Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/wBX5vqs8D0nEYk1fICwrmwiXzR4.roa
File: wBX5vqs8D0nEYk1fICwrmwiXzR4.roa (raw, json)
Hash identifier: 04+8g1iBOqqn0eJpGFDyFUhIVUiaglDNqL7N7Zp9pd4=
Subject key identifier: C0:15:F9:BE:AB:3C:0F:49:C4:62:4D:5F:20:2C:2B:9B:08:97:CD:1E
Certificate issuer: /CN=6a798f0fe4f4dffdfed2c8e62d235430f49377cd
Certificate serial: 018CC56E309208BBB83726AC06FC534BD3DF
Authority key identifier: 6A:79:8F:0F:E4:F4:DF:FD:FE:D2:C8:E6:2D:23:54:30:F4:93:77:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/anmPD-T03_3-0sjmLSNUMPSTd80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/wBX5vqs8D0nEYk1fICwrmwiXzR4.roa
Signing time: Mon 01 Jan 2024 14:29:42 +0000
ROA not before: Mon 01 Jan 2024 14:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42237
IP address blocks: 193.105.134.0/24 maxlen: 24
91.236.116.0/24 maxlen: 24
185.217.2.0/24 maxlen: 24
185.217.1.0/24 maxlen: 24
185.217.0.0/24 maxlen: 24
185.246.130.0/24 maxlen: 24
185.246.129.0/24 maxlen: 24
185.246.128.0/24 maxlen: 24
2a0d:8986::/32 maxlen: 32
2a0d:8985::/32 maxlen: 32
2a0d:8982::/32 maxlen: 32
2a0d:8981::/32 maxlen: 32
2a0b:c040::/32 maxlen: 32
2a0d:8987::/32 maxlen: 32
2a0d:8984::/32 maxlen: 32
2a0d:8980::/32 maxlen: 32
2a0b:c041::/32 maxlen: 32
2a0d:8983::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/anmPD-T03_3-0sjmLSNUMPSTd80.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/anmPD-T03_3-0sjmLSNUMPSTd80.mft
rsync://rpki.ripe.net/repository/DEFAULT/anmPD-T03_3-0sjmLSNUMPSTd80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:30:92:08:bb:b8:37:26:ac:06:fc:53:4b:d3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a798f0fe4f4dffdfed2c8e62d235430f49377cd
Validity
Not Before: Jan 1 14:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c015f9beab3c0f49c4624d5f202c2b9b0897cd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:b6:50:31:5d:52:ac:b7:29:38:fb:3e:d7:
83:f1:d0:a9:95:1f:2d:ad:a9:3a:02:e8:6a:b1:d7:
c3:15:fe:4c:23:50:31:b7:94:8a:3e:f6:74:39:53:
78:bc:7a:a1:4f:3a:91:76:c3:b0:3b:e9:65:ad:e9:
ad:0c:27:e5:b7:49:7e:18:44:6d:08:6d:e3:9d:c6:
87:76:51:cb:b2:0a:09:5e:22:70:9b:26:78:ca:c3:
22:c0:c4:0d:06:b8:5c:62:41:a8:c0:17:27:cc:fc:
37:50:dc:6d:fc:88:c5:ef:5d:d6:fc:bd:25:ac:05:
23:24:36:e8:d9:cb:6c:8b:2e:d2:96:53:52:6c:2b:
fb:8e:0c:a4:50:c4:bf:34:e8:a1:88:3e:b6:38:7d:
f3:a1:73:fd:39:62:bd:7c:23:3f:ce:f2:13:d3:97:
0b:c7:69:8f:bb:ec:2b:98:f7:cf:a0:b2:16:97:33:
da:f4:ad:9f:06:58:ae:ef:b3:09:9d:79:53:c7:9f:
22:ca:53:e9:99:f4:8c:b5:30:28:8a:ba:de:87:da:
56:b7:4f:a7:63:b5:15:c1:17:3e:06:df:b7:33:05:
d3:a4:8c:09:45:a7:b9:22:1f:a7:f3:36:1f:b9:7e:
6d:f5:82:9c:33:2d:11:4b:d9:cc:9c:33:5f:16:a3:
ea:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:15:F9:BE:AB:3C:0F:49:C4:62:4D:5F:20:2C:2B:9B:08:97:CD:1E
X509v3 Authority Key Identifier:
keyid:6A:79:8F:0F:E4:F4:DF:FD:FE:D2:C8:E6:2D:23:54:30:F4:93:77:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/anmPD-T03_3-0sjmLSNUMPSTd80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/wBX5vqs8D0nEYk1fICwrmwiXzR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/anmPD-T03_3-0sjmLSNUMPSTd80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.116.0/24
185.217.0.0-185.217.2.255
185.246.128.0-185.246.130.255
193.105.134.0/24
IPv6:
2a0b:c040::/31
2a0d:8980::/29
Signature Algorithm: sha256WithRSAEncryption
2d:99:1e:2f:e9:ef:52:c6:31:89:67:09:82:37:b8:8f:8b:23:
51:cf:8b:f3:85:bd:c0:16:90:fb:0d:f9:91:7b:46:31:51:32:
18:53:e6:d3:60:ee:55:06:a0:e5:1f:a0:7f:d4:9b:c2:6a:b6:
c3:ea:f7:70:b6:7b:af:37:94:f7:0d:ac:34:cc:10:b5:30:92:
e4:32:56:6f:0d:a3:f5:c2:2e:b8:01:41:28:dc:36:4f:b0:c8:
6e:39:f7:67:f4:63:2a:21:2b:d9:8a:54:1c:96:42:11:68:f5:
0f:73:c3:bf:ea:ce:bc:a1:68:16:88:cc:48:9e:71:b1:a1:b3:
4b:3d:74:b7:e7:b8:f1:e2:20:be:fc:87:62:e6:46:35:82:85:
4b:45:67:97:37:f7:db:f0:15:aa:a1:e3:4e:a7:e5:f6:28:ca:
2b:22:74:dd:2f:5e:a9:3d:9b:7f:04:4d:39:6e:71:ec:88:7f:
e5:97:c0:72:c0:65:f7:2d:f5:12:2d:64:9e:2e:cd:fb:2d:e6:
1e:17:ee:78:25:ee:90:1c:b8:c3:85:6e:18:1c:ed:24:80:33:
d5:6f:a0:65:ff:c3:18:4e:9f:b1:4d:42:42:a2:35:c5:d7:5e:
75:84:88:d6:2f:db:1b:6f:2f:b0:53:47:79:2f:39:10:bb:cc:
b4:65:60:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:52:50 2024 by rpki-client on console-ams.rpki-client.org