Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/W-QW5DlIKooXWC1RhUttYV0oGUM.roa
File: W-QW5DlIKooXWC1RhUttYV0oGUM.roa (raw, json)
Hash identifier: h6yysc2cOLBTlcZ+WfkOpJhtGkB/fK36lLfUTuIUiHc=
Subject key identifier: 5B:E4:16:E4:39:48:2A:8A:17:58:2D:51:85:4B:6D:61:5D:28:19:43
Certificate issuer: /CN=5fa386e97656d648ab5381b29666414081b00084
Certificate serial: 018DC198A1CC7A4AE52EE70B065CF744072B
Authority key identifier: 5F:A3:86:E9:76:56:D6:48:AB:53:81:B2:96:66:41:40:81:B0:00:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X6OG6XZW1kirU4GylmZBQIGwAIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/W-QW5DlIKooXWC1RhUttYV0oGUM.roa
Signing time: Mon 19 Feb 2024 13:40:22 +0000
ROA not before: Mon 19 Feb 2024 13:40:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34254
IP address blocks: 83.142.184.0/21 maxlen: 21
185.70.180.0/22 maxlen: 22
185.232.116.0/24 maxlen: 24
2a04:400::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/X6OG6XZW1kirU4GylmZBQIGwAIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/X6OG6XZW1kirU4GylmZBQIGwAIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/X6OG6XZW1kirU4GylmZBQIGwAIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:98:a1:cc:7a:4a:e5:2e:e7:0b:06:5c:f7:44:07:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fa386e97656d648ab5381b29666414081b00084
Validity
Not Before: Feb 19 13:40:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be416e439482a8a17582d51854b6d615d281943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c3:e9:79:40:f2:11:25:7d:3c:76:92:11:01:
82:8d:9f:f1:55:3e:29:65:9b:36:ce:53:0f:a1:28:
1d:00:7e:44:27:2d:3e:6d:c5:c0:bd:06:eb:ec:a9:
c1:68:58:1f:1d:72:c8:6e:e8:12:f8:5e:ce:70:6a:
68:0e:c0:be:24:a6:48:87:a3:00:6b:76:8f:42:cc:
69:72:1c:92:48:a6:bd:41:a0:32:6d:e4:5d:bb:25:
58:97:ca:a9:b5:15:bb:08:bb:bd:20:7b:03:d3:2f:
2f:99:36:c4:e2:44:27:33:b1:ef:12:ac:47:6f:42:
cc:06:22:d8:6c:1b:d8:37:2a:c4:c1:41:bb:a1:e1:
ef:b7:ad:db:59:d8:0f:b6:ab:ca:8a:90:04:12:40:
f3:66:f3:c1:a0:60:ea:64:51:57:3a:f8:07:b1:6d:
ee:d7:8d:1b:5b:35:2c:09:70:b0:66:c6:67:c7:7f:
4b:f9:ce:5d:72:1f:e1:e0:c2:67:a2:4a:09:8f:6a:
b7:ba:69:31:d0:d2:96:50:f1:57:14:59:2c:c4:b7:
df:38:de:18:cc:d8:d2:a5:1e:1a:22:ae:66:52:cb:
34:20:a2:25:8b:03:df:8f:36:a1:1d:1d:c0:fc:31:
2e:a8:fd:d8:b1:59:86:4f:e1:6a:59:ba:ac:8a:9b:
af:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E4:16:E4:39:48:2A:8A:17:58:2D:51:85:4B:6D:61:5D:28:19:43
X509v3 Authority Key Identifier:
keyid:5F:A3:86:E9:76:56:D6:48:AB:53:81:B2:96:66:41:40:81:B0:00:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X6OG6XZW1kirU4GylmZBQIGwAIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/W-QW5DlIKooXWC1RhUttYV0oGUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/X6OG6XZW1kirU4GylmZBQIGwAIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.184.0/21
185.70.180.0/22
185.232.116.0/24
IPv6:
2a04:400::/29
Signature Algorithm: sha256WithRSAEncryption
7b:10:3e:56:fb:36:b2:58:c3:bb:1c:70:df:09:54:74:54:ab:
36:87:8a:41:e4:a8:f8:9b:21:35:a2:ba:70:79:df:98:fd:d3:
51:3d:03:16:3a:30:c4:fd:1a:1f:3f:15:e6:9d:2f:20:34:95:
06:79:2d:ff:46:83:1a:93:bf:df:d0:2b:12:0f:cd:88:ac:9e:
d9:20:05:6f:fa:63:a6:04:8c:eb:46:43:97:81:bb:6d:37:64:
d0:2d:b9:79:ec:0c:27:71:fd:59:44:f3:cc:74:0a:a2:9b:61:
4a:0e:67:48:4b:24:81:24:41:87:3a:52:d4:08:39:5f:5c:80:
0d:e7:0f:b6:16:5d:11:09:60:42:8a:db:96:ad:d8:ec:6d:94:
5c:a4:a0:f3:f0:b9:21:dc:e4:3c:f5:f8:65:ea:86:87:c3:3b:
26:ea:90:8b:13:df:86:53:df:61:89:cf:4b:fd:2d:cd:cb:10:
8a:b5:a1:26:4b:f9:49:4e:d2:de:2b:ed:98:1d:1b:37:32:5a:
d6:e8:96:92:3a:f8:58:cf:56:01:5d:63:59:97:84:33:a0:96:
64:98:26:4a:b2:8b:3c:ee:14:5d:37:52:93:9f:34:6c:02:ea:
54:c7:09:09:53:8a:47:06:02:9f:a5:eb:7d:49:44:da:01:38:
5c:9a:2a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:55 2024 by rpki-client on console-fra.rpki-client.org