Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Or6x9B6cn0T2lmJ64XE37xqCD5M.roa
File: Or6x9B6cn0T2lmJ64XE37xqCD5M.roa (raw, json)
Hash identifier: OJ7QNmmNQ8GwOFUzcI44NIrIzTuObzkUQZ/yk2fU1Wo=
Subject key identifier: 3A:BE:B1:F4:1E:9C:9F:44:F6:96:62:7A:E1:71:37:EF:1A:82:0F:93
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019227FE496E32AD9917EBEF629193A02A5C
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Or6x9B6cn0T2lmJ64XE37xqCD5M.roa
Signing time: Wed 25 Sep 2024 07:03:49 +0000
ROA not before: Wed 25 Sep 2024 07:03:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211056
IP address blocks: 62.60.184.0/23 maxlen: 24
62.60.193.0/24 maxlen: 24
62.60.194.0/23 maxlen: 24
62.60.195.0/24 maxlen: 24
213.176.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:27:fe:49:6e:32:ad:99:17:eb:ef:62:91:93:a0:2a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 25 07:03:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3abeb1f41e9c9f44f696627ae17137ef1a820f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bc:78:18:3a:79:1a:8f:9b:0f:0e:a8:66:29:
88:2f:97:9c:56:48:e1:5d:e9:6b:98:07:d1:96:7b:
98:d6:16:5b:7c:75:a2:3f:c8:61:9f:b9:d9:4b:49:
50:3a:ff:b8:85:14:ef:f2:a1:95:0a:ea:19:5e:3a:
75:00:26:f1:dd:92:dc:a4:e9:c8:e3:0d:f2:a6:c2:
7e:61:c7:d4:d6:07:f6:69:2a:de:17:d2:61:bd:b8:
05:98:68:7f:da:8b:2e:54:ef:0f:c0:d8:1d:0f:7d:
1d:90:bb:90:24:23:37:57:8b:27:f2:48:ad:d8:86:
05:26:3e:bd:19:37:04:63:eb:a8:b9:7c:f8:55:5a:
a0:89:e8:3e:f7:b6:54:2f:c9:5b:01:c0:90:09:ea:
c9:3d:4f:2d:21:cd:2f:a5:f6:42:bb:e1:25:23:70:
05:69:bb:23:6a:87:e9:d0:83:18:bf:c8:cc:c1:20:
78:67:56:4f:e1:88:c7:22:70:a7:69:53:60:79:ff:
96:72:ec:db:fb:ce:c4:4e:19:0e:77:9b:50:d0:23:
70:0f:32:77:63:48:55:9c:a3:a7:24:e8:05:ff:3a:
2a:5d:2f:fc:ae:3a:04:55:52:e0:26:b0:52:81:2e:
23:a7:51:28:5a:bb:8b:e5:0f:25:56:fb:1c:a4:9c:
26:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BE:B1:F4:1E:9C:9F:44:F6:96:62:7A:E1:71:37:EF:1A:82:0F:93
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Or6x9B6cn0T2lmJ64XE37xqCD5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.184.0/23
62.60.193.0-62.60.195.255
213.176.121.0/24
Signature Algorithm: sha256WithRSAEncryption
52:75:34:08:69:c6:c8:0b:3a:bd:29:41:24:6f:56:8f:21:5b:
9a:f3:f7:19:c8:f5:97:86:0b:d0:4c:d5:81:70:83:f0:9b:73:
05:7b:4f:a3:77:16:2c:10:8a:1b:ca:e1:f1:67:2a:75:df:3c:
2e:62:82:82:44:40:9c:dc:c2:0a:de:4e:76:09:9c:15:ab:39:
e4:e2:ff:ee:05:85:1a:be:06:e3:d6:86:2e:6a:af:86:9e:f2:
d7:20:f4:a3:ad:2a:49:66:46:c7:75:4e:7a:77:4c:48:4c:a2:
03:0c:71:63:25:4d:78:a9:31:9a:97:95:bd:db:05:5d:95:c6:
e6:74:8d:1a:b3:71:69:35:c4:8b:04:93:67:c0:54:bb:3a:3a:
df:06:10:c4:e3:ca:9f:06:7a:30:6d:2d:7e:04:5a:d7:17:da:
3a:71:ac:b7:3c:7f:4b:2a:5c:68:6b:db:25:55:32:ff:2a:a7:
7d:57:a9:23:84:42:04:d1:a0:9d:f8:92:97:db:6c:ae:1f:07:
0d:ac:2a:a2:36:87:6c:f9:c0:77:d0:07:22:d0:71:d6:3c:12:
77:47:17:be:71:28:79:02:dc:f0:71:3b:63:a6:ce:6e:c5:c5:
a3:6e:de:2e:ec:49:c0:df:0e:7e:46:ea:5d:90:79:f5:b2:85:
69:50:c4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:43:11 2024 by rpki-client on console-fra.rpki-client.org