Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/WDykcU9Ivh5dOuayIq2ty5AX27Q.roa
File: WDykcU9Ivh5dOuayIq2ty5AX27Q.roa (raw, json)
Hash identifier: +Llh2y3QvWb70Elk+y5WB5sMivKVyUNB5jG11k/7+hE=
Subject key identifier: 58:3C:A4:71:4F:48:BE:1E:5D:3A:E6:B2:22:AD:AD:CB:90:17:DB:B4
Certificate issuer: /CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Certificate serial: 018CC64B2A242E40A0444020EF2263CAFDC3
Authority key identifier: 27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/WDykcU9Ivh5dOuayIq2ty5AX27Q.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15605
IP address blocks: 5.181.68.0/22 maxlen: 24
46.30.168.0/21 maxlen: 24
2.58.128.0/22 maxlen: 24
109.73.80.0/20 maxlen: 24
185.5.244.0/22 maxlen: 24
5.154.192.0/19 maxlen: 24
185.37.180.0/22 maxlen: 24
37.77.96.0/22 maxlen: 24
37.77.100.0/24 maxlen: 24
37.77.102.0/24 maxlen: 24
37.77.101.0/24 maxlen: 24
5.154.237.0/24 maxlen: 24
91.151.86.0/23 maxlen: 24
2a00:1cc8::/29 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2a:24:2e:40:a0:44:40:20:ef:22:63:ca:fd:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=583ca4714f48be1e5d3ae6b222adadcb9017dbb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a7:87:70:0b:f9:2f:f8:39:9e:64:4b:0c:09:
b7:68:4a:98:23:d5:7e:05:50:af:3d:3a:9d:cc:81:
bb:99:80:8c:4e:48:48:3c:14:58:de:3e:0a:6a:8d:
d6:24:d7:be:e4:10:89:e2:ef:96:0f:06:d8:a4:ae:
77:7d:82:99:4d:dc:36:f2:39:df:49:a1:48:1b:98:
7c:20:8a:69:5f:4e:34:a2:19:5f:c1:f7:dc:70:c1:
11:f4:f9:8c:0e:1e:0e:c6:88:b5:9c:87:fe:06:93:
ed:c1:fc:e4:0f:96:02:45:bd:fd:3f:10:f0:4f:de:
25:bd:00:e5:f3:4c:ca:b3:40:da:61:09:9d:97:63:
18:51:50:15:8a:e4:91:43:e7:3a:ec:d8:fa:18:6d:
5e:c8:0f:3e:5b:16:03:59:e5:ce:58:e5:3a:0e:68:
49:a6:65:a6:cb:58:17:a5:bc:e9:8a:55:e5:07:3c:
c8:d5:98:0c:e2:e0:44:c3:4d:b6:c4:69:ff:c8:91:
b5:36:10:c9:68:65:2b:a7:24:da:74:be:da:50:38:
d9:d6:2d:36:e5:0b:d9:ab:cc:3b:54:68:94:4a:16:
5e:8c:11:bd:40:ce:10:ef:b8:84:52:8a:b9:f6:7d:
27:66:5f:56:1c:a4:f6:5f:99:67:79:18:e7:84:50:
33:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:3C:A4:71:4F:48:BE:1E:5D:3A:E6:B2:22:AD:AD:CB:90:17:DB:B4
X509v3 Authority Key Identifier:
keyid:27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/WDykcU9Ivh5dOuayIq2ty5AX27Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.128.0/22
5.154.192.0/19
5.154.237.0/24
5.181.68.0/22
37.77.96.0-37.77.102.255
46.30.168.0/21
91.151.86.0/23
109.73.80.0/20
185.5.244.0/22
185.37.180.0/22
IPv6:
2a00:1cc8::/29
Signature Algorithm: sha256WithRSAEncryption
82:33:77:57:5f:57:6f:2f:ff:f2:f0:d7:d9:70:e3:a8:36:8e:
e6:51:ea:69:74:0d:da:08:e6:cc:49:fd:b2:69:9e:cf:47:47:
ef:5a:f4:f6:75:af:a2:1d:76:ea:63:d7:6e:15:b3:95:6e:32:
0f:69:24:b4:f8:74:c5:d0:07:72:4d:3c:b6:72:d4:0b:f3:d4:
57:c1:87:ad:a5:ec:93:ea:54:b7:5a:94:87:0b:b6:be:60:70:
0d:8b:ff:fd:b4:1d:67:9a:d7:51:d3:4a:a5:a2:f9:39:75:72:
c0:2a:3a:8b:c1:fc:bd:1c:c4:d9:a2:99:45:88:a6:25:35:ba:
cb:17:a8:10:76:46:12:fc:36:a8:67:83:92:72:a8:3a:c5:de:
40:d5:56:d5:fd:0d:d0:54:bf:36:79:1a:2c:de:e0:2c:02:8e:
30:ff:6b:67:fc:21:31:ae:43:b8:90:ed:42:37:86:90:c5:d5:
24:c7:19:92:11:63:e6:47:bf:65:7d:32:ac:39:4b:c7:d1:d0:
e6:65:80:6e:cf:c0:e2:f7:e8:bf:e3:c9:46:a6:e9:79:75:fd:
cd:c4:7f:63:8b:ff:d6:9d:f2:e4:c1:1b:79:44:b7:7f:64:ec:
c3:e1:21:64:8d:ed:f5:e5:80:17:0a:5c:21:df:6b:a8:bc:47:
16:bb:aa:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:06:23 2024 by rpki-client on console-fra.rpki-client.org