Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa
File: Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa (raw, json)
Hash identifier: kttTOfI21OI64EaV9XzSMwMCd5nSJf9tA6HzFuwhEJg=
Subject key identifier: 15:AF:BD:8D:4F:39:8C:99:B8:C6:24:32:40:58:6A:DF:CF:B0:2F:66
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018FE3990773522D92F83FFAB3BB5656E55D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa
Signing time: Tue 04 Jun 2024 14:13:27 +0000
ROA not before: Tue 04 Jun 2024 14:13:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 62.72.183.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 03:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:99:07:73:52:2d:92:f8:3f:fa:b3:bb:56:56:e5:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 4 14:13:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15afbd8d4f398c99b8c6243240586adfcfb02f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f3:46:6c:67:0f:74:ab:53:5e:af:20:e0:1d:
33:40:51:46:31:b3:5f:3d:25:36:96:a2:da:2a:10:
e1:18:66:ff:ad:9b:4c:57:45:ab:e7:55:66:bb:34:
d9:03:b6:20:e1:4b:c1:b1:f5:58:f4:05:3a:f6:c4:
22:87:bd:77:99:43:d7:6d:c1:32:84:98:72:72:14:
eb:2e:b7:1e:b5:a8:02:a1:ce:7c:cc:fb:37:28:6f:
55:08:92:e7:4b:76:cf:45:a0:70:08:60:9d:a4:76:
19:84:2c:37:9b:52:bd:4f:a1:11:a1:7f:78:56:35:
70:37:e8:5b:7b:55:59:76:bf:3e:bd:83:6f:2b:1f:
11:b2:73:cc:92:51:e8:3f:f3:e4:81:48:4c:7e:71:
8e:77:0d:0c:f2:86:e9:6b:b8:b8:97:b8:da:46:ab:
4c:a2:ba:0d:32:79:62:92:e6:da:05:f3:97:5b:9e:
8e:ba:b1:7f:eb:d2:f3:8c:b2:53:73:2e:36:e9:a7:
ac:ac:87:58:98:37:ff:9a:41:92:fe:25:67:56:60:
dd:f9:36:6a:49:e6:3f:e7:a0:48:0d:16:dc:2f:f3:
65:d8:20:1a:cf:ea:45:18:10:ef:99:61:c9:c5:4c:
2a:cd:e8:a8:b1:98:05:16:6a:5a:29:92:78:1f:8a:
7c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AF:BD:8D:4F:39:8C:99:B8:C6:24:32:40:58:6A:DF:CF:B0:2F:66
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.183.0/24
62.72.188.0/24
Signature Algorithm: sha256WithRSAEncryption
36:2d:78:56:0c:2e:44:7b:52:35:14:7b:b3:ea:88:ed:62:e6:
56:98:88:52:06:65:15:2c:28:8b:6d:f8:f0:2c:69:6c:1d:40:
c6:ff:94:51:f3:6c:7e:dc:56:e5:45:e7:bc:4f:8e:7d:ea:d0:
0a:94:f6:7c:a4:c9:dc:79:11:52:62:d9:be:c7:8b:c5:3b:43:
a8:7f:1c:98:e5:ca:aa:e7:8c:6e:94:bf:50:ca:b8:08:54:2f:
ea:59:8f:eb:33:88:88:57:56:47:37:e7:86:0e:e5:ac:8b:35:
92:94:0e:a4:50:40:86:f9:ad:80:58:de:6f:63:1e:bf:d8:5b:
7a:b6:df:ee:69:89:d7:b5:d6:aa:a8:ce:5f:7f:40:0f:c9:de:
ca:5b:f4:54:11:41:0e:c8:7f:34:1c:49:39:66:45:5c:dd:30:
a8:94:0c:d2:6e:a9:f8:2c:6e:b4:65:42:f4:ff:62:12:ad:57:
0f:1e:a2:44:3f:bc:02:71:1e:f1:fe:a5:fa:65:d7:a4:be:c3:
ec:73:59:73:ef:dd:69:ef:e9:ca:72:9f:43:65:1c:d0:85:a1:
99:bc:c8:a4:c4:a7:a1:2d:54:18:90:95:9e:05:b4:79:a1:8a:
eb:4d:ac:2a:32:92:ea:a4:af:99:29:1a:1f:e9:59:7f:63:e4:
02:79:63:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 10:21:41 2024 by rpki-client on console-fra.rpki-client.org