Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/WVtfr5QN_VUJpPKYVWUe0eEIk0U.roa
File: WVtfr5QN_VUJpPKYVWUe0eEIk0U.roa (raw, json)
Hash identifier: JpTStKIojL8jmCvOwDfp2jnKsrEWT2x8QH8IO3Z9gQk=
Subject key identifier: 59:5B:5F:AF:94:0D:FD:55:09:A4:F2:98:55:65:1E:D1:E1:08:93:45
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 018CC56EF333FCFF32EF28F19E86356C9408
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/WVtfr5QN_VUJpPKYVWUe0eEIk0U.roa
Signing time: Mon 01 Jan 2024 14:30:31 +0000
ROA not before: Mon 01 Jan 2024 14:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47453
IP address blocks: 87.246.49.0/24 maxlen: 24
87.246.48.0/24 maxlen: 24
87.246.47.0/24 maxlen: 24
87.246.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 23:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:f3:33:fc:ff:32:ef:28:f1:9e:86:35:6c:94:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Jan 1 14:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=595b5faf940dfd5509a4f29855651ed1e1089345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:42:50:6f:1a:85:9a:cb:17:d2:d1:c7:5d:67:
5b:c7:75:ee:8c:eb:8f:69:1b:0d:12:3f:4f:87:c4:
ab:d8:7f:d5:93:b1:01:e3:4e:1a:44:7b:71:a9:c6:
0f:ca:ff:ad:f3:01:19:e6:0b:fa:fe:8e:24:58:bd:
15:7d:70:80:dc:06:ba:4b:bb:a8:a1:d4:ff:94:a5:
3f:40:3e:7d:c6:0b:f3:73:db:a8:2e:85:af:12:c9:
86:44:9c:b5:c1:00:96:7a:f0:cc:83:70:e1:e6:73:
f7:3d:08:b3:d4:88:42:c2:e8:84:e0:81:93:3e:7b:
bb:57:70:1e:0f:c5:d7:e7:f8:77:19:ac:70:5f:b4:
3c:12:73:9b:fc:23:7c:a0:09:fc:5f:a6:cd:a7:73:
69:62:8b:b5:74:c8:51:62:c0:10:ac:2f:31:d0:ca:
19:f2:29:c1:17:f4:72:be:f1:54:0d:1b:c6:8f:0d:
e8:a1:85:cb:6d:f9:32:67:4d:67:8d:96:16:8c:96:
de:ee:85:c1:c9:34:3f:d2:5f:a2:40:fa:95:20:62:
3d:61:33:f8:7b:91:ed:78:98:6e:25:d8:6c:6c:74:
71:76:cf:63:ac:ff:39:da:b4:00:37:34:9d:e7:9e:
69:d1:1c:22:64:e4:4d:db:cb:f5:64:24:8e:0e:1a:
ea:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5B:5F:AF:94:0D:FD:55:09:A4:F2:98:55:65:1E:D1:E1:08:93:45
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/WVtfr5QN_VUJpPKYVWUe0eEIk0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.46.0-87.246.49.255
Signature Algorithm: sha256WithRSAEncryption
52:b6:4f:57:41:be:25:3f:2d:30:9f:c3:72:1d:c5:d9:47:ee:
45:e2:59:32:a7:6e:08:f2:e4:5d:c6:3c:5d:19:39:26:55:98:
9a:97:c6:ac:84:d0:b0:ea:30:14:b1:63:3f:76:13:9b:21:b1:
13:1b:61:17:c1:64:5d:be:3c:42:4b:a9:a1:a9:09:26:52:92:
88:79:26:51:a5:17:e4:32:d2:8a:91:63:4a:75:47:16:d7:96:
6f:21:06:60:63:2a:7d:c9:89:dc:c7:2b:c7:ae:98:a7:9b:4a:
8a:68:bc:c1:de:b9:30:63:ce:e6:74:e4:55:f8:55:46:47:0e:
91:28:f6:3c:bb:07:7a:98:03:bb:e3:c1:19:fd:b2:91:74:68:
93:70:49:ba:8a:82:a9:ab:0e:e6:75:e0:ae:85:c4:13:db:35:
c0:0c:34:dd:06:2d:4b:34:be:f9:9c:d0:e0:62:56:5a:5e:6a:
15:1a:ec:55:a4:69:e3:ff:dc:65:ba:b1:4f:ce:24:a9:26:5b:
c2:bb:22:04:cc:35:61:12:51:30:c0:90:3a:8e:eb:08:29:9d:
c0:ed:e0:c7:6d:eb:6d:a5:bf:6c:dd:d4:50:52:61:b9:13:e8:
bb:01:77:78:45:cf:10:b6:3a:e5:f3:68:81:50:79:24:a9:05:
33:f0:fd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 09:15:16 2024 by rpki-client on console-fra.rpki-client.org