Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WRURZ90iORUowsL9eiGN4bsYrJ8.roa
File: WRURZ90iORUowsL9eiGN4bsYrJ8.roa (raw, json)
Hash identifier: 9I7u9k/Qo8C6EsT62C9LgA+v9MOHPI8TB1jm7hcIfHU=
Subject key identifier: 59:15:11:67:DD:22:39:15:28:C2:C2:FD:7A:21:8D:E1:BB:18:AC:9F
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 018CC5DCB7212D451E7894ABB39A78436673
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WRURZ90iORUowsL9eiGN4bsYrJ8.roa
Signing time: Mon 01 Jan 2024 16:30:25 +0000
ROA not before: Mon 01 Jan 2024 16:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211699
IP address blocks: 82.159.144.0/24 maxlen: 24
62.82.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:b7:21:2d:45:1e:78:94:ab:b3:9a:78:43:66:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Jan 1 16:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59151167dd22391528c2c2fd7a218de1bb18ac9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a9:30:bf:f0:76:73:4c:6f:6b:c5:49:6d:57:
55:f4:b3:25:ff:58:27:d1:f8:e2:33:65:d4:d8:8a:
a2:f3:88:37:0a:c5:c4:98:f7:e7:a3:91:77:86:80:
a0:5c:0e:0a:a4:6c:34:40:de:ae:69:57:f0:96:44:
37:87:7f:d7:69:d1:8f:e2:1f:5b:8c:eb:30:f8:95:
d3:03:aa:eb:72:0b:e8:1d:a9:7f:52:b4:0e:f5:de:
19:f7:f2:36:68:b2:03:57:53:67:9c:bb:09:f9:be:
eb:ba:a0:0f:d8:a7:b6:36:07:ee:08:2b:49:ce:fd:
0a:7c:b7:fd:ff:5c:28:87:07:34:f9:b9:8c:70:7d:
23:d3:83:1d:a3:59:69:ab:da:9c:43:68:bb:a5:fc:
df:57:86:8e:31:0f:e6:38:90:53:ac:95:75:6b:b4:
64:aa:15:9b:1d:9a:2c:4e:d4:73:06:99:77:31:16:
5e:d8:a4:22:1a:81:3f:13:c8:78:04:9c:7d:56:a7:
de:05:f5:d7:5d:93:25:da:e5:d7:65:46:1a:af:d6:
82:ef:c4:ff:22:20:54:74:03:08:8b:6e:5c:c8:54:
c2:70:8b:55:16:56:09:6a:c5:b0:4b:15:a6:e1:a2:
33:a5:85:51:e7:fc:08:3b:e0:bd:cf:22:e9:d4:de:
af:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:15:11:67:DD:22:39:15:28:C2:C2:FD:7A:21:8D:E1:BB:18:AC:9F
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WRURZ90iORUowsL9eiGN4bsYrJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.82.151.0/24
82.159.144.0/24
Signature Algorithm: sha256WithRSAEncryption
46:db:0c:b4:7d:30:ef:4f:67:0b:0d:fe:16:18:00:90:c7:5d:
cf:dd:46:30:06:ce:3f:f7:a6:17:e1:f3:3f:30:60:8e:d8:77:
98:fe:8d:2b:20:7c:c2:c0:d3:4c:70:e9:55:9c:5a:88:aa:f6:
52:82:25:a1:ef:97:d6:7a:e7:20:c2:98:61:11:57:ac:81:00:
85:58:6a:b3:c8:95:15:6c:9f:3a:24:0b:a1:13:aa:b1:78:ed:
94:54:e8:35:c0:1e:c5:27:f6:e3:19:d1:4a:31:66:eb:fa:b3:
6b:43:cd:c7:7f:47:12:8b:a6:9d:1e:53:7c:7f:ed:ca:6a:f8:
1c:ba:72:05:b1:6f:bb:c6:ac:88:71:31:08:70:6a:75:23:29:
8a:41:55:35:3f:60:5d:5d:63:8b:3f:0b:a4:00:d5:91:68:29:
0c:ac:81:1b:88:d6:24:e1:85:18:23:19:ee:de:2a:30:18:97:
bc:19:87:86:27:d9:1d:cc:34:a6:d5:25:9f:c7:38:ed:e4:70:
83:f3:d1:69:b4:2a:bd:4e:4d:91:e1:16:b6:63:28:3c:ec:38:
52:4d:50:0f:19:82:e5:0b:43:69:bd:76:0a:95:e6:9f:26:a4:
83:b1:ab:81:6e:6a:47:0a:5d:22:0f:6f:31:b0:e6:58:f0:d7:
c1:9a:49:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:31:23 2024 by rpki-client on console-ams.rpki-client.org