Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/bqv81Z6aYKh0zzA4GhRhylg7Jp4.roa
File: bqv81Z6aYKh0zzA4GhRhylg7Jp4.roa (raw, json)
Hash identifier: 4cg/Wxf8YzsPlcBwfLohrnwsFCUuEXlkNM4Gzwt2Rck=
Subject key identifier: 6E:AB:FC:D5:9E:9A:60:A8:74:CF:30:38:1A:14:61:CA:58:3B:26:9E
Certificate issuer: /CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Certificate serial: 01931FF59B6D1AA05E65D214E19EF6DAC2D7
Authority key identifier: 49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/bqv81Z6aYKh0zzA4GhRhylg7Jp4.roa
Signing time: Tue 12 Nov 2024 10:40:10 +0000
ROA not before: Tue 12 Nov 2024 10:40:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31693
IP address blocks: 62.244.76.0/24 maxlen: 24
62.244.77.0/24 maxlen: 24
62.244.82.0/23 maxlen: 23
62.244.100.0/22 maxlen: 22
62.244.104.0/22 maxlen: 22
62.244.120.0/22 maxlen: 22
164.138.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/STotSDdjMKWC-vPjAy73sLzKM-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/STotSDdjMKWC-vPjAy73sLzKM-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1f:f5:9b:6d:1a:a0:5e:65:d2:14:e1:9e:f6:da:c2:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Validity
Not Before: Nov 12 10:40:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6eabfcd59e9a60a874cf30381a1461ca583b269e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b6:6e:f4:b9:c8:3e:f2:b7:51:74:03:77:4c:
f5:c8:be:d0:ef:28:57:ae:98:06:3d:86:e0:9f:4a:
3b:86:12:e5:88:10:3b:04:24:ab:92:ca:27:f7:5c:
64:b6:8e:6d:ee:e2:28:12:12:a6:3d:17:8a:a6:4a:
bb:d9:b8:d3:6a:da:a5:69:b6:63:5f:55:9b:09:6f:
4c:9a:c9:d8:0e:89:92:7e:01:4e:50:23:b5:60:77:
63:df:a8:4a:52:2c:62:2c:fd:d7:60:97:3e:6c:ba:
ce:64:0f:84:5d:b2:2b:ec:f8:69:c5:d4:f5:79:a4:
cb:09:8d:a4:62:f9:f5:4f:7e:97:43:2d:4b:14:6a:
3c:60:c9:dc:de:0a:97:22:bb:80:55:8b:6f:0a:a7:
02:06:25:f7:47:dd:89:71:a5:4b:98:f0:8f:b0:c6:
47:82:1b:3c:32:a9:3f:f0:c3:31:dd:32:be:51:7c:
19:bf:fc:dc:39:4a:20:3d:1c:db:a2:ad:ef:d2:15:
78:38:35:e4:c0:01:b4:6c:f9:2a:6e:c5:dd:86:67:
7a:b6:39:cd:31:d8:3e:33:b3:aa:37:d4:e9:11:ec:
f0:bb:bf:07:1c:75:43:7b:1a:01:82:19:c6:cd:bd:
b6:94:01:2b:71:08:65:0e:39:df:b0:9f:d8:4d:26:
5d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AB:FC:D5:9E:9A:60:A8:74:CF:30:38:1A:14:61:CA:58:3B:26:9E
X509v3 Authority Key Identifier:
keyid:49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/bqv81Z6aYKh0zzA4GhRhylg7Jp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/STotSDdjMKWC-vPjAy73sLzKM-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.76.0/23
62.244.82.0/23
62.244.100.0-62.244.107.255
62.244.120.0/22
164.138.56.0/21
Signature Algorithm: sha256WithRSAEncryption
19:17:b5:ff:64:00:cf:0c:fd:e5:9f:95:80:00:76:fe:27:1d:
7b:56:c8:0f:cc:97:fe:74:9e:98:43:eb:ff:81:8b:6d:87:f4:
72:01:a9:b7:d0:2d:1c:77:ab:a4:e1:ad:67:ef:fc:fd:5f:4c:
be:bb:46:67:d3:3e:a6:87:19:ac:a9:4b:6a:c9:04:b2:b4:66:
51:6d:54:63:b1:b6:63:43:12:38:f8:06:72:dd:05:fc:87:01:
26:e7:42:3c:e1:38:55:dc:53:2f:e3:2c:d9:ac:cf:a8:5c:31:
26:07:77:5c:d9:9d:8a:1e:60:97:d1:a5:b0:24:b0:13:40:58:
a3:00:48:c1:aa:05:7d:d1:ff:8a:da:15:b6:8d:cb:2f:e6:26:
dd:c3:be:83:86:fe:23:75:3a:58:5b:25:02:99:08:74:67:af:
4f:ed:33:44:76:91:91:a9:00:5b:55:c0:ac:09:f9:7a:d4:1d:
d2:6b:73:50:56:79:62:d3:1d:0b:12:fe:f9:75:81:e0:d7:d8:
81:22:2f:77:ea:73:57:7f:15:df:42:45:e4:b6:72:51:40:0f:
9a:9c:35:00:87:ce:f6:9e:e5:f2:35:23:b0:17:8c:34:3d:72:
60:79:4f:48:01:5e:04:0e:74:ba:ab:45:55:b2:5c:ed:8b:f2:
48:bd:fa:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:31:44 2024 by rpki-client on console-ams.rpki-client.org