Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/WxPmBUxIn4r0TPD9qVkZFq8Y-R0.roa
File: WxPmBUxIn4r0TPD9qVkZFq8Y-R0.roa (raw, json)
Hash identifier: kd22nU5YScAp763wMSa5sg9SXYgEqw4BUIIiHZEKT/A=
Subject key identifier: 5B:13:E6:05:4C:48:9F:8A:F4:4C:F0:FD:A9:59:19:16:AF:18:F9:1D
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0192B23E3FF02C6CC6128673881C13209D84
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/WxPmBUxIn4r0TPD9qVkZFq8Y-R0.roa
Signing time: Tue 22 Oct 2024 03:21:16 +0000
ROA not before: Tue 22 Oct 2024 03:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199785
IP address blocks: 150.241.113.0/24 maxlen: 24
150.241.114.0/24 maxlen: 24
150.241.115.0/24 maxlen: 24
150.241.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b2:3e:3f:f0:2c:6c:c6:12:86:73:88:1c:13:20:9d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Oct 22 03:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b13e6054c489f8af44cf0fda9591916af18f91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:69:ed:22:a9:5f:e7:3b:26:1a:c8:29:72:a6:
51:ca:02:dd:4d:86:6f:14:da:8f:21:21:46:5d:46:
6d:01:de:0e:19:6c:26:3e:90:68:36:ef:ab:13:86:
d7:b4:68:1a:ae:11:a4:17:3e:c6:e5:c2:2c:06:73:
f0:1d:dd:25:25:4b:98:52:8b:4e:dc:2e:9e:e0:8d:
65:97:15:01:1b:db:16:4b:41:7a:4a:4a:34:ee:6c:
0f:0e:51:d3:6a:3d:5d:cd:aa:be:d6:8c:1e:75:e8:
51:40:e4:6f:fe:d7:11:e8:67:10:52:d6:8e:d1:56:
86:02:ab:14:96:9f:92:e5:e1:3d:ea:96:be:86:ee:
a9:79:b4:99:75:2d:1d:f0:57:3f:ca:d0:f9:95:53:
f9:11:ad:a9:3f:c0:47:e1:b3:29:69:59:18:ac:b8:
8b:ec:6e:9c:a4:74:e3:f6:88:43:7d:d8:48:8f:11:
64:9b:fd:52:0f:4c:0b:15:89:f6:4c:ee:92:f6:71:
41:64:52:98:3e:8d:31:bd:bc:f1:05:33:f1:70:6e:
47:f8:eb:63:9f:92:56:ea:69:fe:15:6b:98:91:84:
f4:c6:4b:fe:ed:54:98:34:cd:51:b4:69:10:ab:bb:
27:98:36:09:28:47:62:61:08:b5:84:f7:56:26:37:
fc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:13:E6:05:4C:48:9F:8A:F4:4C:F0:FD:A9:59:19:16:AF:18:F9:1D
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/WxPmBUxIn4r0TPD9qVkZFq8Y-R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.113.0-150.241.116.255
Signature Algorithm: sha256WithRSAEncryption
ba:9e:b1:f0:0b:a1:66:f6:0c:de:ae:20:09:ff:6a:af:00:be:
6d:78:66:0f:21:82:ce:3f:79:7c:a0:ed:bc:93:10:c5:74:4e:
8d:9b:cf:7e:e5:58:00:88:00:9a:95:e5:b1:c7:4b:84:4d:a8:
70:00:a3:9e:85:68:4e:d4:1d:7c:8c:19:fe:c4:5a:1a:f5:89:
f8:54:da:81:ad:95:ea:ee:d2:86:27:ab:fe:1f:94:cb:a0:6b:
2c:de:6c:a3:6f:00:ae:24:d1:0d:ea:50:13:68:c1:01:7a:be:
9e:75:81:ea:02:ee:a1:e7:b1:4f:fd:59:1d:fb:a7:c0:88:c6:
b2:64:c3:77:b3:f5:63:a1:80:14:d6:78:c5:26:b0:74:2e:72:
8f:54:f4:e4:c1:9e:ab:4f:ff:ae:c2:30:40:11:29:23:2c:9c:
07:19:1a:c9:f6:2b:fd:e6:e6:31:93:48:45:bd:ee:ec:93:37:
d3:db:34:dd:c1:c4:f2:30:5b:a2:f7:ab:98:6a:e3:f7:93:89:
4d:c0:7a:c3:1f:63:9f:51:87:ae:5c:75:0d:f6:21:a7:b1:c1:
12:85:8a:d4:64:07:c0:15:0e:8d:eb:dc:ff:e0:7f:5a:ad:73:
6e:da:3a:1e:23:83:02:85:59:c1:14:37:16:e2:77:25:53:90:
ed:00:f6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:02:21 2024 by rpki-client on console-fra.rpki-client.org