Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/afITdHRcGcdwKOtAWEJ8LG7qr2A.roa
File: afITdHRcGcdwKOtAWEJ8LG7qr2A.roa (raw, json)
Hash identifier: pt/XmGY1uC7OSCHtALrB8P9sjn1cIkuA5g1w/3lQjJk=
Subject key identifier: 69:F2:13:74:74:5C:19:C7:70:28:EB:40:58:42:7C:2C:6E:EA:AF:60
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018F054D639F750DA7AA0CA92773624CE221
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/afITdHRcGcdwKOtAWEJ8LG7qr2A.roa
Signing time: Mon 22 Apr 2024 10:15:08 +0000
ROA not before: Mon 22 Apr 2024 10:15:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 62.72.164.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:4d:63:9f:75:0d:a7:aa:0c:a9:27:73:62:4c:e2:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 22 10:15:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69f21374745c19c77028eb4058427c2c6eeaaf60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1e:f3:31:f2:2b:69:24:5f:e8:24:96:3b:db:
53:fa:1d:17:f0:3a:59:e5:ba:a5:d5:8a:02:f5:27:
94:23:89:10:45:1b:4a:a1:66:ba:f4:5c:5a:d0:c5:
8f:a4:ed:d0:68:bc:9e:06:31:79:e9:7e:4d:43:9a:
e7:f0:f7:fb:33:85:e2:8b:8a:c3:71:56:af:62:00:
6d:64:3c:d2:0c:f4:01:5f:41:6c:27:0c:6b:2a:11:
97:8f:96:5c:c8:4c:dc:1e:28:c4:73:af:da:3e:1a:
08:b5:49:e7:da:fc:d9:03:b3:da:4a:c3:31:4b:6b:
47:95:da:0d:a6:9e:13:3d:28:e2:f8:14:6b:02:27:
0c:d1:ce:db:49:c8:4c:29:dc:18:72:6a:7b:4b:f2:
f0:6f:3d:be:c5:65:c2:bd:cf:41:b8:11:eb:6e:e9:
28:4c:31:1e:56:0c:0c:ec:2f:0d:51:15:90:6a:77:
be:4a:d3:f6:36:b7:97:96:4d:cd:2a:c6:11:19:b2:
b1:b1:62:6f:74:89:14:e2:ec:b9:7d:d7:f5:e6:10:
c6:88:81:2e:fd:7c:3b:3e:32:da:d8:a3:3a:e8:d7:
ee:e5:03:fb:4f:c0:53:17:3a:8e:d1:09:66:d9:f4:
75:4a:92:39:9b:af:49:a7:9e:d3:6f:1e:79:70:b8:
9b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F2:13:74:74:5C:19:C7:70:28:EB:40:58:42:7C:2C:6E:EA:AF:60
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/afITdHRcGcdwKOtAWEJ8LG7qr2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.164.0/24
81.21.2.0/24
Signature Algorithm: sha256WithRSAEncryption
60:70:f3:0c:bb:99:a6:ad:4c:b2:2d:94:8e:89:d8:06:18:ab:
c6:ab:da:f3:7a:fb:05:af:c8:5c:8c:b9:51:f1:81:a5:73:4a:
f6:ce:20:e4:20:27:7c:ea:ec:fe:f6:e0:81:f8:b3:1d:f5:59:
60:3c:05:8b:00:07:ed:04:26:62:ab:c5:6b:7d:36:07:68:d4:
99:b1:db:9a:d4:2e:38:c1:63:e9:a8:e3:9d:47:3f:e6:83:03:
cf:a8:49:47:4c:59:4d:50:68:4a:83:26:61:e2:dc:df:ce:76:
b7:25:a0:29:ca:34:ab:fa:91:77:cd:db:19:d5:22:22:99:f4:
45:41:9b:92:18:40:72:51:24:43:cd:bf:a8:76:d3:83:63:6e:
2e:08:31:8a:30:cb:d4:70:9b:77:78:55:9f:fe:f4:a1:3f:0f:
67:32:de:ac:95:14:c1:13:c4:9e:0f:1e:c8:bb:e3:99:44:26:
35:48:d3:39:44:4a:44:67:75:20:3a:1c:7c:a4:da:c4:7d:98:
59:11:fa:09:39:c4:1f:89:e4:75:d8:0e:b9:42:84:38:db:c3:
84:0e:c7:fe:11:92:aa:82:ac:1d:27:d0:e8:c6:01:57:7c:6f:
55:55:2d:27:93:90:ca:bf:bd:1f:be:ce:40:f7:38:47:53:6a:
02:66:f0:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:05:24 2024 by rpki-client on console-fra.rpki-client.org