Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uVyQiEVpnq4obNBi6hp8wqwhbCg.roa
File: uVyQiEVpnq4obNBi6hp8wqwhbCg.roa (raw, json)
Hash identifier: iIEbUaLtBBcqQ3n8Xt+DR0/qANeUZj74XVDF7uHE1gQ=
Subject key identifier: B9:5C:90:88:45:69:9E:AE:28:6C:D0:62:EA:1A:7C:C2:AC:21:6C:28
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019006F5DC30100C9C0B5957391F02C957DB
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uVyQiEVpnq4obNBi6hp8wqwhbCg.roa
Signing time: Tue 11 Jun 2024 11:01:34 +0000
ROA not before: Tue 11 Jun 2024 11:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44559
IP address blocks: 62.60.152.0/22 maxlen: 24
62.60.156.0/22 maxlen: 24
62.60.184.0/22 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.216.0/22 maxlen: 24
62.60.220.0/22 maxlen: 24
213.176.64.0/22 maxlen: 24
213.176.72.0/22 maxlen: 24
213.176.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:f5:dc:30:10:0c:9c:0b:59:57:39:1f:02:c9:57:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 11 11:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b95c908845699eae286cd062ea1a7cc2ac216c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cf:43:df:9b:e9:1b:46:42:22:47:a2:0a:16:
d2:fb:3b:6c:8f:32:a1:f9:18:7f:c9:de:0d:59:09:
a1:03:f7:22:dc:87:64:eb:bc:d1:ca:b4:f4:5f:3d:
cb:37:c2:59:f5:ff:51:34:99:46:f2:bf:b3:45:1d:
d5:13:e6:8d:5f:7f:86:15:fb:a2:dc:1d:f9:6a:18:
15:0f:d5:90:fb:bb:bb:9d:97:ff:f4:a6:db:f8:6a:
be:19:85:96:3a:e0:2c:cc:44:e9:2d:c9:ff:d4:87:
2b:59:cd:1a:0f:cd:40:e2:38:31:a9:da:c0:06:ab:
9a:5d:ff:18:2a:f0:33:42:92:c6:ab:4e:b4:c3:3c:
d6:38:80:d9:73:7a:a2:13:70:40:6e:6c:8f:78:ea:
4b:2c:3d:83:a5:08:3c:c4:a9:e0:23:63:b8:5c:f7:
42:e1:3d:a0:a8:b8:72:1c:21:3f:c0:11:d1:b1:f4:
9c:4f:1c:ff:cf:22:ac:a4:66:44:82:92:66:b0:89:
f7:8f:83:45:63:d2:19:ab:4e:48:0c:c2:c3:60:d5:
7e:40:59:51:26:0d:1a:bf:e8:05:53:77:9f:46:2e:
62:26:9f:4a:da:91:5a:7a:5d:5e:1c:b1:3a:bd:3f:
5a:18:6a:67:3d:99:ab:b2:19:56:53:49:6a:13:96:
72:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5C:90:88:45:69:9E:AE:28:6C:D0:62:EA:1A:7C:C2:AC:21:6C:28
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uVyQiEVpnq4obNBi6hp8wqwhbCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.152.0/21
62.60.184.0/22
62.60.192.0/22
62.60.216.0/21
213.176.64.0/22
213.176.72.0/22
213.176.92.0/22
Signature Algorithm: sha256WithRSAEncryption
93:e2:73:f1:35:6b:63:a5:5e:9b:b8:9b:71:11:13:ab:f7:34:
1b:0d:0d:00:9d:05:58:f8:78:83:68:67:4a:a8:3f:6c:6e:5f:
82:c2:20:b6:d3:9d:23:d0:fb:13:5e:ed:ac:11:e0:c6:e0:eb:
aa:19:24:c5:7b:8d:3c:d3:ea:03:ad:df:ec:57:c8:3b:a5:63:
90:d7:67:0c:f7:25:2b:33:10:9a:ec:b0:df:b1:fb:7d:c3:33:
6c:0b:72:3b:f2:05:a9:69:36:cc:3d:c2:a2:15:27:56:ff:4c:
63:84:8b:24:c9:00:d3:bb:b5:07:fe:7d:cd:f4:8f:ce:87:15:
13:b5:1a:a6:8c:76:05:90:c9:04:27:c9:19:e8:e6:8a:67:90:
cc:21:c9:ee:e1:6c:61:b9:8a:3a:bc:eb:a6:a3:0f:d9:47:e2:
74:ad:43:75:4b:ec:f6:7d:a7:a8:7f:d6:cb:8c:8f:b3:4f:20:
af:75:07:67:a6:93:13:86:33:12:ee:2b:df:3b:90:ac:aa:5c:
f1:b5:ad:7e:b3:0d:66:79:73:f1:b8:e1:c3:11:8f:f8:28:62:
fd:84:e9:26:47:f9:45:dc:eb:8d:75:34:33:75:74:97:82:08:
f7:b7:e4:e7:ff:72:1a:69:ac:e8:3e:ac:ec:fb:fa:cb:67:14:
22:7b:06:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 06:39:56 2024 by rpki-client on console-ams.rpki-client.org