:57:e3:9c:6d:06:4c:f1:4d:a0:68:f8:57:62:64:e4:
03:7e:c6:76:42:18:de:c8:89:42:0a:ec:80:9d:18:1f:af:3a:
4c:bc:87:db:19:f3:af:1f:9c:27:aa:88:74:62:e8:6d:13:ac:
12:58:76:ae:b8:8c:31:87:9e:bf:55:ed:44:b3:ba:c9:26:28:
dd:38:a5:0f:6f:85:35:36:67:eb:66:33:d4:c1:44:a2:f9:ee:
ec:a1:d9:a1:cb:85:a4:71:4d:5a:42:b5:0b:4d:bb:40:c5:57:
b9:e5:55:ec:62:4b:8e:5c:ab:a2:81:88:2d:4a:75:c5:b2:f9:
31:69:cf:c2:8a:a8:10:a2:c4:5e:0d:2c:d2:d9:10:d8:49:a9:
b3:89:e4:43:e0:9a:78:d2:89:9c:ac:f6:34:76:25:07:e3:8b:
23:44:27:35:b1:ba:46:09:aa:bd:41:b1:4c:c7:a8:e0:e0:74:
52:0e:56:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:23:27 2024 by rpki-client on console-fra.rpki-client.org