Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/RldzhQTkBBojpaEYjIR6Gs358Tg.roa
File: RldzhQTkBBojpaEYjIR6Gs358Tg.roa (raw, json)
Hash identifier: IWO0CesThGN67SIeV+Gt99lcwe3cQaU3+DAR5gNDE4k=
Subject key identifier: 46:57:73:85:04:E4:04:1A:23:A5:A1:18:8C:84:7A:1A:CD:F9:F1:38
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01932FD68D1003696AB01C726C4A2F2D3336
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/RldzhQTkBBojpaEYjIR6Gs358Tg.roa
Signing time: Fri 15 Nov 2024 12:40:10 +0000
ROA not before: Fri 15 Nov 2024 12:40:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 62.84.16.0/20 maxlen: 20
85.254.8.0/24 maxlen: 24
85.254.9.0/24 maxlen: 24
85.254.10.0/24 maxlen: 24
85.254.11.0/24 maxlen: 24
85.254.12.0/24 maxlen: 24
85.254.13.0/24 maxlen: 24
85.254.14.0/24 maxlen: 24
85.254.15.0/24 maxlen: 24
85.254.63.0/24 maxlen: 24
85.254.117.0/24 maxlen: 24
85.254.118.0/23 maxlen: 23
217.24.64.0/20 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2f:d6:8d:10:03:69:6a:b0:1c:72:6c:4a:2f:2d:33:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Nov 15 12:40:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4657738504e4041a23a5a1188c847a1acdf9f138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b0:04:9d:d0:81:dd:05:1a:77:92:07:60:c9:
64:23:08:26:b6:f1:2b:79:a2:40:64:e2:6e:ce:2e:
f6:f3:1f:20:33:1d:95:6a:fc:42:a2:4f:15:70:0b:
11:05:6c:6d:c0:30:29:70:97:70:69:e3:2e:0b:1f:
71:dc:cd:ee:a9:78:54:e7:af:88:a0:0e:0b:d8:bb:
de:6a:c3:10:35:45:b7:74:5d:71:24:14:24:97:a5:
49:4e:1a:57:44:2d:ec:5b:fe:33:1e:81:04:34:ee:
be:91:53:cd:92:40:02:13:49:1f:72:7e:0b:59:83:
a7:cd:c7:9e:97:df:cb:8a:8a:4f:0b:7c:95:00:1e:
96:60:90:14:e9:b8:28:46:78:47:79:cc:df:4a:55:
87:3d:17:c7:8d:86:e0:3f:78:e4:3f:f0:b8:ab:2a:
19:ec:84:42:58:c1:08:c7:59:55:c9:5f:49:f8:f8:
67:db:cc:87:5f:16:9f:a7:6a:08:27:7f:ed:91:62:
74:da:04:36:e4:41:61:99:06:68:47:49:b4:ff:28:
03:b0:12:d7:df:4d:23:e5:84:be:b2:e5:3a:71:a1:
f2:61:c3:bc:51:19:4a:3e:64:17:da:ec:67:b3:72:
23:4f:80:e4:03:7b:77:ce:e2:a2:3e:90:97:7a:cd:
63:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:57:73:85:04:E4:04:1A:23:A5:A1:18:8C:84:7A:1A:CD:F9:F1:38
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/RldzhQTkBBojpaEYjIR6Gs358Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.16.0/20
85.254.8.0/21
85.254.63.0/24
85.254.117.0-85.254.119.255
217.24.64.0/20
Signature Algorithm: sha256WithRSAEncryption
94:2b:81:ef:46:95:bb:73:c0:89:9b:5f:1b:f7:e6:a8:37:95:
e1:bc:66:16:e6:cc:d7:a5:e7:6d:49:29:5b:32:17:b2:bc:94:
14:8f:23:b3:23:43:27:f5:16:0b:64:45:8c:c3:f4:65:14:a6:
54:d7:ab:73:09:08:26:2c:a3:f4:48:9f:3c:ba:c2:9d:f0:08:
c2:be:8c:51:b4:06:75:91:75:d5:76:3c:07:43:59:cd:4a:4b:
13:03:fc:dc:0b:65:d3:3e:6e:2f:ef:22:43:c9:d6:fb:91:bb:
b9:f2:d1:82:44:04:b3:3c:70:58:df:8b:ac:a6:db:88:37:b8:
75:c7:90:aa:b6:16:ce:b5:7d:b2:ce:a2:3a:35:70:33:04:1b:
c2:e0:4a:ca:9c:f1:44:b9:eb:75:17:b5:c2:9b:34:10:65:56:
36:56:d1:bd:02:86:2e:bf:6a:15:ad:29:0c:c9:d5:64:19:9b:
47:d3:6a:ad:bf:70:f5:c9:c7:43:60:a8:14:af:cb:ef:6d:b1:
f2:e9:33:48:d7:d5:25:c4:0c:5c:5a:69:93:4f:37:ca:2e:5a:
66:e0:5d:4b:67:70:11:5b:6f:84:2c:3c:b8:28:31:7d:1c:06:
f5:ab:99:9f:3a:24:af:64:c6:6c:ef:50:81:0d:5b:c4:9a:b2:
d4:cc:78:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:44:16 2024 by rpki-client on console-ams.rpki-client.org