Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/SS8k-0ksmaTgy786ElB7oTyN0fw.roa
File: SS8k-0ksmaTgy786ElB7oTyN0fw.roa (raw, json)
Hash identifier: UiC/wwwbHCmzBQxeCmjq+W3d2w7zN+gpmdt+DOf5zKY=
Subject key identifier: 49:2F:24:FB:49:2C:99:A4:E0:CB:BF:3A:12:50:7B:A1:3C:8D:D1:FC
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 018CCA29F91C16EBB875106D960FA7A64D33
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/SS8k-0ksmaTgy786ElB7oTyN0fw.roa
Signing time: Tue 02 Jan 2024 12:33:17 +0000
ROA not before: Tue 02 Jan 2024 12:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52081
IP address blocks: 62.215.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:f9:1c:16:eb:b8:75:10:6d:96:0f:a7:a6:4d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 2 12:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=492f24fb492c99a4e0cbbf3a12507ba13c8dd1fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:57:f8:88:69:f8:bd:f2:34:45:17:6c:14:28:
2d:41:ec:ee:62:46:ec:cb:22:6f:b5:16:fc:2c:96:
eb:95:29:e4:60:d2:e4:4e:dc:0a:26:4f:de:e5:93:
a0:1a:72:f9:8c:61:46:ac:f9:09:5c:aa:e0:7e:d6:
d3:b1:96:56:14:1e:39:64:17:63:9b:ee:39:95:9e:
c1:89:89:75:7a:c8:c0:21:c8:8b:8e:15:0a:5f:d1:
95:47:80:7d:9f:0c:6e:26:7d:10:94:32:a1:73:72:
f9:50:0d:97:7b:fb:99:89:64:b0:27:d9:57:00:3a:
65:ae:df:0b:f0:13:e6:7a:42:92:73:43:1a:b1:52:
81:2c:bc:87:bf:41:36:22:b8:5b:55:b0:a5:4c:f2:
4e:65:45:d0:a8:75:84:f0:e0:e8:4a:f9:bf:9c:b7:
64:6a:f9:a6:85:64:58:36:06:96:da:50:7d:b3:5f:
b5:aa:c4:a9:2e:f4:9e:1c:0d:0f:3f:cf:f9:da:fd:
15:ab:5d:14:95:45:be:64:3e:3c:50:b6:4a:17:0f:
fd:9e:8f:e6:7f:d0:74:8b:03:35:ff:41:8b:5e:3b:
1d:12:24:74:27:d3:76:ed:31:90:3a:5a:91:f4:0e:
67:0f:05:77:ec:3c:2b:b0:f6:e6:54:19:71:ca:04:
5c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2F:24:FB:49:2C:99:A4:E0:CB:BF:3A:12:50:7B:A1:3C:8D:D1:FC
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/SS8k-0ksmaTgy786ElB7oTyN0fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.215.49.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:23:3d:d5:fa:11:ad:17:e9:6e:d4:fd:fb:5d:83:ce:69:59:
fc:88:50:f8:76:e7:e4:10:d3:3c:6f:aa:e4:14:ff:ff:37:a5:
63:8c:65:b9:ec:5f:fd:06:d4:ae:10:33:43:86:e6:98:0e:79:
59:d8:56:f1:56:af:fc:0c:6d:39:45:f5:53:1f:23:9c:f1:6d:
76:45:8a:da:f7:56:d6:f4:f9:29:38:37:90:cd:fd:d8:d1:2c:
d5:9a:59:fb:a9:e3:a4:48:8a:11:68:a9:f2:33:52:ce:cc:93:
7b:02:d2:4f:a3:51:a7:5b:4c:8c:be:05:d7:28:6b:4b:44:5a:
36:7c:43:a1:21:ce:8e:bf:8c:89:9d:42:2f:1b:a8:ab:8c:c5:
82:f1:89:1e:ef:75:45:12:85:07:c1:32:ef:a6:22:b8:ca:bb:
02:a0:66:97:5c:41:0d:81:a3:01:ae:0d:c8:8f:2c:3e:74:5c:
90:5b:34:d5:7d:3c:52:d4:31:0c:16:7c:aa:fd:84:0b:97:b9:
4b:cd:92:d7:31:d9:8d:60:0d:32:2e:3c:71:71:a9:5b:28:18:
be:03:92:d5:00:cd:69:b8:e7:41:71:73:93:61:55:2c:60:4f:
7a:27:52:4c:8f:f2:18:43:62:e7:b7:ee:0a:75:e4:4c:5e:04:
a1:fb:48:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKfkcFuu4dRBtlg+npk0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZmZhMDQyMTE0MzAxMzY4YjQwNjlhYmQ2OGExZWZiYWM0
N2ZkY2UwHhcNMjQwMTAyMTIzMzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTJmMjRmYjQ5MmM5OWE0ZTBjYmJmM2ExMjUwN2JhMTNjOGRkMWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslf4iGn4vfI0RRdsFCgtQezuYkbs
yyJvtRb8LJbrlSnkYNLkTtwKJk/e5ZOgGnL5jGFGrPkJXKrgftbTsZZWFB45ZBdj
m+45lZ7BiYl1esjAIciLjhUKX9GVR4B9nwxuJn0QlDKhc3L5UA2Xe/uZiWSwJ9lX
ADplrt8L8BPmekKSc0MasVKBLLyHv0E2IrhbVbClTPJOZUXQqHWE8ODoSvm/nLdk
avmmhWRYNgaW2lB9s1+1qsSpLvSeHA0PP8/52v0Vq10UlUW+ZD48ULZKFw/9no/m
f9B0iwM1/0GLXjsdEiR0J9N27TGQOlqR9A5nDwV37DwrsPbmVBlxygRc1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEkvJPtJLJmk4Mu/OhJQe6E8jdH8MB8GA1UdIwQY
MBaAFBX/oEIRQwE2i0Bpq9aKHvusR/3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmYtZ1FoRkRBVGFMUUdtcjFvb2UtNnhIX2M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8xNDliYzUtNTFhYS00ZTdiLThmMDMt
YjczYTM2ZDkzOWIyLzEvU1M4ay0wa3NtYVRneTc4NkVsQjdvVHlOMGZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8xNDliYzUtNTFhYS00ZTdiLThmMDMtYjczYTM2ZDkzOWIy
LzEvRmYtZ1FoRkRBVGFMUUdtcjFvb2UtNnhIX2M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPtcxMA0G
CSqGSIb3DQEBCwUAA4IBAQAOIz3V+hGtF+lu1P37XYPOaVn8iFD4dufkENM8b6rk
FP//N6VjjGW57F/9BtSuEDNDhuaYDnlZ2FbxVq/8DG05RfVTHyOc8W12RYra91bW
9PkpODeQzf3Y0SzVmln7qeOkSIoRaKnyM1LOzJN7AtJPo1GnW0yMvgXXKGtLRFo2
fEOhIc6Ov4yJnUIvG6irjMWC8Yke73VFEoUHwTLvpiK4yrsCoGaXXEENgaMBrg3I
jyw+dFyQWzTVfTxS1DEMFnyq/YQLl7lLzZLXMdmNYA0yLjxxcalbKBi+A5LVAM1p
uOdBcXOTYVUsYE96J1JMj/IYQ2Lnt+4KdeRMXgSh+0jC
-----END CERTIFICATE-----
Generated at Tue May 28 13:36:26 2024 by rpki-client on console-fra.rpki-client.org