Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpfYzubm9Dsomor4NdDIUA2oafE.roa
File: SpfYzubm9Dsomor4NdDIUA2oafE.roa (raw, json)
Hash identifier: DA1SWGR/MOJ4g96cKbWnMTQHsgACg2RXteds7BHL2GQ=
Subject key identifier: 4A:97:D8:CE:E6:E6:F4:3B:28:9A:8A:F8:35:D0:C8:50:0D:A8:69:F1
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01915B0D975AFAF9FAEDCDB47482FA4855EA
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpfYzubm9Dsomor4NdDIUA2oafE.roa
Signing time: Fri 16 Aug 2024 11:58:23 +0000
ROA not before: Fri 16 Aug 2024 11:58:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151734
IP address blocks: 62.72.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Sep 2024 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:0d:97:5a:fa:f9:fa:ed:cd:b4:74:82:fa:48:55:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 16 11:58:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a97d8cee6e6f43b289a8af835d0c8500da869f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:60:93:5e:db:6a:75:e2:27:dd:1a:79:c2:
4f:f1:48:a2:05:43:73:27:53:a7:48:0d:d6:2e:85:
0e:c9:02:fd:9f:3e:13:a4:de:d0:9f:9e:7c:07:52:
51:0d:78:b0:92:ab:99:1f:ca:01:6c:6b:44:cf:6a:
2d:6a:a6:83:d1:26:01:95:58:07:6c:de:30:02:55:
e1:3a:12:cc:96:fe:53:c6:d8:20:72:d7:9c:bc:d4:
d1:18:70:6d:c2:d5:f9:6b:ca:36:10:cf:e6:f5:3a:
c9:bd:e3:a3:db:3e:fc:99:5c:08:c0:bc:39:0c:b9:
7c:df:2f:2a:6a:94:62:7a:17:a0:8f:56:ca:5d:ae:
00:d5:9c:88:c4:e5:fd:c7:84:eb:66:98:ea:1c:75:
bb:82:f5:9a:92:3d:42:e2:65:99:dc:3b:10:44:50:
90:d4:5b:6e:10:fd:a9:92:c6:18:5f:c9:9f:da:b2:
1e:1b:4a:76:da:52:8c:22:c1:8b:6f:52:39:fa:0a:
dd:bd:16:5c:08:ff:50:b4:f4:1d:28:5d:0a:1e:48:
e0:7e:74:1d:51:cd:67:dd:4d:c6:d9:c4:af:13:17:
70:54:2e:50:ed:81:76:d9:0c:a8:63:3c:86:50:ca:
f2:5f:95:37:09:4b:e8:59:2a:96:7a:ca:b1:1e:d7:
88:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:97:D8:CE:E6:E6:F4:3B:28:9A:8A:F8:35:D0:C8:50:0D:A8:69:F1
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpfYzubm9Dsomor4NdDIUA2oafE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.185.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a8:c5:d4:82:ba:05:62:f8:6b:b7:35:c2:c6:d5:06:07:09:
41:7e:94:01:06:65:3a:a2:13:88:ab:3b:a0:bf:3a:ec:60:9c:
fc:16:6a:92:88:ca:84:5d:56:66:41:ab:38:39:ff:99:f9:55:
48:2c:39:32:b6:8d:27:a5:73:a0:9e:d2:94:7a:4d:91:fe:49:
4e:7d:2f:b0:a8:33:25:4d:6b:1f:5a:f8:11:ae:cf:9d:54:8c:
20:95:2f:7c:49:c7:3e:79:b2:d4:61:86:a5:54:21:1b:c1:df:
1e:19:cc:43:6d:0b:34:6d:ed:c1:0d:f9:05:c5:d0:32:77:90:
64:90:95:79:07:61:00:d5:82:a7:ec:65:92:76:db:5c:08:cf:
df:10:d3:cf:0b:38:f9:c4:e3:d3:d7:ef:91:d6:9e:83:82:27:
17:42:9a:fd:d2:65:84:12:1d:de:39:63:dd:94:91:e4:c3:7c:
f1:f3:6b:f0:86:5a:d6:f2:7c:6a:58:ef:f2:dc:5b:bb:52:44:
e3:87:40:37:ab:59:6c:24:f0:65:49:0b:b8:ae:b3:ce:06:c9:
e2:fa:4c:40:1e:a0:dd:82:bd:ca:a7:c6:71:90:8f:75:f6:af:
2e:f4:e5:d7:7c:06:02:22:0d:8a:ec:29:34:6b:75:db:b4:5a:
b1:f9:e8:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:17:42 2024 by rpki-client on console-fra.rpki-client.org