Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/WEuKjUdhEgExAyyeCeiJ7vC7EGY.roa
File: WEuKjUdhEgExAyyeCeiJ7vC7EGY.roa (raw, json)
Hash identifier: 5f0MabJRn5lxcObXySEVwhK2I+tzgKkOPg8Dyfq8rIU=
Subject key identifier: 58:4B:8A:8D:47:61:12:01:31:03:2C:9E:09:E8:89:EE:F0:BB:10:66
Certificate issuer: /CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Certificate serial: 018D1C31DC743A2E327429E8E6A1D446F7E2
Authority key identifier: FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/WEuKjUdhEgExAyyeCeiJ7vC7EGY.roa
Signing time: Thu 18 Jan 2024 10:50:46 +0000
ROA not before: Thu 18 Jan 2024 10:50:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198169
IP address blocks: 78.109.224.0/24 maxlen: 24
78.109.233.0/24 maxlen: 24
78.109.234.0/24 maxlen: 24
78.109.235.0/24 maxlen: 24
78.109.238.0/24 maxlen: 24
185.52.101.0/24 maxlen: 24
185.52.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:31:dc:74:3a:2e:32:74:29:e8:e6:a1:d4:46:f7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Validity
Not Before: Jan 18 10:50:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=584b8a8d4761120131032c9e09e889eef0bb1066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:56:26:5e:13:00:cf:29:5e:6b:2f:d0:ea:
c6:f0:8d:d8:ac:62:44:ed:70:5b:57:be:7b:51:91:
d0:35:42:3b:eb:71:db:49:d8:f0:de:e3:ab:cb:c6:
e0:1e:6a:a3:fb:7a:cf:07:3b:04:30:b0:75:c3:9f:
a7:84:f7:dd:8d:6a:6e:c5:f2:f5:4e:c0:0a:e0:23:
eb:96:8e:2a:86:1c:55:e6:87:8a:41:ab:69:89:99:
18:58:a6:a3:81:35:a7:f4:77:02:58:1f:ea:57:55:
fe:b1:a9:15:1f:7a:a0:f1:13:fe:78:ff:27:e8:1b:
be:5a:0e:dd:d9:56:39:62:b5:36:75:9c:b0:92:c2:
a8:af:3f:ab:b3:89:bb:ed:80:82:26:d8:26:50:6e:
d4:f9:60:cd:80:99:06:be:57:81:f7:43:e7:2e:eb:
e4:90:6c:fb:93:b5:ae:fd:b3:5c:eb:8f:28:34:dc:
30:ae:9f:f1:6b:81:a7:88:cc:8c:47:36:9a:fc:ff:
6e:19:e0:50:f1:e8:d5:56:84:eb:37:d2:b0:0d:b9:
1f:72:c7:4c:81:87:96:bf:4b:56:44:9f:0c:30:2b:
d4:63:a4:18:66:94:d3:4a:c0:20:bd:3e:04:40:0b:
1a:b0:26:1f:a9:0d:a1:10:ff:12:b6:44:22:10:c7:
b7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4B:8A:8D:47:61:12:01:31:03:2C:9E:09:E8:89:EE:F0:BB:10:66
X509v3 Authority Key Identifier:
keyid:FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/WEuKjUdhEgExAyyeCeiJ7vC7EGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.224.0/24
78.109.233.0-78.109.235.255
78.109.238.0/24
185.52.101.0-185.52.102.255
Signature Algorithm: sha256WithRSAEncryption
6f:54:4d:02:24:3d:e2:ad:24:8a:f6:0c:28:05:49:af:2d:96:
59:b6:aa:11:13:c6:8e:b9:25:f5:58:63:43:ab:ad:a8:30:c5:
37:1c:bb:e6:54:46:6b:f9:76:06:1a:a9:89:81:fe:22:93:99:
1d:fe:40:12:58:25:84:78:9b:ab:14:3e:a1:d9:ba:bd:8b:7a:
87:53:12:f3:f9:50:e9:08:5d:a1:55:48:b3:7b:8b:57:01:81:
0a:37:a6:dd:04:36:db:c4:fd:42:35:92:bf:ba:b5:e0:71:c5:
4b:af:9b:d7:0e:74:09:85:32:26:ee:ef:71:d7:f9:2e:5f:b4:
72:e2:77:ff:ee:94:ef:1e:f0:f8:8e:c4:fa:91:27:95:ce:16:
83:7e:f3:13:81:53:9c:b5:fb:ae:6d:0b:e7:35:c4:dd:63:73:
d2:00:c6:44:65:e3:49:f4:ba:ae:39:65:44:34:63:16:44:98:
f6:0b:e3:71:67:74:af:5b:ad:09:26:ec:b7:c7:a0:a4:93:63:
4b:42:42:5e:dd:cc:f4:97:26:49:ab:5c:c3:b0:e6:a7:a5:4f:
02:f6:10:7e:b4:25:32:b5:86:f3:51:10:71:4f:53:a5:6d:c1:
fd:a8:e9:b2:65:33:31:22:35:fa:59:98:86:10:30:9f:ea:49:
c9:23:55:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:47:58 2024 by rpki-client on console-ams.rpki-client.org