Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/wRZKLfOl7yoh6u54FGaS_YxG0Lo.roa
File: wRZKLfOl7yoh6u54FGaS_YxG0Lo.roa (raw, json)
Hash identifier: vz9OGXITE9DJ6db9wOsmBzr4NLoIEVKUdzRH3mZUyo0=
Subject key identifier: C1:16:4A:2D:F3:A5:EF:2A:21:EA:EE:78:14:66:92:FD:8C:46:D0:BA
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 018E9ED9E95C3C156DEF2235EE25A5CFABF5
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/wRZKLfOl7yoh6u54FGaS_YxG0Lo.roa
Signing time: Tue 02 Apr 2024 12:47:44 +0000
ROA not before: Tue 02 Apr 2024 12:47:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43054
IP address blocks: 80.91.219.0/24 maxlen: 24
185.225.27.0/24 maxlen: 24
188.190.113.0/24 maxlen: 24
193.41.32.0/24 maxlen: 24
193.200.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:d9:e9:5c:3c:15:6d:ef:22:35:ee:25:a5:cf:ab:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Apr 2 12:47:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1164a2df3a5ef2a21eaee78146692fd8c46d0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:5d:97:08:45:fe:fe:84:b2:a9:9c:79:42:
25:68:ec:f6:f2:3d:b9:75:42:a6:da:47:87:c3:0d:
39:55:c9:ae:bf:c0:77:ce:88:ea:49:cd:d4:4c:37:
4e:93:07:78:e1:fb:b9:f3:42:2c:dc:e9:c0:f0:bb:
b1:f5:7f:51:0b:0f:5b:12:84:25:33:90:20:8a:f0:
7b:78:8d:4f:49:f8:8d:94:9b:53:3c:63:50:c7:ff:
f4:24:da:41:79:65:47:5d:9d:ff:13:f4:ef:88:8e:
5d:5d:4b:00:ad:c0:85:4f:80:65:ba:a4:58:3b:28:
79:67:d5:95:ee:b8:0f:94:01:07:a0:11:fd:5d:37:
9d:73:c4:af:07:06:d6:6f:f9:c4:5d:dc:98:6c:0e:
ed:ad:64:f4:fa:23:9a:3b:f7:d3:6f:47:cd:34:7a:
79:78:a6:97:91:4a:e3:5b:3e:80:c4:ea:d5:1b:d2:
77:c4:f5:e7:aa:82:3c:71:bb:77:24:34:f1:d8:55:
c5:57:0f:d9:a5:f3:74:c5:14:2b:c5:d8:6e:70:75:
8d:7c:de:4f:ee:89:bd:ac:71:a1:ed:c0:fd:96:bc:
2c:d5:ac:b7:fb:6d:14:06:ad:7f:9d:59:b2:24:b3:
7c:b5:f3:34:a1:a4:68:6d:4c:03:23:a2:3f:a0:f1:
0b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:16:4A:2D:F3:A5:EF:2A:21:EA:EE:78:14:66:92:FD:8C:46:D0:BA
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/wRZKLfOl7yoh6u54FGaS_YxG0Lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.219.0/24
185.225.27.0/24
188.190.113.0/24
193.41.32.0/24
193.200.214.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:c3:86:4d:88:fa:f8:c0:0a:22:3a:3e:1e:ca:08:e0:43:5f:
ee:82:e0:cb:ef:6b:e6:b8:56:50:44:d0:6f:b0:af:ab:23:45:
ff:1c:81:a7:9a:cf:5d:db:eb:63:56:19:b3:45:ba:03:ab:4a:
1b:29:2a:05:1d:aa:85:39:88:35:53:3f:89:ca:c9:c4:e0:af:
63:40:79:a1:5c:4a:8d:22:8b:9c:69:34:90:20:cf:aa:d1:e4:
1f:13:96:de:42:10:c2:86:fa:83:ee:26:d8:ac:dc:36:11:1b:
a1:b3:07:94:0d:62:49:0a:14:8d:77:75:fe:d2:c0:d6:a3:55:
fe:0a:e7:01:66:84:6c:32:30:e7:1d:b8:a2:3f:93:9b:c2:20:
7e:45:38:39:b0:cb:4e:98:6f:aa:39:65:de:f6:03:73:61:6d:
75:09:10:80:68:91:37:f9:fb:e5:48:14:3b:8c:d5:9e:be:d8:
3f:ec:d3:fe:5c:3a:d6:08:b8:56:1d:7b:5a:a8:ff:6e:6b:cf:
d2:47:90:e7:4d:63:1b:ab:7f:cd:b6:a0:6a:c8:94:1d:5e:0f:
cd:14:27:ef:9a:85:c0:8b:4a:6e:02:bf:d3:ac:98:51:f7:40:
4b:fc:de:da:96:df:1b:05:3f:24:cc:35:dd:3d:df:85:ee:e5:
68:2a:db:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:35:26 2024 by rpki-client on console-ams.rpki-client.org