Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iDsVGhUzM9wIiGAdd7UL3QbsAlU.roa
File: iDsVGhUzM9wIiGAdd7UL3QbsAlU.roa (raw, json)
Hash identifier: CSbthrtDlT3wO3U8KcYsreaOD2U29zr8MXYvaDSeDTs=
Subject key identifier: 88:3B:15:1A:15:33:33:DC:08:88:60:1D:77:B5:0B:DD:06:EC:02:55
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 019421B1A8069DE0F23E84C4BCD02AA39C70
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iDsVGhUzM9wIiGAdd7UL3QbsAlU.roa
Signing time: Wed 01 Jan 2025 11:47:58 +0000
ROA not before: Wed 01 Jan 2025 11:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26042
IP address blocks: 62.72.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:a8:06:9d:e0:f2:3e:84:c4:bc:d0:2a:a3:9c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 11:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=883b151a153333dc0888601d77b50bdd06ec0255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ac:10:9e:83:f3:67:9b:ab:3e:d7:2f:61:5c:
8a:84:47:82:5e:58:10:e6:cf:4c:f8:79:5a:f7:6a:
f4:2c:ff:df:30:3b:19:3a:c0:73:55:a2:00:df:7e:
2a:f4:30:ac:cd:37:3c:4a:ae:4e:a8:79:e9:aa:17:
f3:ac:cf:f5:1e:c7:4f:8a:41:7f:f8:15:16:e6:ee:
76:a7:0d:2a:85:25:b5:51:80:e1:17:c0:c1:24:2d:
70:d5:d5:34:e8:20:76:e5:b1:03:42:fc:e9:20:72:
c8:99:48:96:b5:93:57:e2:5e:24:1c:f5:a5:04:d2:
19:29:80:16:ce:3d:78:27:ab:be:2a:45:c6:42:da:
5d:a1:5c:be:fd:9e:e0:53:1e:6a:ab:df:d1:00:20:
a2:95:c8:24:50:f7:96:f1:be:5b:64:44:7c:21:7a:
ae:42:45:84:3b:e6:e3:31:24:05:ef:1c:0e:e9:61:
2d:3c:80:bb:24:8b:62:fc:c3:66:3a:e6:9e:f7:0c:
3a:00:28:44:95:8c:ca:bf:30:04:af:d1:91:7e:6f:
21:12:b4:44:97:2d:ca:0c:ed:e4:ce:10:9a:8e:fc:
1a:b9:2f:37:ce:d2:31:4f:64:ba:d3:a9:24:8a:5a:
4a:b1:ea:8b:c4:2b:04:f0:69:af:1a:16:6c:1f:74:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3B:15:1A:15:33:33:DC:08:88:60:1D:77:B5:0B:DD:06:EC:02:55
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iDsVGhUzM9wIiGAdd7UL3QbsAlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:15:37:df:5c:4f:6a:9d:d2:68:64:a7:11:f3:15:92:f3:56:
ee:cb:59:1f:97:94:b6:13:94:4e:48:1b:62:a2:05:b2:62:d2:
a7:c4:10:80:c5:10:bd:90:ea:67:2a:cd:2f:40:87:14:73:45:
7c:4f:3f:3f:fd:59:84:d1:5e:e4:cd:13:97:1a:b8:b2:65:30:
43:5e:57:7f:90:57:c4:f4:07:33:80:29:8e:d2:e5:fa:64:6e:
de:ee:00:ec:3b:b4:89:f0:f9:d6:92:b2:23:9f:d9:fb:c5:99:
19:2f:64:81:47:02:bc:4a:50:21:52:a1:c3:81:8f:cb:6e:b6:
79:77:93:3d:5b:d4:21:cc:c1:bd:a4:74:37:36:1c:7d:a8:8f:
53:5f:da:62:74:30:fd:b5:6a:a5:d9:03:f4:f2:04:17:a7:76:
01:79:f3:d7:0e:0b:3e:28:eb:e3:76:bc:33:ce:45:b7:81:97:
d4:e8:31:85:da:e0:b3:98:60:95:61:34:52:a3:f5:0c:a7:bc:
d5:e7:04:ff:9a:e2:1f:b4:f1:e7:06:65:53:0f:8b:8d:61:01:
1c:1f:95:65:fa:56:1e:5a:2f:17:b2:40:b5:d9:c8:3e:d7:62:
b6:d4:cf:48:d3:38:7a:8f:20:7c:86:c9:84:04:dd:a0:23:ce:
6a:0c:00:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsagGneDyPoTEvNAqo5xwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjUwMTAxMTE0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODNiMTUxYTE1MzMzM2RjMDg4ODYwMWQ3N2I1MGJkZDA2ZWMwMjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqwQnoPzZ5urPtcvYVyKhEeCXlgQ
5s9M+Hla92r0LP/fMDsZOsBzVaIA334q9DCszTc8Sq5OqHnpqhfzrM/1HsdPikF/
+BUW5u52pw0qhSW1UYDhF8DBJC1w1dU06CB25bEDQvzpIHLImUiWtZNX4l4kHPWl
BNIZKYAWzj14J6u+KkXGQtpdoVy+/Z7gUx5qq9/RACCilcgkUPeW8b5bZER8IXqu
QkWEO+bjMSQF7xwO6WEtPIC7JIti/MNmOuae9ww6AChElYzKvzAEr9GRfm8hErRE
ly3KDO3kzhCajvwauS83ztIxT2S606kkilpKseqLxCsE8GmvGhZsH3QP6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIg7FRoVMzPcCIhgHXe1C90G7AJVMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvaURzVkdoVXpNOXdJaUdBZGQ3VUwzUWJzQWxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkiiMA0G
CSqGSIb3DQEBCwUAA4IBAQBbFTffXE9qndJoZKcR8xWS81buy1kfl5S2E5ROSBti
ogWyYtKnxBCAxRC9kOpnKs0vQIcUc0V8Tz8//VmE0V7kzROXGriyZTBDXld/kFfE
9AczgCmO0uX6ZG7e7gDsO7SJ8PnWkrIjn9n7xZkZL2SBRwK8SlAhUqHDgY/LbrZ5
d5M9W9QhzMG9pHQ3Nhx9qI9TX9pidDD9tWql2QP08gQXp3YBefPXDgs+KOvjdrwz
zkW3gZfU6DGF2uCzmGCVYTRSo/UMp7zV5wT/muIftPHnBmVTD4uNYQEcH5Vl+lYe
Wi8XskC12cg+12K21M9I0zh6jyB8hsmEBN2gI85qDADM
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:09 2025 by rpki-client