Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Ho4RsPdmq-d5M8eMON9sQR773X4.roa
File: Ho4RsPdmq-d5M8eMON9sQR773X4.roa (raw, json)
Hash identifier: W1DnIo59YpKainHdHycNWVLli+AuD9xIu789tN7sh4Y=
Subject key identifier: 1E:8E:11:B0:F7:66:AB:E7:79:33:C7:8C:38:DF:6C:41:1E:FB:DD:7E
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 018CC348ECEC0235ADA7B31B5B733AED6623
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Ho4RsPdmq-d5M8eMON9sQR773X4.roa
Signing time: Mon 01 Jan 2024 04:29:45 +0000
ROA not before: Mon 01 Jan 2024 04:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44709
IP address blocks: 62.219.83.0/24 maxlen: 24
62.219.197.0/24 maxlen: 24
62.219.106.0/24 maxlen: 24
62.219.10.0/24 maxlen: 24
62.219.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ec:ec:02:35:ad:a7:b3:1b:5b:73:3a:ed:66:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 1 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e8e11b0f766abe77933c78c38df6c411efbdd7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fa:8a:08:88:46:f8:4a:13:ea:c3:44:84:4e:
44:3c:a8:75:9d:cc:25:67:76:20:69:f3:db:87:61:
fb:a2:cd:55:66:eb:fa:75:e0:86:3f:72:e4:4b:fc:
be:6e:1f:77:f1:4e:0e:b9:9f:a7:52:85:89:62:9a:
51:50:44:2b:ea:d4:23:27:fc:23:94:d0:e4:43:3b:
40:91:4e:f2:f5:62:ce:c3:f2:a3:10:66:5e:da:b4:
21:ba:ee:5e:75:44:4a:14:75:7c:bd:97:1f:59:9f:
c2:2b:b8:16:ee:8e:6a:60:e2:d8:fd:07:de:98:a2:
9e:2c:5f:f8:8c:99:91:fd:9e:6a:08:ff:a8:76:10:
ae:ab:39:d6:27:e5:c2:8a:46:79:ce:54:ee:d9:35:
c7:ff:1f:c1:39:a6:43:00:db:cb:81:f8:5f:41:79:
de:1c:bf:01:f6:20:74:32:b6:30:7c:9c:2a:82:79:
af:53:d2:5d:79:d6:d1:de:56:40:62:1c:f1:93:24:
bc:a0:6d:68:e1:97:e4:6f:2a:16:7d:f2:d0:f7:86:
b8:68:6f:48:16:c7:5c:20:a1:07:c8:84:1e:a9:3f:
8a:aa:4c:b6:8c:4b:bc:84:f7:03:cc:3d:16:34:94:
a3:d0:7d:0a:cf:35:1a:c4:a5:b3:58:b1:a4:02:42:
77:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8E:11:B0:F7:66:AB:E7:79:33:C7:8C:38:DF:6C:41:1E:FB:DD:7E
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Ho4RsPdmq-d5M8eMON9sQR773X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.219.10.0/24
62.219.14.0/24
62.219.83.0/24
62.219.106.0/24
62.219.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:38:21:29:06:a8:fb:f3:fe:9a:9e:7a:17:f9:46:6f:ca:f8:
d7:10:2b:24:d6:09:7f:de:d2:55:8f:4c:bc:df:73:70:7c:e7:
ac:5c:7c:f0:7c:2d:92:2f:7c:c3:8b:fe:b0:7d:86:1f:55:8c:
9d:48:ab:44:1f:ee:78:14:68:f0:b8:71:5a:11:ea:5c:02:8b:
25:74:f1:9c:55:c1:ba:9c:05:d5:7d:5e:eb:67:71:55:98:6e:
3f:bf:2a:23:42:e3:1d:d7:06:af:38:ea:21:01:27:e9:76:78:
b3:26:21:48:13:7a:10:a1:c7:e2:05:d2:a9:ee:19:e4:c3:3f:
88:15:6f:6a:eb:8a:95:c3:0c:2e:e5:08:93:2c:6f:01:66:5a:
c0:cf:56:ef:9d:b6:4d:40:1f:7b:98:d9:a8:1f:37:9f:16:82:
60:59:83:4b:6e:1f:81:cb:63:8d:6e:cb:16:0a:4f:84:ef:ce:
8e:70:ac:d4:38:5b:7d:a2:36:1b:9a:d9:e6:72:fa:b7:62:3c:
bc:d8:51:1e:d6:ac:f8:0a:cb:81:83:d9:f2:08:43:53:9e:d6:
36:56:55:6b:be:f6:ce:d7:76:78:ac:24:7e:7d:06:30:b2:e2:
95:17:97:8a:0d:f4:21:1c:80:75:7c:2f:63:7a:fb:76:17:0e:
68:d3:75:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:14:41 2024 by rpki-client on console-ams.rpki-client.org