Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/WSFEkUA7hs_qUNvHmkw43WFlcTQ.roa
File: WSFEkUA7hs_qUNvHmkw43WFlcTQ.roa (raw, json)
Hash identifier: SZ0BN9QWkDSur7oYW5fx03G3mH9mipwqRTmWTvV7NSc=
Subject key identifier: 59:21:44:91:40:3B:86:CF:EA:50:DB:C7:9A:4C:38:DD:61:65:71:34
Certificate issuer: /CN=f454f84f78085f8ea03a49689cbe372e74ac153c
Certificate serial: 018CC64B36FC0BDFAF1CA4DE840D0A7473C1
Authority key identifier: F4:54:F8:4F:78:08:5F:8E:A0:3A:49:68:9C:BE:37:2E:74:AC:15:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9FT4T3gIX46gOklonL43LnSsFTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/WSFEkUA7hs_qUNvHmkw43WFlcTQ.roa
Signing time: Mon 01 Jan 2024 18:31:07 +0000
ROA not before: Mon 01 Jan 2024 18:31:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 194.30.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/9FT4T3gIX46gOklonL43LnSsFTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/9FT4T3gIX46gOklonL43LnSsFTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9FT4T3gIX46gOklonL43LnSsFTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:36:fc:0b:df:af:1c:a4:de:84:0d:0a:74:73:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f454f84f78085f8ea03a49689cbe372e74ac153c
Validity
Not Before: Jan 1 18:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59214491403b86cfea50dbc79a4c38dd61657134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c5:e9:08:11:e4:ab:0a:21:53:2f:6a:e8:b2:
6a:ad:40:79:4a:c4:85:43:57:f5:ac:31:3b:46:c9:
df:96:6c:f3:41:c6:d6:0a:09:0c:42:89:1c:2b:1c:
5b:56:dd:d4:a8:61:02:50:4b:da:0d:bc:48:57:a7:
57:c6:b1:46:0b:e0:8b:c0:ce:57:aa:a5:e9:fe:70:
28:83:6d:a2:21:a2:f4:d9:30:32:bc:6f:0c:63:c5:
fa:73:7b:e3:42:11:0a:86:3b:69:e1:a8:64:87:b9:
26:65:95:ee:13:55:12:b3:62:1e:6d:f1:f4:e4:04:
e9:6e:05:74:c7:c3:4f:97:90:5d:52:34:ca:76:ac:
2b:e5:cc:35:5f:65:d5:19:28:4f:af:13:b7:dd:5f:
dc:8d:43:19:6c:cf:ad:92:96:4f:9b:c9:ee:30:94:
cd:7c:d8:c8:fc:52:39:f9:59:28:9a:34:95:1a:29:
51:2c:bd:ad:43:39:2a:2e:30:30:72:24:e5:f5:87:
48:63:35:95:a0:cd:a0:ed:a9:3e:07:e1:f2:18:95:
e3:c0:09:6e:5e:4b:23:a6:a5:f7:a6:31:65:f0:cc:
6a:a0:93:fa:fe:59:96:24:30:6e:57:5a:6c:a0:1f:
dc:9b:f2:e3:af:bb:c6:c0:98:59:f2:ce:8c:15:8e:
cc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:21:44:91:40:3B:86:CF:EA:50:DB:C7:9A:4C:38:DD:61:65:71:34
X509v3 Authority Key Identifier:
keyid:F4:54:F8:4F:78:08:5F:8E:A0:3A:49:68:9C:BE:37:2E:74:AC:15:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9FT4T3gIX46gOklonL43LnSsFTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/WSFEkUA7hs_qUNvHmkw43WFlcTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/9FT4T3gIX46gOklonL43LnSsFTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.175.0/24
Signature Algorithm: sha256WithRSAEncryption
69:27:d5:57:a4:88:35:17:0f:c4:4e:b6:44:6e:cb:28:3d:9a:
d9:45:f5:cc:19:69:7d:55:57:0d:52:99:6a:17:90:7e:dc:9a:
45:3b:9f:b5:fd:67:57:34:b7:2a:94:ca:36:0a:49:0f:b9:e1:
76:f8:aa:91:26:ac:c6:1d:3e:5f:6b:46:27:0c:71:04:78:dd:
f4:7a:12:54:9e:a2:c7:e1:66:0d:45:9c:2a:fa:4a:84:b3:5e:
1f:8a:23:c1:86:3d:f9:f7:46:fe:c4:2d:6f:fc:4c:97:a8:e0:
d8:d7:d5:e8:f6:3e:d5:94:38:82:f5:bf:54:26:76:a4:64:fe:
1c:24:db:10:46:30:aa:09:c6:e7:5f:d5:a7:f2:04:b9:38:30:
07:c9:5f:d3:96:e0:3d:99:c5:9e:d4:a6:e3:4e:34:d3:36:a2:
76:ef:fc:ec:1f:c2:d5:2c:1a:79:a7:9f:fa:ab:20:c0:6e:87:
c3:c4:68:8f:96:9d:b3:3e:6a:8e:16:6d:e0:7a:5d:fb:88:63:
ed:75:bb:44:70:cb:85:21:5c:fb:f3:6e:9a:ba:00:ad:9b:a1:
90:8e:a9:c6:50:b5:87:5b:ac:c3:a8:a7:92:73:aa:1f:57:b4:
12:02:95:ca:9b:e5:6a:1c:ea:1d:8a:8a:db:30:4f:9d:8b:c3:
19:40:0f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:33:05 2024 by rpki-client on console-ams.rpki-client.org