Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/q4M8BFEU2ESaqieitKTe5U2NXfg.roa
File: q4M8BFEU2ESaqieitKTe5U2NXfg.roa (raw, json)
Hash identifier: 0RJ15ftjBHLZlXK0hPr5M8paUWwoskncS9qcTz8dlIk=
Subject key identifier: AB:83:3C:04:51:14:D8:44:9A:AA:27:A2:B4:A4:DE:E5:4D:8D:5D:F8
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019068AD7DB036C8A6F567827BDECCFCA48F
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/q4M8BFEU2ESaqieitKTe5U2NXfg.roa
Signing time: Sun 30 Jun 2024 10:25:18 +0000
ROA not before: Sun 30 Jun 2024 10:25:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35372
IP address blocks: 62.60.138.0/24 maxlen: 24
62.60.144.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.160.0/22 maxlen: 24
62.60.218.0/23 maxlen: 24
213.176.0.0/24 maxlen: 24
213.176.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:68:ad:7d:b0:36:c8:a6:f5:67:82:7b:de:cc:fc:a4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 30 10:25:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab833c045114d8449aaa27a2b4a4dee54d8d5df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ce:31:d8:b9:9d:af:aa:cd:9c:ef:7e:77:29:
e5:1a:ce:29:2a:dd:3e:cd:8a:17:4e:28:75:3c:58:
bc:50:94:64:e5:c7:11:68:13:23:02:5d:e0:df:5c:
d6:53:22:51:7a:2f:d1:51:01:7d:b0:68:50:66:b8:
92:a5:75:49:53:d6:a8:1b:8a:7c:ee:92:43:7e:89:
cb:0e:21:fd:f2:11:79:81:1c:41:b1:83:fc:b2:e0:
cd:67:9d:9a:df:02:e5:c3:e3:a1:79:80:51:e7:6e:
1e:11:e4:ad:bf:b2:b9:0f:6a:3a:22:c9:0a:07:98:
36:14:aa:b5:c4:b7:3f:a4:d8:be:60:31:f2:64:78:
6b:39:4d:b8:c1:53:af:66:74:62:a8:27:e6:76:58:
e1:0f:30:5a:d0:3a:cb:20:c2:75:d6:82:84:94:2a:
7b:13:b8:a1:42:9b:f8:e4:cf:41:5c:64:ea:7a:8d:
71:6c:50:b2:42:16:af:47:22:cb:90:54:13:6c:77:
70:03:2a:94:d1:b5:83:26:4b:b1:69:9e:cc:f5:89:
ff:9e:f5:13:02:0a:16:62:3c:8e:bf:c0:05:d4:01:
68:ba:7d:de:29:ff:4e:b4:df:25:01:a2:5a:b7:b1:
86:f0:0e:37:8d:0c:8a:6a:e2:60:a3:a1:6f:4e:62:
a0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:83:3C:04:51:14:D8:44:9A:AA:27:A2:B4:A4:DE:E5:4D:8D:5D:F8
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/q4M8BFEU2ESaqieitKTe5U2NXfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.138.0/24
62.60.144.0/24
62.60.147.0/24
62.60.160.0/22
62.60.218.0/23
213.176.0.0/24
213.176.126.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:f4:20:ab:60:86:2e:8e:c8:ff:2e:eb:0e:40:de:77:49:32:
9e:36:51:0e:8a:79:f2:a6:0a:77:af:36:e1:17:93:b3:af:02:
cd:9a:eb:86:52:7a:9b:56:d6:cd:b2:4d:c4:89:ca:29:70:ed:
53:c5:de:2e:b1:e3:78:a0:0c:22:16:81:40:72:ce:40:b0:66:
f7:26:09:76:b0:c6:56:22:8b:4c:e6:26:e5:b7:a5:a8:4e:09:
3e:3d:de:9c:f6:7a:e8:f3:18:1f:6f:30:ea:1a:a7:ff:31:fa:
00:91:20:0c:b4:4c:c2:7f:30:54:f6:41:94:24:c2:64:1c:b6:
9e:86:c7:95:d3:ba:89:18:7e:76:c8:57:b0:80:94:f9:76:8a:
f2:b3:4c:af:d5:2a:ba:36:68:7a:73:4f:90:21:ba:09:40:4b:
35:22:1e:b0:fe:90:47:d5:22:31:3f:df:84:99:fa:77:56:da:
a2:a2:3e:e2:57:0e:b4:26:0f:7e:78:98:77:7e:da:9d:fa:0d:
11:74:d2:65:3b:4d:d5:f5:16:df:09:60:05:18:b8:55:8b:23:
25:a9:52:56:a9:18:e1:1b:58:f6:00:74:5e:38:6f:68:80:0b:
36:d1:43:c2:47:e1:22:ba:ec:7d:4e:29:5a:91:9f:50:72:3c:
03:d1:59:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:53:30 2024 by rpki-client on console-ams.rpki-client.org