Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/WePktv0FySQ2EM89eauQKIyqY0k.roa
File: WePktv0FySQ2EM89eauQKIyqY0k.roa (raw, json)
Hash identifier: ZnnN2CdnLSvuRg1dkhCYQeDOiGPEW6pr37xmQn5FJPA=
Subject key identifier: 59:E3:E4:B6:FD:05:C9:24:36:10:CF:3D:79:AB:90:28:8C:AA:63:49
Certificate issuer: /CN=810af00225106b2096e9b21d9ac2f2040688dea2
Certificate serial: 01916A7FC00E025E1AB18D373A94F664B936
Authority key identifier: 81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/WePktv0FySQ2EM89eauQKIyqY0k.roa
Signing time: Mon 19 Aug 2024 11:57:22 +0000
ROA not before: Mon 19 Aug 2024 11:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198890
IP address blocks: 80.79.13.0/24 maxlen: 24
87.120.100.0/22 maxlen: 22
93.187.110.0/24 maxlen: 24
185.161.184.0/23 maxlen: 23
2a13:1540::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:7f:c0:0e:02:5e:1a:b1:8d:37:3a:94:f6:64:b9:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=810af00225106b2096e9b21d9ac2f2040688dea2
Validity
Not Before: Aug 19 11:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59e3e4b6fd05c9243610cf3d79ab90288caa6349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ff:9e:e1:83:c0:b3:f7:89:b8:22:05:0a:dc:
93:ff:8e:42:7e:d0:47:41:32:b1:54:73:dc:08:80:
e7:10:4f:f4:c7:04:65:47:f0:77:37:57:06:f3:ee:
25:6d:df:e0:64:34:2b:58:e9:4b:0a:15:7f:20:d7:
92:ee:19:8c:78:ae:53:c8:2c:f0:68:d2:c7:e8:4f:
88:1c:8f:f8:09:07:e7:70:44:f6:c2:0b:99:0f:ff:
f1:0d:d1:e4:33:36:16:33:b2:2d:c7:67:37:a6:b0:
d7:e9:23:46:21:91:3b:e0:0d:35:d8:da:ac:24:fa:
ae:38:05:ae:68:03:3e:40:c7:86:7a:35:23:23:5e:
ee:28:68:f8:87:9f:c8:b3:ab:9b:c7:f7:ce:ce:f8:
3c:1f:fd:24:f9:16:dc:14:75:0d:3b:44:df:15:67:
9d:6c:c6:69:2e:a7:40:26:ce:68:54:47:2f:38:96:
53:8a:95:a8:6f:d9:6d:01:e8:33:bd:28:54:ec:d0:
cc:75:7f:af:4e:1d:d2:55:58:42:b7:1c:c1:81:b4:
d6:20:5f:ce:c8:20:b5:b2:87:32:0b:34:9e:82:6c:
8f:00:ef:f5:c9:80:fc:6c:6f:0a:a8:7c:0a:ce:e7:
62:2e:be:f8:e6:9f:af:f0:47:f9:a8:a8:b8:ab:f1:
35:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E3:E4:B6:FD:05:C9:24:36:10:CF:3D:79:AB:90:28:8C:AA:63:49
X509v3 Authority Key Identifier:
keyid:81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/WePktv0FySQ2EM89eauQKIyqY0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.13.0/24
87.120.100.0/22
93.187.110.0/24
185.161.184.0/23
IPv6:
2a13:1540::/48
Signature Algorithm: sha256WithRSAEncryption
67:c6:40:99:c8:3e:31:4b:2a:5e:29:f9:32:2c:29:22:76:96:
a7:07:8c:74:59:dd:21:3b:e9:e3:2b:ae:f8:db:0b:f9:42:ef:
09:4f:15:39:ef:e9:4e:77:ae:5b:82:ad:c2:46:ed:b5:c6:1a:
c9:68:9d:0d:0d:57:23:a6:3a:e2:3b:8f:23:6c:9e:db:99:ac:
57:1c:91:cb:16:8a:94:5d:5f:a9:e8:8d:14:81:f6:dc:32:65:
6a:4d:5e:b2:47:b7:35:50:38:c5:a8:10:4e:d8:62:2a:02:27:
70:d3:72:d1:16:0b:b0:d9:8a:66:b8:db:99:08:b5:35:48:26:
c0:38:a2:50:40:66:bf:06:33:95:74:1b:8e:30:69:1c:f6:dc:
61:aa:91:f5:f6:e1:55:1f:a6:91:69:b3:45:56:b9:7c:97:67:
f6:15:ce:2b:f9:4d:9f:68:c5:6e:c6:db:80:8e:8d:b8:11:60:
cf:44:9d:f0:63:aa:5b:b1:24:b5:f6:00:ba:41:fc:99:1f:46:
22:b4:8d:08:c0:e2:50:e8:3f:13:21:4a:d0:74:e1:e3:98:7f:
94:e5:b2:07:f0:c3:62:b6:7a:56:7f:37:55:87:f3:2c:13:d3:
a1:71:4b:72:29:f6:73:16:b7:17:9a:f0:75:89:7a:44:ad:53:
fd:fc:38:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 00:32:33 2024 by rpki-client on console-fra.rpki-client.org