Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/WjUSvvqd2NfntnyJgr5Wdbs_bsE.roa
File: WjUSvvqd2NfntnyJgr5Wdbs_bsE.roa (raw, json)
Hash identifier: ti/gWUl/FlIxtlJj15yq7iGn0Dj39cw04IT4Pkc4wgk=
Subject key identifier: 5A:35:12:BE:FA:9D:D8:D7:E7:B6:7C:89:82:BE:56:75:BB:3F:6E:C1
Certificate issuer: /CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Certificate serial: 018CC4931B7046498D54718AD6878354434E
Authority key identifier: D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/WjUSvvqd2NfntnyJgr5Wdbs_bsE.roa
Signing time: Mon 01 Jan 2024 10:30:24 +0000
ROA not before: Mon 01 Jan 2024 10:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203256
IP address blocks: 185.130.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:1b:70:46:49:8d:54:71:8a:d6:87:83:54:43:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Validity
Not Before: Jan 1 10:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a3512befa9dd8d7e7b67c8982be5675bb3f6ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:93:78:df:79:c7:bb:b3:bd:aa:ab:3c:d4:6f:
dc:19:7c:e6:88:47:ee:5d:63:ea:5d:1f:28:55:34:
db:db:0e:f5:9b:77:b3:05:76:d5:d4:a4:31:f4:a4:
26:b2:46:1b:4b:cc:23:2d:27:fc:3c:bc:9a:25:68:
69:99:32:ea:f6:1f:48:e1:62:19:3a:ab:ba:e8:1b:
46:3d:38:65:77:eb:4f:05:ff:fe:4e:a8:ae:1a:21:
fa:df:fc:74:6d:70:de:41:e5:83:3d:75:7e:e2:d7:
24:42:dd:2b:b2:70:ec:4f:4d:9e:78:fd:3b:46:fe:
27:41:e5:bd:eb:d5:af:00:74:7a:43:8d:22:d4:6f:
d2:03:f0:0e:20:67:e4:5d:bd:ca:e5:f5:10:cf:54:
d8:2d:39:96:cf:cc:78:c5:d3:e3:fa:e5:1c:12:ac:
b2:77:e0:82:a8:30:b3:50:d9:92:a0:45:51:dc:2b:
e9:c5:21:61:29:52:26:7a:a8:12:10:16:7a:1a:b5:
d8:36:ef:d6:f0:9a:da:4f:6a:af:ff:22:2d:eb:77:
79:51:9e:03:b9:24:39:b7:cb:3f:dc:56:d9:a1:30:
47:0c:cb:78:7e:8c:7f:24:4b:3d:9c:6e:99:73:92:
6d:0f:77:54:6a:d8:00:b0:3a:ae:57:7a:60:ba:62:
50:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:35:12:BE:FA:9D:D8:D7:E7:B6:7C:89:82:BE:56:75:BB:3F:6E:C1
X509v3 Authority Key Identifier:
keyid:D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/WjUSvvqd2NfntnyJgr5Wdbs_bsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.228.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:6a:b8:42:15:e5:af:d3:24:6a:c3:1c:08:05:00:aa:c7:e8:
60:d2:54:f4:b6:e0:e6:e5:f3:0c:20:a6:c7:70:e8:d5:7e:f3:
fa:aa:a6:ba:d9:f9:21:f2:a1:cd:d9:ed:3b:b4:d1:f9:97:d8:
11:e0:a5:03:8e:eb:29:17:98:17:d7:5f:96:3a:10:13:a1:08:
7f:03:27:0c:fa:60:70:88:55:fe:e1:37:f1:38:fb:df:31:25:
33:1f:77:bf:1b:a3:85:49:d7:23:d7:2f:8d:97:d2:c1:0a:c5:
39:15:6a:36:ac:f4:13:75:fa:01:19:ef:64:bc:08:90:b1:1c:
d3:a8:1a:77:1e:90:6e:50:14:dc:52:1a:f2:11:b8:fb:60:c8:
51:40:f2:a5:fb:68:6f:37:a7:33:3c:25:2d:4d:68:5d:64:6e:
f2:57:6f:a4:b0:1c:01:d3:4c:9b:6b:f6:d9:9c:43:82:92:8a:
40:e6:92:88:44:07:14:3e:0e:08:d0:47:7f:7a:41:ea:27:85:
03:19:27:71:43:07:8f:4f:1a:f3:29:9d:91:69:79:3b:38:7c:
d7:e5:2c:67:e1:60:0a:44:11:f4:53:8d:8e:33:e5:bd:c8:f0:
52:98:c0:1c:40:0b:9a:4f:df:8b:3e:e3:55:2d:3a:fa:1d:4e:
7d:af:cb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 21:29:21 2024 by rpki-client on console-fra.rpki-client.org