Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Wyxcgb774ohHkZWOd6reEUmVk_Q.roa
File: Wyxcgb774ohHkZWOd6reEUmVk_Q.roa (raw, json)
Hash identifier: vlm1lEjH4YRqjG7JMPAQOkN+JuGgbZNi+MjsTAj7EqY=
Subject key identifier: 5B:2C:5C:81:BE:FB:E2:88:47:91:95:8E:77:AA:DE:11:49:95:93:F4
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 01929FCEB577E0CE0D8ECF01536599388BE0
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Wyxcgb774ohHkZWOd6reEUmVk_Q.roa
Signing time: Fri 18 Oct 2024 13:26:16 +0000
ROA not before: Fri 18 Oct 2024 13:26:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53356
IP address blocks: 88.223.164.0/22 maxlen: 22
95.173.34.0/23 maxlen: 23
95.173.36.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9f:ce:b5:77:e0:ce:0d:8e:cf:01:53:65:99:38:8b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Oct 18 13:26:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b2c5c81befbe2884791958e77aade11499593f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6b:48:75:42:7c:8c:c5:7f:c1:d7:93:61:33:
a5:e9:5c:85:3a:59:0a:40:c9:f4:3b:d6:12:d2:4a:
af:16:4d:59:1e:12:d4:62:c0:b9:b5:ee:e0:24:14:
66:a9:2e:d5:a1:b6:1c:c9:15:eb:36:db:f7:e7:9c:
83:f0:88:96:10:e5:7f:d4:75:df:77:5c:de:4b:4e:
42:4f:10:5f:53:97:32:5c:03:39:5e:3b:b5:89:65:
0c:40:65:67:ff:f0:f9:dd:a9:74:21:b9:59:90:c7:
6a:5c:ec:5c:43:56:4b:d4:95:35:1d:41:e9:8a:69:
a2:a8:48:67:b5:09:bf:e4:67:29:e0:93:34:08:20:
a1:7d:2f:63:92:a3:65:55:45:5d:fd:8e:3a:dc:3d:
5c:03:06:ac:7c:e1:c7:69:9f:d2:1c:65:81:03:d3:
97:18:81:46:e7:04:29:b8:6e:8d:9b:49:b0:84:1c:
05:5f:23:dd:6c:e5:f2:97:23:b2:ce:d1:74:24:e4:
7b:79:3f:ed:83:49:d2:8e:9b:57:0d:79:6a:3b:87:
e2:8e:5e:32:1c:fd:fe:f5:8f:ea:20:51:3a:7b:7f:
7b:d3:21:e4:8d:e1:b5:3f:71:a3:65:4e:50:7f:39:
3f:f1:c5:79:21:a3:ab:f4:ee:da:13:80:21:a1:d6:
1f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:2C:5C:81:BE:FB:E2:88:47:91:95:8E:77:AA:DE:11:49:95:93:F4
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Wyxcgb774ohHkZWOd6reEUmVk_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.223.164.0/22
95.173.34.0-95.173.39.255
Signature Algorithm: sha256WithRSAEncryption
4f:b3:39:35:39:13:b9:f1:9e:8b:07:c7:a1:1c:73:bc:2d:54:
0c:48:7b:5e:50:9c:2a:8e:e0:f7:1d:5e:d5:36:f6:49:79:d5:
d2:a3:6c:13:83:ff:5b:b0:bf:77:69:e0:0e:b2:68:65:b0:65:
d4:fa:18:68:70:0b:bb:6c:4e:c8:c7:f6:89:8a:33:83:8f:b1:
b7:69:13:f1:f4:50:6f:6f:3d:2a:7a:a4:3e:c2:ca:45:27:ca:
1e:9e:44:f0:b5:ab:65:3f:dd:55:8f:14:9e:b3:f5:05:48:7a:
0f:db:ee:da:dc:3e:ac:99:ce:6b:85:f7:0e:be:51:b6:76:fd:
cd:2f:ca:65:eb:3e:73:d9:29:00:a2:a2:b8:06:8a:8a:d6:c0:
d0:44:1d:a3:ec:11:b3:03:b5:94:68:f4:4f:54:d3:4c:6f:3a:
6a:63:42:2a:14:2b:bc:e9:a4:2f:34:9b:35:61:bb:bc:09:e4:
89:61:74:78:ab:87:57:86:3b:46:95:bb:b6:2b:6f:54:45:e8:
40:0f:ba:92:f3:5c:74:81:65:6c:9a:5b:d6:d0:ba:86:44:74:
47:78:ea:56:4b:10:92:77:f7:c9:3a:6f:8e:a4:47:74:03:98:
73:bb:a2:bb:a5:2f:54:64:d6:b1:47:2b:a6:9a:62:a8:d8:37:
92:13:38:ad
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:43:48 2024 by rpki-client on console-fra.rpki-client.org