Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/RWER5j5NSS1q9QXMw-JSAo44NnY.roa
File: RWER5j5NSS1q9QXMw-JSAo44NnY.roa (raw, json)
Hash identifier: 1inPK15B82Wyip5h0J47FALrAC4T1wVPiXixt3TIILQ=
Subject key identifier: 45:61:11:E6:3E:4D:49:2D:6A:F5:05:CC:C3:E2:52:02:8E:38:36:76
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 018CC9BCB8B969F58B138E55764F83267D4E
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/RWER5j5NSS1q9QXMw-JSAo44NnY.roa
Signing time: Tue 02 Jan 2024 10:33:57 +0000
ROA not before: Tue 02 Jan 2024 10:33:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199588
IP address blocks: 185.7.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b8:b9:69:f5:8b:13:8e:55:76:4f:83:26:7d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Jan 2 10:33:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=456111e63e4d492d6af505ccc3e252028e383676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:61:3e:0b:03:28:e5:6e:58:68:e1:00:21:93:
17:36:eb:e2:d9:93:ca:00:ee:73:bf:d7:72:ed:4d:
61:f2:70:d5:c6:31:a3:9e:90:40:2e:6c:d1:72:d7:
64:1f:d5:4a:8c:64:ef:96:8e:15:85:be:12:71:08:
33:23:9b:c0:13:71:8d:62:a6:15:bb:d8:82:9d:4d:
a6:60:3d:a1:c8:53:5a:6f:ec:6b:a6:e3:d4:f6:38:
5f:d3:a2:a5:bc:86:7d:04:17:fb:14:23:76:d9:67:
96:a0:97:5a:7d:aa:86:9f:2d:aa:61:86:c8:6b:3e:
b7:94:09:59:a6:9e:54:48:f4:24:60:91:d9:ff:31:
1a:3a:50:02:30:ce:7b:5e:4a:f3:3b:2c:06:80:54:
1c:b3:28:f0:74:2e:3f:15:01:07:bf:83:7f:4b:20:
7b:99:87:f6:33:e7:b3:1e:f0:0a:a8:bc:91:76:d4:
24:c2:7e:2a:2d:1f:6d:84:41:25:82:4b:d6:72:42:
39:8e:b2:eb:a2:bd:34:47:8c:28:69:10:26:e4:55:
1c:a9:77:df:34:c2:a8:7a:d6:b8:8f:60:20:42:e0:
2b:15:f8:65:57:d9:d2:8c:97:66:6c:a8:b5:66:66:
1e:31:d2:11:d0:21:e9:db:58:d8:34:c1:a5:94:fa:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:61:11:E6:3E:4D:49:2D:6A:F5:05:CC:C3:E2:52:02:8E:38:36:76
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/RWER5j5NSS1q9QXMw-JSAo44NnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.184.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:cd:94:e9:26:2d:49:9e:65:28:27:cf:e0:2e:6c:a8:51:48:
6a:52:a7:38:5b:98:b3:7a:0e:d5:5f:51:29:8b:50:88:80:60:
e5:9d:bc:1a:ca:52:d8:e3:8a:ab:6e:15:40:7d:50:cd:cc:7a:
1c:38:d1:67:6d:b4:7a:45:85:84:e7:97:5a:95:90:aa:b8:dd:
72:e8:42:f1:7d:ce:eb:63:2b:a5:cd:6b:7c:47:c2:1e:98:c2:
09:56:75:6d:0a:5b:61:3f:02:2c:77:22:b9:88:4f:da:5c:50:
ec:b1:c9:d9:e2:25:0a:e4:24:61:c5:8e:74:f2:29:c2:96:69:
ca:3c:67:f7:a9:e2:5f:3c:be:71:fa:28:7a:12:1a:87:1a:cb:
46:fa:50:1a:57:a8:69:c2:fa:f7:2e:cb:51:63:88:d3:d3:19:
20:25:fb:e9:73:08:ac:89:59:e4:c6:87:8b:d7:d6:91:04:67:
c0:8e:9d:73:1e:07:4c:a3:e6:1e:b1:3e:42:02:f5:1c:74:47:
43:b0:6e:97:50:df:49:81:5b:03:bd:d3:f3:3f:85:e3:cc:38:
c0:ef:e5:64:ea:a0:bb:59:85:de:ba:ab:67:78:d6:27:5a:f1:
4e:01:95:3e:77:7b:f0:73:bc:0a:aa:43:45:70:8c:03:a8:14:
ed:3a:29:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:53:40 2024 by rpki-client on console-fra.rpki-client.org