Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/wl4AgRxN-dsEZVWVRwagB4p0FuM.roa
File: wl4AgRxN-dsEZVWVRwagB4p0FuM.roa (raw, json)
Hash identifier: D3k3ebSuA5lnvxMk1CjJz6RjXbgYa8hOXOr3a2fIOuU=
Subject key identifier: C2:5E:00:81:1C:4D:F9:DB:04:65:55:95:47:06:A0:07:8A:74:16:E3
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 019426D8AEA9BAD3C1530EB4E18FD2A3B0F3
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/wl4AgRxN-dsEZVWVRwagB4p0FuM.roa
Signing time: Thu 02 Jan 2025 11:48:42 +0000
ROA not before: Thu 02 Jan 2025 11:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204203
IP address blocks: 95.38.38.0/24 maxlen: 24
95.38.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:ae:a9:ba:d3:c1:53:0e:b4:e1:8f:d2:a3:b0:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jan 2 11:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c25e00811c4df9db046555954706a0078a7416e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2f:59:68:e9:65:b5:d3:09:45:d9:8a:e7:f4:
3c:26:10:4e:ca:3e:d4:9e:2b:50:63:34:12:ae:b3:
8a:df:0a:e2:b2:6e:96:d8:32:93:02:a8:e3:b4:6a:
7e:ed:48:fa:f7:1b:b0:73:d9:bf:af:48:85:2e:1e:
65:2e:97:fc:f0:6c:e7:9a:a2:c9:f4:49:17:3d:94:
22:58:8c:3d:7e:6c:e7:d2:3f:08:7c:e6:76:16:0d:
28:ad:eb:4f:d2:bb:b0:5c:f6:19:2e:d7:99:c4:14:
b8:28:a0:ea:2a:8e:e1:e8:36:ef:1b:bb:40:82:ac:
35:07:81:0c:93:a3:aa:3a:46:72:07:12:97:43:a1:
a6:fc:3a:5c:2c:bf:15:e3:36:33:1d:86:9b:f0:4d:
e7:85:d7:0a:89:f6:04:8c:f3:ba:c7:1c:58:c3:e5:
b9:c5:ef:e2:e6:06:7c:a1:23:f8:40:b6:64:de:50:
db:43:1b:49:86:d4:4d:5d:14:7b:4f:a7:98:ef:20:
a7:b4:3a:df:bd:86:d4:fc:f5:b1:69:e8:0e:0a:6a:
f0:0d:0b:d6:2f:15:c4:84:69:62:c7:81:05:3d:63:
c2:98:77:10:93:8c:43:88:a4:35:13:5f:75:0f:3f:
00:08:ad:45:07:7d:67:f2:e8:eb:41:94:18:4a:e4:
7f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5E:00:81:1C:4D:F9:DB:04:65:55:95:47:06:A0:07:8A:74:16:E3
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/wl4AgRxN-dsEZVWVRwagB4p0FuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.38.0/24
95.38.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:3e:de:db:09:7c:c6:2a:72:cc:02:ac:6c:89:89:23:1d:08:
07:39:a6:f2:ad:4e:40:90:d7:a6:39:e6:77:78:91:93:3f:84:
96:da:cd:76:9f:b9:b0:6f:95:7c:e9:1f:68:6b:d9:1a:81:4b:
fc:77:9f:44:52:db:6c:65:69:32:87:46:fb:d6:1a:17:d4:88:
f2:3e:d9:60:5b:ed:86:d2:ed:0f:6f:57:ae:07:46:45:32:32:
68:8b:74:81:9d:ee:f4:4a:04:7c:a0:ac:98:00:f2:f2:1f:85:
44:07:5a:ee:c0:a1:10:00:96:68:1f:ca:0c:b9:19:32:cc:03:
10:75:a7:08:41:94:4b:e8:a5:a2:f8:a0:04:c0:f5:db:00:bc:
8c:e7:15:cc:2c:0a:10:d5:2d:37:54:d8:40:f8:bd:c9:ce:87:
17:e8:f2:0a:2c:30:68:c6:57:17:ac:ba:47:f8:a3:b8:bd:1d:
d2:6b:0b:49:56:f4:74:51:5e:c2:2f:83:17:25:a9:b0:ba:51:
d8:10:a8:8f:89:55:94:5c:93:22:e9:56:54:e7:3e:84:1b:6e:
d5:9a:27:6d:60:6a:7f:b2:36:c5:42:01:b6:80:55:dd:60:fc:
5b:1d:b7:1f:8f:71:21:59:d5:ee:41:f0:bc:30:48:b2:e4:48:
7b:63:09:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:19:10 2025 by rpki-client