Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/I2dHexZqtOsk-lXQzOsWMgWEkP8.roa
File: I2dHexZqtOsk-lXQzOsWMgWEkP8.roa (raw, json)
Hash identifier: zULkZsQSeQjPxLdW02EfJiAv56lUHYdond8/rBwO/8c=
Subject key identifier: 23:67:47:7B:16:6A:B4:EB:24:FA:55:D0:CC:EB:16:32:05:84:90:FF
Certificate issuer: /CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Certificate serial: 018CC64A5DADFF7675FF639A41714C8F0C23
Authority key identifier: 1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/I2dHexZqtOsk-lXQzOsWMgWEkP8.roa
Signing time: Mon 01 Jan 2024 18:30:11 +0000
ROA not before: Mon 01 Jan 2024 18:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42334
IP address blocks: 62.84.64.0/24 maxlen: 24
62.84.65.0/24 maxlen: 24
62.84.69.0/24 maxlen: 24
62.84.68.0/24 maxlen: 24
62.84.67.0/24 maxlen: 24
62.84.66.0/24 maxlen: 24
62.84.71.0/24 maxlen: 24
62.84.70.0/24 maxlen: 24
62.84.78.0/24 maxlen: 24
62.84.77.0/24 maxlen: 24
62.84.72.0/24 maxlen: 24
62.84.76.0/24 maxlen: 24
62.84.75.0/24 maxlen: 24
62.84.74.0/24 maxlen: 24
62.84.73.0/24 maxlen: 24
62.84.79.0/24 maxlen: 24
62.84.83.0/24 maxlen: 24
62.84.82.0/24 maxlen: 24
62.84.80.0/24 maxlen: 24
62.84.85.0/24 maxlen: 24
62.84.84.0/24 maxlen: 24
62.84.91.0/24 maxlen: 24
62.84.86.0/24 maxlen: 24
62.84.90.0/24 maxlen: 24
62.84.89.0/24 maxlen: 24
62.84.87.0/24 maxlen: 24
62.84.93.0/24 maxlen: 24
62.84.92.0/24 maxlen: 24
62.84.95.0/24 maxlen: 24
62.84.94.0/24 maxlen: 24
185.114.253.0/24 maxlen: 24
185.114.252.0/24 maxlen: 24
185.114.255.0/24 maxlen: 24
185.114.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:5d:ad:ff:76:75:ff:63:9a:41:71:4c:8f:0c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Validity
Not Before: Jan 1 18:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2367477b166ab4eb24fa55d0cceb1632058490ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0d:79:56:86:96:17:25:68:10:c9:ae:95:84:
b6:95:7a:40:f4:20:a4:c3:b7:c2:e9:6f:39:07:77:
5b:dc:79:e2:77:25:12:57:c0:7d:11:e9:ad:3e:2c:
26:b1:b0:98:9a:22:69:36:7f:72:c5:a5:37:b2:43:
36:41:bd:f8:57:28:9f:09:07:eb:4c:cb:8b:4d:26:
93:68:bb:e4:ab:c7:3b:8f:6d:af:07:7d:cd:93:1f:
4d:d6:81:9b:c4:e7:de:2d:98:44:30:d1:c4:78:9d:
1a:17:1f:0c:ec:94:e8:39:a5:f4:e2:a7:a8:fe:8b:
c4:14:61:42:a1:f9:8f:c2:62:b7:97:1b:8a:cc:54:
dc:8a:59:17:83:23:59:e4:a7:09:ca:55:69:53:3d:
16:75:00:86:bd:f5:be:96:0a:55:45:00:6f:d8:19:
ca:b0:57:9e:e8:e7:22:f7:66:99:4f:05:35:d0:6f:
5f:26:79:1f:17:8d:09:a9:c2:42:44:d7:d4:73:00:
da:cf:7e:dc:fb:7f:5b:7a:10:e6:e3:df:8f:e5:e0:
94:40:01:02:96:54:1f:a1:a1:4e:b9:92:9e:be:29:
6b:19:97:27:68:10:ee:9d:4d:a7:4c:95:27:38:40:
38:c2:83:b3:25:76:fb:5c:61:15:ce:46:60:9e:32:
db:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:67:47:7B:16:6A:B4:EB:24:FA:55:D0:CC:EB:16:32:05:84:90:FF
X509v3 Authority Key Identifier:
keyid:1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/I2dHexZqtOsk-lXQzOsWMgWEkP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.64.0-62.84.80.255
62.84.82.0-62.84.87.255
62.84.89.0-62.84.95.255
185.114.252.0/22
Signature Algorithm: sha256WithRSAEncryption
25:6b:b4:e0:45:09:11:2b:b3:dc:9f:63:f9:25:aa:db:40:f0:
57:4c:8b:1e:4d:9c:d8:41:51:1a:51:c1:c3:95:3c:26:c4:51:
13:41:49:01:be:ef:df:5b:31:48:27:6f:2d:5d:c8:86:fa:88:
a9:6f:a3:cb:3d:fd:76:10:64:9a:9f:dd:52:25:ee:99:2a:ef:
09:2f:ed:55:41:a5:fc:2e:87:7f:5e:65:3f:38:c9:a3:ed:75:
27:2f:1f:8f:ce:a8:ab:84:6a:8e:48:8b:54:e4:37:bd:0b:45:
e3:59:bc:00:d6:6f:0b:ef:a5:b5:d9:52:45:63:a6:35:fc:f7:
83:e4:be:7e:b2:2a:1e:c0:82:6d:6a:cc:aa:58:c0:98:2d:49:
9c:10:ec:9c:1d:de:56:63:e5:96:4a:75:2d:33:5b:ff:83:37:
0f:df:0c:15:06:3f:47:2b:5e:cc:ba:1a:7c:a1:69:4b:a0:68:
b9:cf:2c:d5:5f:2a:9c:39:f6:45:f7:04:a6:8d:14:5a:dd:04:
62:ed:4d:93:eb:0b:d8:6f:99:cc:b1:c9:a5:80:3e:ef:b6:d0:
80:13:fb:49:98:42:19:09:f0:12:20:c6:c2:bf:47:11:c8:f1:
db:10:34:60:9a:45:31:ae:90:93:48:fe:a6:85:99:d6:57:a4:
4c:ca:3d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 11:51:50 2024 by rpki-client on console-ams.rpki-client.org