Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cqv_v1WTrPfemxZ-r5U9X9g1-nc.roa
File: cqv_v1WTrPfemxZ-r5U9X9g1-nc.roa (raw, json)
Hash identifier: GQMGzOrsf7MH06hle581RpLg7EL8sXyQSt6cVKF5GOg=
Subject key identifier: 72:AB:FF:BF:55:93:AC:F7:DE:9B:16:7E:AF:95:3D:5F:D8:35:FA:77
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018CC79449D7EDD111651B5E6F4023DF47F0
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cqv_v1WTrPfemxZ-r5U9X9g1-nc.roa
Signing time: Tue 02 Jan 2024 00:30:33 +0000
ROA not before: Tue 02 Jan 2024 00:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61429
IP address blocks: 62.41.77.248/29 maxlen: 29
62.41.160.144/30 maxlen: 30
92.71.10.0/24 maxlen: 24
92.71.11.0/24 maxlen: 24
92.71.16.0/24 maxlen: 24
92.71.15.0/24 maxlen: 24
92.71.19.0/24 maxlen: 24
92.71.20.0/24 maxlen: 24
92.71.22.0/24 maxlen: 24
62.41.160.192/26 maxlen: 26
62.41.160.148/30 maxlen: 30
62.41.20.0/24 maxlen: 24
62.41.21.0/24 maxlen: 24
62.41.160.128/28 maxlen: 28
62.41.60.0/24 maxlen: 24
62.41.59.0/24 maxlen: 24
62.41.2.0/24 maxlen: 24
62.41.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:49:d7:ed:d1:11:65:1b:5e:6f:40:23:df:47:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 00:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72abffbf5593acf7de9b167eaf953d5fd835fa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c5:f8:7a:80:ce:5a:b2:28:63:c0:35:86:25:
f2:85:0c:2d:b5:1d:b5:11:68:4a:d0:38:e1:f7:42:
17:6a:a7:63:0b:fc:d1:1b:7b:b3:c1:ce:3d:59:f0:
9b:b9:b5:8b:d2:ae:07:5d:95:6e:55:30:02:79:3b:
60:9b:5b:24:2d:8c:32:e2:d1:c2:e1:83:58:95:c2:
77:2d:50:96:c3:5d:37:d5:a4:99:01:19:52:60:bb:
bf:4d:1e:46:f7:9e:66:c7:2d:01:61:0a:58:6e:22:
ae:f9:96:50:4f:f4:bf:d7:b6:3c:9f:b1:5d:a0:33:
84:95:c4:d5:af:9e:eb:17:fb:8f:ed:ac:cc:1e:32:
41:59:8d:0c:69:19:7d:07:44:3d:84:d2:c4:bd:dd:
6d:56:29:46:56:46:7c:34:bc:09:fe:7c:16:5e:ef:
43:3e:67:9e:44:25:81:f5:73:eb:c2:6a:66:b7:fd:
ac:56:a4:dc:dd:81:67:7c:77:0a:81:ff:8b:dc:82:
50:8d:b7:aa:9b:8c:a4:b0:f1:e9:72:56:71:c6:b2:
4a:b6:8e:e5:68:f9:14:3c:ad:42:3f:8b:76:0d:0a:
4e:a1:43:c4:bf:ee:69:38:b9:4a:59:d0:21:fa:e2:
a4:72:b0:84:4b:dc:56:c7:cd:4d:7f:67:ad:b1:36:
31:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:AB:FF:BF:55:93:AC:F7:DE:9B:16:7E:AF:95:3D:5F:D8:35:FA:77
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cqv_v1WTrPfemxZ-r5U9X9g1-nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.2.0/24
62.41.10.0/24
62.41.20.0/23
62.41.59.0-62.41.60.255
62.41.77.248/29
62.41.160.128-62.41.160.151
62.41.160.192/26
92.71.10.0/23
92.71.15.0-92.71.16.255
92.71.19.0-92.71.20.255
92.71.22.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:fa:0d:cf:0f:2e:49:3d:65:dc:5e:65:f5:47:13:ac:0c:3b:
34:66:3b:8d:4d:0a:5c:f3:a6:c9:9b:9b:02:b7:6b:41:a1:54:
25:1b:3a:3c:f6:74:81:81:fe:89:3d:c7:63:45:3c:4e:34:4a:
28:f7:95:ce:27:92:e6:3c:15:b5:cd:86:b0:1b:58:a5:c2:20:
8a:c5:0c:27:98:79:74:72:d9:ab:25:9b:69:6e:06:1f:0c:4f:
46:07:e7:1c:d2:40:ef:00:a2:f8:a6:37:50:23:46:32:7c:c0:
dc:0f:03:47:1e:09:7b:0e:8f:16:08:b4:a8:f8:7a:21:a7:00:
54:99:cf:c4:0f:54:85:7d:6b:07:fe:8e:bf:fc:d1:8b:9e:46:
fa:6f:13:7c:95:9e:4c:9b:43:02:eb:af:9c:05:9c:94:a3:51:
ea:c6:eb:60:4f:b9:02:2c:f8:6b:cb:49:72:ae:dc:6f:62:21:
b7:7d:54:ac:37:96:04:f7:f8:a1:f1:a0:0f:d3:bd:5e:b8:4f:
27:b1:31:2b:1e:a4:94:5d:86:3b:96:05:f9:b1:3a:90:1a:a6:
57:49:c3:f9:e0:69:c7:ca:a0:96:42:4f:e0:26:98:8f:9c:3d:
a8:b5:60:87:6e:87:05:0d:06:dd:f9:a5:1d:af:85:32:6c:3e:
21:25:c2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:22:13 2024 by rpki-client on console-ams.rpki-client.org