Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/QcD_T-Ad--Ab7TjOQRcCf-qC5Ao.roa
File: QcD_T-Ad--Ab7TjOQRcCf-qC5Ao.roa (raw, json)
Hash identifier: jCo+E/HBRVfurkydftatiL1m8P27fTEj6VniFHl2EL4=
Subject key identifier: 41:C0:FF:4F:E0:1D:FB:E0:1B:ED:38:CE:41:17:02:7F:EA:82:E4:0A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CC6B7A98E8BB31B51E8EBC23C8BE1B10B
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/QcD_T-Ad--Ab7TjOQRcCf-qC5Ao.roa
Signing time: Mon 01 Jan 2024 20:29:34 +0000
ROA not before: Mon 01 Jan 2024 20:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207994
IP address blocks: 62.72.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:a9:8e:8b:b3:1b:51:e8:eb:c2:3c:8b:e1:b1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 20:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41c0ff4fe01dfbe01bed38ce4117027fea82e40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:dc:de:e5:96:57:ce:e7:76:4c:97:c3:27:0c:
bd:11:07:be:b2:e7:a9:3a:e8:82:dc:61:d6:1d:82:
2d:bf:43:a9:a4:48:50:c2:19:d2:d2:10:2d:fc:d3:
46:90:c8:5c:42:a9:1e:a6:e4:35:7f:6f:f8:7e:14:
0a:cc:aa:82:0e:ef:c2:53:91:a0:88:36:8f:14:34:
c6:4f:5f:17:2e:28:28:92:40:ac:60:e8:b2:04:44:
cd:7e:fb:28:9f:68:83:8d:61:e1:4b:c7:f8:13:4a:
2b:f4:1b:e4:fa:10:53:e9:47:78:6b:cd:2e:82:41:
12:5b:55:18:88:c3:42:0a:65:c7:15:7d:29:2d:35:
fd:40:c8:51:cc:08:b1:73:34:b0:b5:e9:f3:2b:b8:
98:26:7c:41:c1:19:e1:ec:ad:0c:82:69:2e:d6:16:
48:9f:0b:87:08:30:c7:ab:c3:4f:cb:f7:f3:6b:81:
ea:52:7f:ba:98:11:a7:5d:a2:f2:6e:c7:1f:5c:82:
78:ac:86:04:31:59:c5:72:08:f6:ab:5f:03:f4:21:
fd:85:03:2e:0c:96:98:3c:05:d4:1f:97:c4:11:d7:
55:a0:b6:a7:48:7f:62:63:31:8c:b1:d2:48:97:b0:
5a:90:ad:64:94:89:d0:22:b7:2c:3b:90:0b:59:3b:
8b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C0:FF:4F:E0:1D:FB:E0:1B:ED:38:CE:41:17:02:7F:EA:82:E4:0A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/QcD_T-Ad--Ab7TjOQRcCf-qC5Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.177.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f4:bc:f5:28:ac:12:ea:df:d2:65:b6:b8:21:40:fa:68:e6:
4b:3b:5f:84:29:64:b6:59:60:1d:9a:17:69:b1:35:1f:b5:a2:
cb:23:2d:02:c3:34:33:c7:0f:5d:60:11:26:22:4c:84:89:58:
a3:55:66:ae:a0:67:8c:29:68:68:bf:b6:b3:d8:af:e9:50:8e:
36:92:c9:10:2f:05:03:d2:07:b9:48:9b:7b:26:78:45:5c:89:
dd:4b:40:98:9e:0b:63:f3:d7:6f:98:e6:ec:51:92:3c:c2:7f:
46:e0:75:00:93:30:50:e1:4c:de:44:07:2e:23:ac:e4:78:da:
89:d0:ce:12:3c:42:95:2f:e2:78:96:d8:cf:e3:fd:16:7d:e8:
43:f9:bc:9f:cc:a3:0d:b2:06:91:02:87:83:ae:a8:91:5d:35:
ca:c7:92:c0:9d:43:c5:1d:ca:18:18:33:52:6e:61:f6:65:8f:
b8:f1:b4:44:ee:6a:5f:39:86:32:3e:b4:74:bb:99:f6:23:1a:
23:f1:b9:a3:f0:b0:ad:4c:e7:7d:68:1b:9a:97:09:6f:12:82:
eb:f6:00:3f:01:68:80:29:74:a6:bd:4f:1c:09:2f:62:ca:1b:
18:22:94:97:2e:e4:6e:49:19:26:1f:2a:93:ef:70:90:88:56:
54:c7:2a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:41:49 2024 by rpki-client on console-fra.rpki-client.org