Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WwBst9BZ8LgNCPuDInFSfAmBg7Y.roa
File: WwBst9BZ8LgNCPuDInFSfAmBg7Y.roa (raw, json)
Hash identifier: 4mMEfVRt1Yvkyb7zOt5SCzPdFr+88VWwx1eiILPQlJ4=
Subject key identifier: 5B:00:6C:B7:D0:59:F0:B8:0D:08:FB:83:22:71:52:7C:09:81:83:B6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018ED1B5F5E5199E56879E1A84E6593D0A07
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WwBst9BZ8LgNCPuDInFSfAmBg7Y.roa
Signing time: Fri 12 Apr 2024 09:49:06 +0000
ROA not before: Fri 12 Apr 2024 09:49:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:7884::/32 maxlen: 32
2a0e:1a84::/32 maxlen: 32
2a0f:7d00:1::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a0f:7d04:1::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a13:2b40::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d1:b5:f5:e5:19:9e:56:87:9e:1a:84:e6:59:3d:0a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 12 09:49:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b006cb7d059f0b80d08fb832271527c098183b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:4d:ec:4b:7f:c4:a7:75:4e:e7:3c:9b:0e:
09:2c:fc:36:95:6c:91:1b:08:22:f8:86:5b:16:ee:
a5:47:88:4e:76:dd:56:6f:4a:e4:43:ae:d2:62:d8:
83:af:49:57:73:50:2c:ca:70:05:06:49:8b:41:e7:
c3:a2:88:d9:a2:18:af:f6:2f:3e:0b:29:ae:9a:94:
45:3d:e1:af:5e:b7:37:9c:d6:1c:27:0c:3d:a7:88:
0b:ba:06:cb:51:eb:0b:28:b0:d9:aa:60:50:8a:06:
19:7d:4c:74:7d:6d:4c:70:ec:33:4f:0f:f9:7d:e9:
5b:35:c8:8e:c6:0c:bd:97:13:b0:75:3b:c4:3b:72:
ee:83:c2:b3:53:cb:92:da:38:80:95:c9:c5:7e:c4:
35:72:45:84:c2:42:c5:6a:98:f0:5e:62:84:6b:ec:
35:13:11:8a:ee:ee:b7:b8:f3:45:85:6a:d1:9c:2a:
74:ea:f8:9f:67:57:00:08:40:7a:f8:2f:9d:3e:75:
7f:7c:8f:06:0b:2b:2a:6a:4d:0f:ca:15:23:f1:99:
10:f7:34:11:a1:ca:85:2e:9d:b6:cc:77:aa:bb:e4:
67:d8:e7:1f:59:e9:c6:14:5a:eb:c1:c3:bd:3c:ef:
be:35:21:95:af:68:9c:80:45:cc:cc:64:76:1f:cc:
2d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:00:6C:B7:D0:59:F0:B8:0D:08:FB:83:22:71:52:7C:09:81:83:B6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WwBst9BZ8LgNCPuDInFSfAmBg7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7884::/32
2a0e:1a84::/32
2a0f:7d00:1::/48
2a0f:7d01::/32
2a0f:7d04:1::/48
2a0f:ea00::/29
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
9a:d6:12:e1:3a:03:c1:6f:3b:2b:f6:6f:73:aa:1f:db:1f:20:
09:2f:00:95:4e:02:17:be:a7:8c:f3:fa:06:05:d9:c8:22:1f:
bf:8a:13:cc:b6:af:f7:aa:1b:27:31:27:90:ab:6e:ca:19:97:
ed:03:fe:70:8e:11:80:54:ed:cb:aa:65:cf:68:92:81:34:f4:
a1:38:f8:bc:be:00:80:06:d9:ad:e2:26:cf:5b:a3:8d:2d:41:
24:eb:d6:b7:bc:c0:c2:0e:0e:e7:de:66:9f:c8:99:23:cf:8e:
ac:6a:68:26:12:f6:11:41:39:d4:a5:c0:58:be:69:cc:3a:aa:
1f:b2:44:05:22:c7:ba:55:92:95:e5:0e:f0:15:e5:5e:1a:7b:
91:03:80:df:0c:d4:d8:07:96:e9:6f:60:89:00:0d:d5:aa:16:
d4:a5:91:6a:da:30:aa:80:02:2a:08:d4:a8:35:73:f7:ef:ac:
d2:7b:21:32:44:9a:1d:11:90:0c:43:b3:d2:14:ce:8b:d4:f2:
5a:75:28:2e:dd:9b:53:ff:d5:f2:42:75:1b:79:06:83:34:94:
2b:c8:83:6b:90:0a:dd:df:5f:91:4a:3f:e3:75:9a:8a:d9:ae:
98:51:5d:f7:20:7f:36:0d:96:fe:1c:42:33:71:d9:72:e6:f8:
88:ee:79:5a
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAY7RtfXlGZ5Wh54ahOZZPQoHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNDEyMDk0OTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjAwNmNiN2QwNTlmMGI4MGQwOGZiODMyMjcxNTI3YzA5ODE4M2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9FN7Et/xKd1Tuc8mw4JLPw2lWyR
Gwgi+IZbFu6lR4hOdt1Wb0rkQ67SYtiDr0lXc1AsynAFBkmLQefDoojZohiv9i8+
CymumpRFPeGvXrc3nNYcJww9p4gLugbLUesLKLDZqmBQigYZfUx0fW1McOwzTw/5
felbNciOxgy9lxOwdTvEO3Lug8KzU8uS2jiAlcnFfsQ1ckWEwkLFapjwXmKEa+w1
ExGK7u63uPNFhWrRnCp06vifZ1cACEB6+C+dPnV/fI8GCysqak0PyhUj8ZkQ9zQR
ocqFLp22zHequ+Rn2OcfWenGFFrrwcO9PO++NSGVr2icgEXMzGR2H8wtcwIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFFsAbLfQWfC4DQj7gyJxUnwJgYO2MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvV3dCc3Q5Qlo4TGdOQ1B1REluRlNmQW1CZzdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTA7BAIAAjA1AwUAKgx4hAMF
ACoOGoQDBwAqD30AAAEDBQAqD30BAwcAKg99BAABAwUDKg/qAAMFAyoTK0AwDQYJ
KoZIhvcNAQELBQADggEBAJrWEuE6A8FvOyv2b3OqH9sfIAkvAJVOAhe+p4zz+gYF
2cgiH7+KE8y2r/eqGycxJ5CrbsoZl+0D/nCOEYBU7cuqZc9okoE09KE4+Ly+AIAG
2a3iJs9bo40tQSTr1re8wMIODufeZp/ImSPPjqxqaCYS9hFBOdSlwFi+acw6qh+y
RAUix7pVkpXlDvAV5V4ae5EDgN8M1NgHlulvYIkADdWqFtSlkWraMKqAAioI1Kg1
c/fvrNJ7ITJEmh0RkAxDs9IUzovU8lp1KC7dm1P/1fJCdRt5BoM0lCvIg2uQCt3f
X5FKP+N1morZrphRXfcgfzYNlv4cQjNx2XLm+IjueVo=
-----END CERTIFICATE-----
Generated at Thu Apr 25 13:24:57 2024 by rpki-client on console-fra.rpki-client.org